Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

for rkinner

Started by Matias Cooke , Apr 08 2020 01:00 PM
virus disk slow laptop

  • Please log in to reply

#1
Matias Cooke
Posted 08 April 2020 - 01:00 PM

Matias Cooke

    Member

  • Member
  • PipPip
  • 62 posts

Hi, Matías Cooke recommended you. 

I seem to be having an issue becuasue of what I suspect is a virus of some kind. I already tried some things but they don't seem to work very well. (I partitioned the disk, which is somehting that I was recommended). But anyway, I was hoping if you could check out this logs and maybe have a diagnosis regarding my problem. The disk usually works at 100% for example. Well, everything has kinda high percentages. 

Hope to hear from you.

Thanks beforehand. 

 

 

 

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 05-04-2020
Ejecutado por ivanc (08-04-2020 15:55:06)
Ejecutado desde C:\Users\COOKES\Downloads
Windows 10 Home Single Language Versión 1909 18363.752 (X64) (2020-04-04 22:28:19)
Modo de Inicio: Normal
==========================================================
 
 
==================== Cuentas: =============================
 
Administrador (S-1-5-21-1840741467-1113686577-3156136756-500 - Administrator - Disabled)
COOKES (S-1-5-21-1840741467-1113686577-3156136756-1005 - Limited - Enabled) => C:\Users\COOKES
DefaultAccount (S-1-5-21-1840741467-1113686577-3156136756-503 - Limited - Disabled)
Invitado (S-1-5-21-1840741467-1113686577-3156136756-501 - Limited - Disabled)
ivanc (S-1-5-21-1840741467-1113686577-3156136756-1001 - Administrator - Enabled) => C:\Users\ivanc
WDAGUtilityAccount (S-1-5-21-1840741467-1113686577-3156136756-504 - Limited - Disabled)
 
==================== Centro de Seguridad ========================
 
(Si una entrada es incluida en el fixlist, será eliminada.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Programas instalados ======================
 
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
 
µTorrent (HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\uTorrent) (Version: 3.5.5.45628 - BitTorrent Inc.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1202.1711.103 - Alps Electric)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 5.4.2 - philandro Software GmbH)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.163 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HDD Regenerator (HKLM-x32\...\{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}) (Version: 1.71.0012 - Abstradrome)
HDDlife Pro 4.2 (HKLM-x32\...\{856B2098-F5F0-459C-A254-E9BD6A589C0B}) (Version: 4.2.204 - BinarySense Inc.)
HP Support Solutions Framework (HKLM-x32\...\{D62E0D31-0CD3-4F69-B1AE-EB102A717A22}) (Version: 12.15.14.3 - HP Inc.)
Microsoft OneDrive (HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1840741467-1113686577-3156136756-1005\...\OneDriveSetup.exe) (Version: 19.232.1124.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Spotify (HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\Spotify) (Version: 1.1.30.658.gf13cde74 - Spotify AB)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.4.4445 - TeamViewer)
WhatsApp (HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\WhatsApp) (Version: 0.4.2088 - WhatsApp)
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24127}) (Version: 24.0.14033 - Corel Corporation)
 
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Studios) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation) [MS Ad]
 
==================== Personalizado CLSID (Lista blanca): ==============
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
 
==================== Codecs (Lista blanca) ====================
 
==================== Accesos directos & WMI ========================
 
==================== Módulos cargados (Lista blanca) =============
 
==================== Alternate Data Streams (Lista blanca) ========
 
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
 
AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [119]
AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A [140]
 
==================== Modo Seguro (Lista blanca) ==================
 
==================== Asociación (Lista blanca) =================
 
==================== Internet Explorer sitios de confianza/restringidos ==========
 
==================== Hosts contenido: =========================
 
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
 
2019-03-19 01:49 - 2019-03-19 01:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
 
==================== Otras Áreas ===========================
 
(Actualmente no existe una corrección automática para esta sección.)
 
HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1840741467-1113686577-3156136756-1005\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 100.72.3.117 - 100.72.3.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
 
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
 
(Si una entrada es incluida en el fixlist, será eliminada.)
 
MSCONFIG\Services: McAfee WebAdvisor => 2
MSCONFIG\Services: TeamViewer => 2
 
==================== Reglas de firewall (Lista blanca) ================
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
FirewallRules: [{9FD110A3-F027-44FA-9683-D55C5E74AD0D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{3895FAAF-B581-40A4-A6D0-689EE3C59376}C:\users\ivanc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ivanc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5512520A-E07A-410D-835F-C6724773E627}C:\users\ivanc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ivanc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{0A123001-370F-4651-98B0-25F9ADBE9702}C:\users\ivanc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ivanc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{7D86CDD1-2F9B-4E0C-B6C5-51799A7807FA}C:\users\ivanc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ivanc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{010CAE29-27CD-45BB-ABC3-29A331F76E10}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1DC4320A-D14E-454D-B52B-EC4B3E371518}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5CF5B63A-E197-41BA-911C-C60BB5FD1C7D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C0C01ABA-CDBE-495C-B7E2-4397D80019DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{46209B81-AFCD-430F-BCD4-6D4196BCDF50}C:\users\ivanc\onedrive\escritorio\anydesk.exe] => (Allow) C:\users\ivanc\onedrive\escritorio\anydesk.exe Ningún archivo
FirewallRules: [UDP Query User{FEFA5D21-3356-443F-AB91-AF2786E85A4E}C:\users\ivanc\onedrive\escritorio\anydesk.exe] => (Allow) C:\users\ivanc\onedrive\escritorio\anydesk.exe Ningún archivo
FirewallRules: [{BCDB198F-1A51-436B-B99D-728AB459E235}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{7C933F53-E96E-46F0-BF72-C04C62E63390}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{00FA5492-D08E-413F-AE34-9EEC397C7267}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{FB8D8525-D2F2-4A95-8C85-AD32327D0D4D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{3EBA5604-9CF1-4D1D-9999-D4157E1918FF}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{40367A5D-DA35-4983-8ABD-B1E912774C1A}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
 
==================== Puntos de Restauración =========================
 
07-04-2020 20:55:53 Punto de control programado
 
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Errores del registro de eventos: ========================
 
Errores de aplicación:
==================
Error: (04/08/2020 02:41:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
 
Error: (04/08/2020 02:41:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]
 
Error: (04/08/2020 02:41:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
 
Error: (04/08/2020 02:41:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]
 
Error: (04/08/2020 01:54:46 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo DLL del contador extensible "C:\Windows\system32\sysmain.dll" (código de error de Win32 126).
 
Error: (04/08/2020 01:24:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa ShellExperienceHost.exe (versión 10.0.18362.752) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.
 
Id. de proceso: 1028
 
Hora de Inicio: 01d60dc06039cf12
 
Hora de finalización: 4294967295
 
Ruta de la aplicación: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
 
Id. de informe: c3226519-65ac-4731-a13b-d96526502160
 
Nombre completo del paquete con errores: Microsoft.Windows.ShellExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy
 
Id. de la aplicación relativa al paquete con errores: App
 
Tipo de bloqueo: Quiesce
 
Error: (04/08/2020 08:55:11 AM) (Source: ESENT) (EventID: 455) (User: )
Description: StartMenuExperienceHost (4348,R,98) TILEREPOSITORYS-1-5-21-1840741467-1113686577-3156136756-1005: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\Users\COOKES\AppData\Local\TileDataLayer\Database\EDB.log.
 
Error: (04/08/2020 08:55:11 AM) (Source: ESENT) (EventID: 522) (User: )
Description: StartMenuExperienceHost (4348,P,98) TILEREPOSITORYS-1-5-21-1840741467-1113686577-3156136756-1005: Al intentar abrir el dispositivo con el nombre "\\.\C:" que contiene "C:\", se produjo un error del sistema 5 (0x00000005): "Acceso denegado. ". La operación se cerrará con el error -1032 (0xfffffbf8).
 
 
Errores del sistema:
=============
Error: (04/08/2020 02:50:33 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Administrador de mapas descargados no respondió después de iniciar.
 
Error: (04/08/2020 02:48:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio HP Support Solutions Framework Service no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.
 
Error: (04/08/2020 02:48:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio HP Support Solutions Framework Service.
 
Error: (04/08/2020 02:47:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Optimización de distribución no respondió después de iniciar.
 
Error: (04/08/2020 02:43:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio HDDlife HDD Access service se cerró con el siguiente error: 
Inicialice la seguridad para poder aplanar o desaplanar alguna interfaz. No se podrá realizar ningún cambio una vez inicializada.
 
Error: (04/08/2020 09:12:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio AppXSvc depende del servicio StateRepository, el cual no pudo iniciarse debido al siguiente error: 
La operación se completó correctamente.
 
Error: (04/08/2020 09:12:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio SysMain se cerró con el siguiente error: 
No se conoce el servicio de autenticación.
 
Error: (04/08/2020 09:12:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Audiosrv no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio debido a un error en el inicio de sesión.
 
 
Windows Defender:
===================================
Date: 2020-04-08 15:42:09.994
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.313.967.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16900.4
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 
 
CodeIntegrity:
===================================
 
Date: 2020-04-08 15:58:28.301
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:56:32.191
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:50:04.932
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:49:28.272
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:49:22.108
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:49:00.107
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:48:37.464
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-04-08 15:48:36.468
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements.
 
==================== Información de la memoria =========================== 
 
BIOS: Insyde F.23 09/04/2014
Placa base: Hewlett-Packard 22D0
Procesador: AMD A4-6210 APU with AMD Radeon R3 Graphics 
Porcentaje de memoria en uso: 79%
RAM física total: 2776.98 MB
RAM física disponible: 558.68 MB
Virtual total: 6872.98 MB
Virtual disponible: 4109.39 MB
 
==================== Unidades ================================
 
Drive c: () (Fixed) (Total:354.42 GB) (Free:316.23 GB) NTFS
Drive d: (Nuevo vol) (Fixed) (Total:87.42 GB) (Free:87.22 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:22 GB) (Free:2.11 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
 
\\?\Volume{dcbd3020-4d53-437c-b487-2e36b231ec39}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.36 GB) NTFS
\\?\Volume{4dc79704-0699-4f3e-8481-9bc0dcda6473}\ () (Fixed) (Total:0.89 GB) (Free:0.41 GB) NTFS
\\?\Volume{6e78db0f-8ba7-4827-bd7c-f62a48b9eff2}\ () (Fixed) (Total:0.25 GB) (Free:0.15 GB) FAT32
 
==================== MBR & Tabla de particiones ====================
 
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: A8F41E42)
 
Partition: GPT.
 

 

==================== Final de Addition.txt =======================
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 05-04-2020
Ejecutado por ivanc (administrador) sobre DESKTOP-PAG6OF6 (Hewlett-Packard HP 14 Notebook PC) (08-04-2020 15:43:02)
Ejecutado desde C:\Users\COOKES\Downloads
Perfiles cargados: ivanc & COOKES (Perfiles disponibles: ivanc & COOKES)
Platform: Windows 10 Home Single Language Versión 1909 18363.752 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Procesos (Lista blanca) =================
 
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
 
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\setup\instup.exe
(BinarySense Inc -> BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense Inc -> BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\COOKES\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(Qualcomm Atheros -> Windows ® Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
 
==================== Registro (Lista blanca) ===================
 
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
 
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [735544 2015-08-07] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2020-02-25] (Corel Corporation -> WinZip Computing, S.L.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\Run: [uTorrent] => C:\Users\ivanc\AppData\Roaming\uTorrent\uTorrent.exe [2072816 2020-04-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\Run: [Spotify] => C:\Users\ivanc\AppData\Roaming\Spotify\Spotify.exe [22932200 2020-04-08] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1840741467-1113686577-3156136756-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.163\Installer\chrmstp.exe [2020-04-05] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-04-08]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Precargador WinZip.lnk [2020-04-05]
ShortcutTarget: Precargador WinZip.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\ivanc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk [2020-04-08]
ShortcutTarget: HDDlife.lnk -> C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe (BinarySense Inc -> BinarySense, Inc.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
 
==================== Tareas programadas (Lista blanca) ============
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
Task: {136C6F2E-8E2F-48CB-85E4-5680E87B43D5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-10-14] (HP Inc. -> HP Inc.)
Task: {39F3A2BE-67B4-40C5-99F7-64EAEFFB4F5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-05] (Google LLC -> Google LLC)
Task: {4647A0D3-DE60-4868-9E37-67E197905BF8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-05] (Google LLC -> Google LLC)
Task: {563711BE-2F18-4608-A6EF-6EAC75E5AC4E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BFCC62FF-4242-4E0D-9796-1089FD0B35F8} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent => {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} C:\Windows\System32\RDXTaskFactory.dll [415744 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {C25BF6EB-2BF4-4AC5-8501-A9BC009B02E5} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {E2483116-8B5D-4CF4-B74B-4599ACA193AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E37E7C0F-3CCC-42F3-A8E9-8463718F1D93} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {EF469890-A36E-4C7D-ACB8-A90658C6FC6C} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {F5CFC54A-EB07-4FAD-B0AB-4C7E9539206D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [134008 2020-03-25] (HP Inc. -> HP Inc.)
 
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
 
 
==================== Internet (Lista blanca) ====================
 
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
 
Tcpip\Parameters: [DhcpNameServer] 100.72.3.117 100.72.3.1
Tcpip\..\Interfaces\{b2f7bd64-1e14-42f2-8837-415e8ab09e87}: [DhcpNameServer] 100.72.3.117 100.72.3.1
 
Internet Explorer:
==================
 
Chrome: 
=======
CHR Profile: C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default [2020-04-08]
CHR DownloadDir: C:\Users\ivanc\OneDrive\Escritorio
CHR Notifications: Default -> hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://google.com.ar/
CHR StartupUrls: Default -> "hxxp://pagina12.com/","hxxps://www.google.com./","hxxp://www.google.com.ar/"
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Presentaciones) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-05]
CHR Extension: (Documentos) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-05]
CHR Extension: (Google Drive) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-05]
CHR Extension: (YouTube) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-05]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-06]
CHR Extension: (Hojas de cálculo) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-05]
CHR Extension: (Cablevisión Flow) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfbnbmbkemlokfckhdoaakhjogffkinc [2020-04-05]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-05]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-05]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-04-07]
CHR Extension: (AVG SafePrice | Comparaciones, ofertas y cupones) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-04-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-05]
CHR Extension: (Gmail) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\ivanc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-05]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
 
==================== Servicios (Lista blanca) ===================
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe [508000 2019-09-18] (Advanced Micro Devices, Inc. -> AMD)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3153872 2020-04-08] (philandro Software GmbH -> philandro Software GmbH)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [104824 2015-08-07] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 AtherosSvc; C:\Windows\System32\drivers\AdminService.exe [416192 2018-11-15] (Qualcomm Atheros -> Windows ® Win 7 DDK provider)
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [2078984 2015-10-08] (BinarySense Inc -> BinarySense, Inc.)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [378744 2020-03-31] (HP Inc. -> HP Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216272 2020-03-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
 
===================== Controladores (Lista blanca) ===================
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmdag.sys [55249504 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atikmpag.sys [595040 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [102832 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 amdpsp; C:\Windows\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 athr; C:\Windows\System32\drivers\athw8x.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111112 2017-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
U1 avgbdisk; no ImagePath
 
==================== NetSvcs (Lista blanca) ===================
 
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 
 
==================== Un mes (creado) ===================
 
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
 
2020-04-08 15:43 - 2020-04-08 15:47 - 000018310 _____ C:\Users\COOKES\Downloads\FRST.txt
2020-04-08 15:34 - 2020-04-08 15:35 - 002281472 _____ (Farbar) C:\Users\COOKES\Downloads\FRST64.exe
2020-04-08 15:25 - 2020-04-08 15:25 - 000000000 ____D C:\Users\COOKES\AppData\Local\D3DSCache
2020-04-08 15:24 - 2020-04-08 15:24 - 000000000 ____D C:\Users\COOKES\AppData\Roaming\AnyDesk
2020-04-08 14:36 - 2020-04-08 14:36 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\BinarySense
2020-04-08 14:35 - 2020-04-08 14:35 - 000002605 _____ C:\ProgramData\Escritorio\HDDlife Pro.lnk
2020-04-08 14:35 - 2020-04-08 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDDlife
2020-04-08 14:35 - 2020-04-08 14:35 - 000000000 ____D C:\Program Files (x86)\BinarySense
2020-04-08 14:34 - 2020-04-08 14:35 - 008691712 _____ C:\Users\ivanc\HDDlifePro 4.2.204.msi
2020-04-08 14:28 - 2020-04-08 15:54 - 000000000 ____D C:\ProgramData\TEMP
2020-04-08 14:28 - 2020-04-08 14:38 - 000000000 ____D C:\Program Files (x86)\HDD Regenerator
2020-04-08 14:28 - 2020-04-08 14:28 - 000002100 _____ C:\ProgramData\Escritorio\HDD Regenerator.lnk
2020-04-08 14:28 - 2020-04-08 14:28 - 000000000 ____D C:\Users\ivanc\AppData\Local\Downloaded Installations
2020-04-08 14:28 - 2020-04-08 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Regenerator
2020-04-08 14:01 - 2020-04-08 14:41 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2020-04-08 14:01 - 2020-04-08 14:02 - 000000000 ____D C:\ProgramData\AnyDesk
2020-04-08 14:01 - 2020-04-08 14:01 - 000001961 _____ C:\ProgramData\Escritorio\AnyDesk.lnk
2020-04-08 14:01 - 2020-04-08 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk
2020-04-08 13:56 - 2020-04-08 14:02 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\AnyDesk
2020-04-08 13:56 - 2020-04-08 13:56 - 003153872 _____ (philandro Software GmbH) C:\Users\ivanc\Downloads\AnyDesk.exe
2020-04-08 13:56 - 2020-04-08 13:56 - 003153872 _____ (philandro Software GmbH) C:\Users\ivanc\Downloads\AnyDesk (1).exe
2020-04-08 12:29 - 2020-04-08 15:23 - 000000000 ____D C:\Users\COOKES\AppData\Local\PlaceholderTileLogoFolder
2020-04-08 09:41 - 2020-04-08 09:42 - 000003382 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1840741467-1113686577-3156136756-1005
2020-04-08 09:40 - 2020-04-08 09:42 - 000000000 ___RD C:\Users\COOKES\OneDrive
2020-04-08 09:39 - 2020-04-08 09:39 - 000000000 ____D C:\Users\COOKES\AppData\Local\Comms
2020-04-08 09:07 - 2020-04-08 09:08 - 001159668 _____ C:\Windows\Minidump\040820-43296-01.dmp
2020-04-08 09:01 - 2020-04-08 09:01 - 000000000 ____D C:\Users\COOKES\AppData\Roaming\AVG
2020-04-08 09:00 - 2020-04-08 09:00 - 000000000 ____D C:\Users\COOKES\AppData\Local\CEF
2020-04-08 09:00 - 2020-04-08 09:00 - 000000000 ____D C:\Users\COOKES\AppData\Local\Avg
2020-04-08 08:58 - 2020-04-08 08:58 - 000000000 ____D C:\Users\COOKES\AppData\LocalLow\AMD
2020-04-08 08:55 - 2020-04-08 08:57 - 000000000 ____D C:\Users\COOKES\AppData\Local\MicrosoftEdge
2020-04-08 08:55 - 2020-04-08 08:55 - 000000000 ___HD C:\Users\COOKES\MicrosoftEdgeBackups
2020-04-08 08:54 - 2020-04-08 08:54 - 000000000 ____D C:\Users\COOKES\AppData\Local\Publishers
2020-04-08 08:53 - 2020-04-08 12:29 - 000000000 ____D C:\Users\COOKES\AppData\Local\Packages
2020-04-08 08:53 - 2020-04-08 09:41 - 000000000 ____D C:\Users\COOKES\AppData\Local\Google
2020-04-08 08:53 - 2020-04-08 08:53 - 000000000 ___RD C:\Users\COOKES\3D Objects
2020-04-08 08:53 - 2020-04-08 08:53 - 000000000 ____D C:\Users\COOKES\AppData\Roaming\Adobe
2020-04-08 08:53 - 2020-04-08 08:53 - 000000000 ____D C:\Users\COOKES\AppData\Local\VirtualStore
2020-04-08 08:53 - 2020-04-08 08:53 - 000000000 ____D C:\Users\COOKES\AppData\Local\AMD
2020-04-08 08:52 - 2020-04-08 09:42 - 000002404 _____ C:\Users\COOKES\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-08 08:52 - 2020-04-08 09:40 - 000000000 ____D C:\Users\COOKES
2020-04-08 08:52 - 2020-04-08 08:54 - 000000000 ____D C:\Users\COOKES\AppData\Local\ConnectedDevicesPlatform
2020-04-08 08:52 - 2020-04-08 08:52 - 000000020 ___SH C:\Users\COOKES\ntuser.ini
2020-04-08 01:11 - 2020-04-08 01:11 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2020-04-08 01:11 - 2020-04-08 01:11 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2020-04-08 01:11 - 2020-04-08 01:11 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 022636544 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 019813376 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 018027008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 007017472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 001545216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 001077264 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2020-04-08 01:10 - 2020-04-08 01:10 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 000456192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2020-04-08 01:10 - 2020-04-08 01:10 - 000452096 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-04-08 01:10 - 2020-04-08 01:10 - 000381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000093712 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000084280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2020-04-08 01:10 - 2020-04-08 01:10 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iaspolcy.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\ias.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ias.dll
2020-04-08 01:10 - 2020-04-08 01:10 - 000021520 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 014818816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 006525424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 003753472 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 003742544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-04-08 01:09 - 2020-04-08 01:09 - 002800128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-04-08 01:09 - 2020-04-08 01:09 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001587712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001245184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 001055376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000993280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000912896 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000865280 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000785920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000673704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000628408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000538160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000507152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000491008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000487784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-04-08 01:09 - 2020-04-08 01:09 - 000456504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-04-08 01:09 - 2020-04-08 01:09 - 000415760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-04-08 01:09 - 2020-04-08 01:09 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-04-08 01:09 - 2020-04-08 01:09 - 000277864 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2020-04-08 01:09 - 2020-04-08 01:09 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000123952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000066624 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000050544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2020-04-08 01:09 - 2020-04-08 01:09 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2020-04-08 01:09 - 2020-04-08 01:09 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-04-08 01:09 - 2020-04-08 01:09 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 009930552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 006168064 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 004563200 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 003799552 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 003728384 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-04-08 01:08 - 2020-04-08 01:08 - 003547648 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 002871608 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 002768440 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001918976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001757096 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-04-08 01:08 - 2020-04-08 01:08 - 001726264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001512832 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 001480192 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 001427456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001378528 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001300280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-04-08 01:08 - 2020-04-08 01:08 - 001261808 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001243648 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001136128 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001083904 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 001011200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000840704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000811320 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000759272 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000684560 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000638480 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000618296 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-04-08 01:08 - 2020-04-08 01:08 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000515600 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000513576 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000498688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000459688 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000324408 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000259776 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000251704 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000178192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2020-04-08 01:08 - 2020-04-08 01:08 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000152408 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000147696 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000142544 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000115120 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000036152 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2020-04-08 01:08 - 2020-04-08 01:08 - 000033080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2020-04-08 01:08 - 2020-04-08 01:08 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\sbservicetrigger.dll
2020-04-08 01:08 - 2020-04-08 01:08 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 017790464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 007849216 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 003708928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 003586872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 002143232 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 002126144 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 002114560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001960448 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001762816 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001719808 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001497600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001413704 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001263856 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001127424 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 001071616 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000879616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000874512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000654912 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000637240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000437560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000416016 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\WpcApi.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000297272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000193848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000151352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\WpcProxyStubs.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2020-04-08 01:07 - 2020-04-08 01:07 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys
2020-04-08 01:07 - 2020-04-08 01:07 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2020-04-08 01:07 - 2020-04-08 01:07 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys
2020-04-07 18:58 - 2020-04-08 14:50 - 000000000 ____D C:\Users\ivanc\AppData\LocalLow\uTorrent
2020-04-07 18:54 - 2020-04-08 09:14 - 000267712 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-07 18:15 - 2020-04-07 18:15 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\ivanc\Downloads\avg_antivirus_free_setup (1).exe
2020-04-07 18:12 - 2020-04-07 18:12 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\AVG
2020-04-07 18:10 - 2020-04-07 18:10 - 000000000 ____D C:\Users\ivanc\AppData\Local\Avg
2020-04-07 17:38 - 2020-04-07 17:38 - 000000000 ____D C:\Program Files\Common Files\AVG
2020-04-07 17:38 - 2020-04-07 17:37 - 000852392 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw35783af09741ddfe.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000460184 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswaf6be7cc2a4ef7f3.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000337592 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2020-04-07 17:38 - 2020-04-07 17:37 - 000317864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw09ae7b0fc26e4618.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000235768 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw44570d66e66a98cd.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000206672 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswb1077e123e2478ff.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000175984 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswfbac19263836901b.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000110064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswfa4004c333a27909.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000085664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswe576c8f4dc3eca7e.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000043568 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw7c4c652b441b4060.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000037960 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw365c8d74b960db7d.tmp
2020-04-07 17:38 - 2020-04-07 17:37 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw8072ab9e13a3acd9.tmp
2020-04-07 17:38 - 2020-04-07 17:36 - 000234840 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw7209d0310c2c3ddf.tmp
2020-04-07 17:38 - 2020-04-07 17:36 - 000179032 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw2672a20a2d95e861.tmp
2020-04-07 17:38 - 2020-04-07 17:36 - 000061272 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw8de1f7f849d82a1c.tmp
2020-04-07 17:29 - 2020-04-07 17:29 - 000000000 ____D C:\Program Files\AVG
2020-04-07 17:29 - 2020-04-07 17:26 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-04-07 17:28 - 2020-04-07 17:28 - 000011960 _____ C:\Users\ivanc\OneDrive\Documentos\cc_20200407_172835.reg
2020-04-07 17:27 - 2020-04-08 15:30 - 000000000 ____D C:\ProgramData\AVG
2020-04-07 17:27 - 2020-04-07 17:27 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\ivanc\Downloads\avg_antivirus_free_setup.exe
2020-04-07 17:14 - 2020-04-07 17:14 - 000000000 ____D C:\Windows\pss
2020-04-07 17:06 - 2020-04-07 17:06 - 000000000 ____D C:\Users\ivanc\AppData\Local\OneDrive
2020-04-07 16:48 - 2020-04-07 17:05 - 000000000 ____D C:\Users\ivanc\AppData\Local\TeamViewer
2020-04-07 16:46 - 2020-04-07 17:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-07 16:46 - 2020-04-07 16:46 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-04-07 16:46 - 2020-04-07 16:46 - 000001104 _____ C:\ProgramData\Escritorio\TeamViewer.lnk
2020-04-07 16:46 - 2020-04-07 16:46 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\TeamViewer
2020-04-07 16:37 - 2020-04-07 16:37 - 027292336 _____ (TeamViewer Germany GmbH) C:\Users\ivanc\Downloads\TeamViewer_Setup.exe
2020-04-06 19:18 - 2020-04-08 14:50 - 000000000 ____D C:\Users\ivanc\AppData\Local\Spotify
2020-04-06 19:17 - 2020-04-06 19:17 - 000001836 _____ C:\Users\ivanc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2020-04-06 19:15 - 2020-04-08 14:49 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\Spotify
2020-04-06 19:14 - 2020-04-06 19:15 - 000892232 _____ (Spotify Ltd) C:\Users\ivanc\Downloads\SpotifySetup.exe
2020-04-06 19:11 - 2020-04-06 19:11 - 006889184 _____ (Piriform Ltd) C:\Users\ivanc\Downloads\spsetup132 (1).exe
2020-04-06 18:59 - 2020-04-07 17:26 - 000000000 ____D C:\Program Files\CCleaner
2020-04-06 18:59 - 2020-04-06 18:59 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-06 18:59 - 2020-04-06 18:59 - 000002888 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-06 18:59 - 2020-04-06 18:59 - 000000863 _____ C:\ProgramData\Escritorio\CCleaner.lnk
2020-04-06 18:59 - 2020-04-06 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-06 18:58 - 2020-04-06 18:58 - 000000837 _____ C:\ProgramData\Escritorio\Speccy.lnk
2020-04-06 18:58 - 2020-04-06 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2020-04-06 18:58 - 2020-04-06 18:58 - 000000000 ____D C:\Program Files\Speccy
2020-04-06 18:52 - 2020-04-06 18:53 - 006889184 _____ (Piriform Ltd) C:\Users\ivanc\Downloads\spsetup132.exe
2020-04-06 18:40 - 2020-04-06 18:40 - 000013532 _____ C:\junk.txt
2020-04-06 18:28 - 2020-04-06 18:28 - 002798456 _____ (Sysinternals - www.sysinternals.com) C:\Users\ivanc\Downloads\procexp.exe
2020-04-05 20:18 - 2020-02-03 17:56 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-04-05 20:18 - 2020-02-03 17:56 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-04-05 20:11 - 2020-04-05 20:11 - 000000000 ____D C:\ProgramData\ssh
2020-04-05 18:03 - 2020-04-08 15:45 - 000000000 ____D C:\FRST
2020-04-05 17:58 - 2020-04-05 17:59 - 002281472 _____ (Farbar) C:\Users\ivanc\Downloads\FRST64.exe
2020-04-05 04:57 - 2020-04-05 05:07 - 000000000 ____D C:\Windows\system32\MRT
2020-04-05 04:56 - 2020-04-05 04:56 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-04-05 04:33 - 2020-04-05 04:33 - 000000000 ____D C:\Users\ivanc\Downloads\OpenOffice 4.1.7 (es) Installation Files
2020-04-05 04:20 - 2020-04-05 04:20 - 011607552 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-04-05 04:20 - 2020-04-05 04:20 - 009711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-04-05 04:20 - 2020-04-05 04:20 - 005502464 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-04-05 04:20 - 2020-04-05 04:20 - 004308480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-04-05 04:20 - 2020-04-05 04:20 - 001541632 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-04-05 04:19 - 2020-04-05 04:19 - 019850240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 006285312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 005911040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 003819520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 003525592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 003488768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 003243296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 002956688 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-04-05 04:19 - 2020-04-05 04:19 - 002315680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 002230232 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 002072664 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001867816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001770552 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001555904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001490640 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001417976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001282944 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001272360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001108040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 001012792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000757632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000537608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-04-05 04:19 - 2020-04-05 04:19 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000287744 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacEncoder.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacEncoder.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-04-05 04:19 - 2020-04-05 04:19 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 025900544 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 007755776 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 007259648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 004855808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 004580352 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 004348408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-04-05 04:18 - 2020-04-05 04:18 - 002224952 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 002180408 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 002031104 _____ C:\Windows\system32\rdpnano.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001540096 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001273856 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001218632 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 001214976 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001088000 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 001000960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000996352 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000883712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000839680 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000835584 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000788992 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000685056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000669496 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000668672 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000510768 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-04-05 04:18 - 2020-04-05 04:18 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000476672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000422912 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\DispBroker.Desktop.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000399360 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000366416 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\DAFMCP.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-04-05 04:18 - 2020-04-05 04:18 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-04-05 04:18 - 2020-04-05 04:18 - 000186880 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000099712 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000059221 _____ C:\Windows\system32\srms.dat
2020-04-05 04:18 - 2020-04-05 04:18 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000042296 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000032056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-04-05 04:18 - 2020-04-05 04:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-04-05 04:18 - 2020-04-05 04:18 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2020-04-05 04:18 - 2020-04-05 04:18 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 004538880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 003860832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmpltfm.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 002259872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001684992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001283600 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-04-05 04:17 - 2020-04-05 04:17 - 001216000 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001190912 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001083392 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 001031680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000980320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmpal.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000915296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmcodecs.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000774664 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000732000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ortcengine.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000568120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000422008 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000403456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000300392 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpviewerax.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000136328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000130112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000105832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000055376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmmvrortc.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\dusmapi.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\dusmtask.exe
2020-04-05 04:17 - 2020-04-05 04:17 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Drivers\afunix.sys
2020-04-05 04:17 - 2020-04-05 04:17 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msauserext.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-04-05 04:17 - 2020-04-05 04:17 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-04-05 04:16 - 2020-04-05 04:17 - 130761887 _____ C:\Users\ivanc\Downloads\Apache_OpenOffice_4.1.7_Win_x86_install_es.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 006084344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 005112832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 003971808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 002875904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002740736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directml.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002307584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 002021888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001985104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001916744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001729024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001665416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001562424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001484600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001264128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001260544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001213752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001154448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 001007672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000935040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000904504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000892696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000857088 _____ C:\Windows\system32\MBR2GPT.EXE
2020-04-05 04:16 - 2020-04-05 04:16 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000776488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000769552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000768488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000748032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000704512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.FileExplorer.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000673080 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000627216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000599552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000597816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000551824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000542288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000478792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000453432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000441072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2020-04-05 04:16 - 2020-04-05 04:16 - 000405632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000375504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000274464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000213984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeHelper.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Winlangdb.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000150536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000133464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47mrm.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000120560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GraphicsCapture.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000102760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\globinputhost.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000072816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000068408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguageProfileCallback.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000042336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcicda.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2020-04-05 04:16 - 2020-04-05 04:16 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-04-05 04:16 - 2020-04-05 04:16 - 000003584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCertResources.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 005040640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 002861568 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 002773568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001854976 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001688064 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001647072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001412096 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 001097728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000898048 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000734720 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000562688 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000518656 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000382976 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\rdpviewerax.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2020-04-05 04:15 - 2020-04-05 04:15 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2020-04-05 04:15 - 2020-04-05 04:15 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000181248 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000181248 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000165504 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000164776 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUpdateAgent.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2020-04-05 04:15 - 2020-04-05 04:15 - 000133944 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2020-04-05 04:15 - 2020-04-05 04:15 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afunix.sys
2020-04-05 04:15 - 2020-04-05 04:15 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\msauserext.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe
2020-04-05 04:15 - 2020-04-05 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2020-04-05 04:15 - 2020-04-05 04:15 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 006436352 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 004898144 _____ (Microsoft Corporation) C:\Windows\system32\rtmpltfm.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 003371720 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 002698040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 001999952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001743888 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001657856 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001482040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 001396152 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001394168 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001354080 _____ (Microsoft Corporation) C:\Windows\system32\rtmpal.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001170960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001091936 _____ (Microsoft Corporation) C:\Windows\system32\rtmcodecs.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001051448 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 001032544 _____ (Microsoft Corporation) C:\Windows\system32\ortcengine.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000983896 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000929144 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000891736 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000877232 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000845312 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000824848 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000796904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000758800 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000741392 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000637440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000636848 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000605896 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000598528 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000587064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000561464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000516648 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000416056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000353960 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000335448 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000320312 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000307712 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000260920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000248064 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000221200 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000203776 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000179720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000165832 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000143160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000133256 _____ (Microsoft Corporation) C:\Windows\system32\profapi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000132624 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000120048 _____ (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\NetDriverInstall.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000107832 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000098104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000089616 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetDriverInstall.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000063288 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000056672 _____ (Microsoft Corporation) C:\Windows\system32\rtmmvrortc.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000037392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2020-04-05 04:14 - 2020-04-05 04:14 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2020-04-05 04:14 - 2020-04-05 04:14 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2020-04-05 04:14 - 2020-04-05 04:14 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 007905784 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 004471296 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 004140544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 004048896 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 004005888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 003260928 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 002870272 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 002453504 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 002071552 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001972536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-04-05 04:13 - 2020-04-05 04:13 - 001885184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001830200 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001823232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001764336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001657120 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001609216 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001602560 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001505592 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001481216 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001372160 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-04-05 04:13 - 2020-04-05 04:13 - 001182448 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 001071184 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000988160 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000945384 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000851968 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000678928 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000678912 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000642216 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000558592 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000545432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000522384 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-04-05 04:13 - 2020-04-05 04:13 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000369504 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000263168 _____ (Microsoft Corporation) C:\Windows\system32\wpnservice.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\Winlangdb.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000201744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2020-04-05 04:13 - 2020-04-05 04:13 - 000186672 _____ (Microsoft Corporation) C:\Windows\system32\BCP47mrm.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000146712 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\GraphicsCapture.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\globinputhost.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Taskbar.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000117264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2020-04-05 04:13 - 2020-04-05 04:13 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSystray.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguageProfileCallback.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\wci.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\bindflt.dll
2020-04-05 04:13 - 2020-04-05 04:13 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2020-04-05 04:13 - 2020-04-05 04:13 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 006231200 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 004622280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 003143168 _____ (Microsoft Corporation) C:\Windows\system32\directml.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 002808832 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 002715648 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-04-05 04:12 - 2020-04-05 04:12 - 002522112 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 002474496 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 002289152 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 002157056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 001581056 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 001084216 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 001027000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000914944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000833616 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000737280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000646656 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000429880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2020-04-05 04:12 - 2020-04-05 04:12 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountCloudAP.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000268288 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000155648 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000128312 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000066336 _____ (Microsoft Corporation) C:\Windows\system32\wlrmdr.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\MSAProfileNotificationHandler.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2020-04-05 04:12 - 2020-04-05 04:12 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2020-04-05 04:12 - 2020-04-05 04:12 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\dstokenclean.exe
2020-04-05 04:11 - 2020-04-05 04:11 - 001428992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000804872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000732200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-04-05 04:11 - 2020-04-05 04:11 - 000531768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2020-04-05 04:11 - 2020-04-05 04:11 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000355000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Acx01000.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000306696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000250896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000232960 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000224056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000222520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000208696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000199992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000183608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000180232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000174392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000151568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000141840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000131896 _____ (Microsoft Corporation) C:\Windows\system32\DTUHandler.exe
2020-04-05 04:11 - 2020-04-05 04:11 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationControlCSP.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2020-04-05 04:11 - 2020-04-05 04:11 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-04-05 04:11 - 2020-04-05 04:11 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000067112 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000056632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mcicda.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000048256 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2020-04-05 04:11 - 2020-04-05 04:11 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000030008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000029712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tbs.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000028936 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000019984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000016912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2020-04-05 04:11 - 2020-04-05 04:11 - 000003584 _____ (Microsoft Corporation) C:\Windows\system32\TpmCertResources.dll
2020-04-05 04:11 - 2020-04-05 04:11 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUserRes.dll
2020-04-05 03:59 - 2020-04-05 03:59 - 000000000 ____D C:\Windows\system32\Tasks\Hewlett-Packard
2020-04-05 03:59 - 2020-04-05 03:59 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2020-04-05 03:55 - 2020-04-05 03:55 - 000000000 ____D C:\Users\ivanc\AppData\Local\HP
2020-04-05 03:55 - 2020-04-05 03:55 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2020-04-05 03:33 - 2020-02-11 01:48 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-04-05 03:33 - 2020-02-11 01:37 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-04-05 03:23 - 2020-04-07 17:24 - 000000000 ____D C:\Users\ivanc\AppData\Local\CrashDumps
2020-04-05 03:22 - 2020-04-07 17:09 - 000000000 ____D C:\Users\ivanc\AppData\Local\D3DSCache
2020-04-05 03:08 - 2020-04-05 03:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2020-04-05 03:02 - 2020-04-08 14:15 - 000000000 ____D C:\TORRENTS
2020-04-05 03:00 - 2020-04-05 03:00 - 000034747 _____ C:\Users\ivanc\Downloads\Office-2013-Professional-Plus-Sp1-64bits.torrent
2020-04-05 02:58 - 2020-04-05 02:58 - 000000000 ____D C:\Users\ivanc\AppData\Local\Microsoft Help
2020-04-05 02:57 - 2020-04-05 03:36 - 000000000 ____D C:\Program Files\Microsoft Office
2020-04-05 02:56 - 2020-04-05 02:56 - 000000000 __RHD C:\MSOCache
2020-04-05 02:44 - 2020-04-05 04:17 - 000000000 ___RD C:\Dios es Digital
2020-04-05 02:39 - 2020-04-05 02:49 - 000000000 ____D C:\Users\ivanc\AppData\Local\WinZip
2020-04-05 02:39 - 2020-04-05 02:39 - 000003662 _____ C:\Windows\system32\Tasks\WinZip Update Notifier 2
2020-04-05 02:39 - 2020-04-05 02:39 - 000003660 _____ C:\Windows\system32\Tasks\WinZip Update Notifier 3
2020-04-05 02:39 - 2020-04-05 02:39 - 000003660 _____ C:\Windows\system32\Tasks\WinZip Update Notifier 1
2020-04-05 02:39 - 2020-04-05 02:39 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2020-04-05 02:39 - 2020-04-05 02:39 - 000001987 _____ C:\ProgramData\Escritorio\WinZip.lnk
2020-04-05 02:39 - 2020-04-05 02:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2020-04-05 02:38 - 2020-04-05 02:40 - 000000000 ____D C:\ProgramData\WinZip
2020-04-05 02:38 - 2020-04-05 02:38 - 000000000 ____D C:\Program Files\WinZip
2020-04-05 02:37 - 2020-04-05 02:37 - 000959296 _____ (WinZip Computing) C:\Users\ivanc\Downloads\winzip24-downwz.exe
2020-04-05 02:37 - 2020-04-05 02:37 - 000000000 ____D C:\ProgramData\UniqueId
2020-04-05 02:25 - 2020-04-05 02:25 - 000000000 ____D C:\Users\ivanc\AppData\Local\CEF
2020-04-05 02:11 - 2020-04-08 14:46 - 000000000 ____D C:\Users\ivanc\AppData\Local\BitTorrentHelper
2020-04-05 02:11 - 2020-04-05 02:22 - 2710019503 ____R C:\Users\ivanc\Downloads\M.OF.16.April.2017.Mul.32X-www.DivxTotaL.com.rar
2020-04-05 02:11 - 2020-04-05 02:11 - 000029711 _____ C:\Users\ivanc\Downloads\M.OF_.16.April_.2017.Mul_.32X-www.DivxTotaL.com_.torrent
2020-04-05 02:09 - 2020-04-08 14:51 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\uTorrent
2020-04-05 02:09 - 2020-04-07 18:54 - 000000000 ____D C:\ProgramData\Avast Software
2020-04-05 02:03 - 2020-04-05 02:04 - 002907000 _____ (BitTorrent Inc.) C:\Users\ivanc\Downloads\uTorrent.exe
2020-04-05 01:56 - 2020-04-05 01:56 - 000138240 _____ C:\Users\ivanc\Downloads\Clase2.ppt
2020-04-05 01:56 - 2020-04-05 01:56 - 000138240 _____ C:\Users\ivanc\Downloads\Clase2 (1).ppt
2020-04-05 01:22 - 2020-04-05 01:22 - 000000000 ____D C:\Users\ivanc\OneDrive\Documentos\Nueva carpeta
2020-04-05 01:22 - 2015-02-03 18:06 - 000000120 ____R C:\Users\ivanc\OneDrive\Documentos\Bloc de notas de ivan.url
2020-04-05 01:20 - 2020-04-07 16:19 - 000000000 ___RD C:\Users\ivanc\OneDrive
2020-04-05 01:20 - 2020-04-07 16:18 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1840741467-1113686577-3156136756-1001
2020-04-05 01:16 - 2020-04-08 15:21 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\WhatsApp
2020-04-05 01:16 - 2020-04-05 01:16 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2020-04-05 01:14 - 2020-04-05 01:16 - 000000000 ____D C:\Users\ivanc\AppData\Local\WhatsApp
2020-04-05 01:13 - 2020-04-05 01:16 - 000000000 ____D C:\Users\ivanc\AppData\Local\SquirrelTemp
2020-04-05 01:11 - 2020-04-05 01:12 - 130349488 _____ (WhatsApp) C:\Users\ivanc\Downloads\WhatsAppSetup.exe
2020-04-05 01:01 - 2020-04-05 18:05 - 000000000 ____D C:\Users\ivanc\AppData\Local\Comms
2020-04-05 01:00 - 2020-04-05 01:39 - 000000000 ____D C:\ProgramData\Packages
2020-04-05 00:59 - 2020-04-05 00:59 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-05 00:59 - 2020-04-05 00:59 - 000002334 _____ C:\ProgramData\Escritorio\Google Chrome.lnk
2020-04-05 00:59 - 2020-04-05 00:59 - 000000000 ____D C:\Users\ivanc\AppData\LocalLow\AMD
2020-04-05 00:58 - 2020-04-05 00:58 - 000003622 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-05 00:58 - 2020-04-05 00:58 - 000003498 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-05 00:58 - 2020-04-05 00:58 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-05 00:57 - 2020-04-05 00:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2020-04-05 00:57 - 2020-04-05 00:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2020-04-05 00:57 - 2020-04-05 00:57 - 000000000 ____D C:\Windows\SysWOW64\sda
2020-04-05 00:57 - 2020-04-05 00:57 - 000000000 ____D C:\Program Files\Apoint2K
2020-04-05 00:55 - 2020-04-05 00:55 - 000000000 ____D C:\Users\ivanc\AppData\Local\AMD
2020-04-05 00:48 - 2020-04-08 14:41 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-04-05 00:47 - 2020-04-05 01:04 - 000000000 ____D C:\Users\ivanc\AppData\Local\Google
2020-04-05 00:47 - 2020-04-05 00:48 - 000000000 ____D C:\Program Files\AMD
2020-04-05 00:47 - 2020-04-05 00:47 - 000000000 ____D C:\Windows\system32\AMD
2020-04-05 00:47 - 2019-09-18 18:05 - 000102832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2020-04-05 00:45 - 2020-04-05 00:45 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-04-05 00:44 - 2019-09-18 18:05 - 003885152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 003484256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 001705568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000941152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000768608 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000760928 _____ (AMD) C:\Windows\system32\atieclxx.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000574048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000553568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000493152 _____ C:\Windows\system32\dgtrayicon.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000484960 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000480352 _____ C:\Windows\system32\GameManager64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000468576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000466528 _____ C:\Windows\system32\amdlogum.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000439904 _____ C:\Windows\system32\atieah64.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000416864 _____ C:\Windows\system32\EEURestart.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000383584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000381536 _____ C:\Windows\SysWOW64\GameManager32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000352352 _____ C:\Windows\SysWOW64\atieah32.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000348768 _____ C:\Windows\system32\clinfo.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-04-05 00:44 - 2019-09-18 18:05 - 000239200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000211552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000183904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000178752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000162912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000158816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000157592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000152672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000138336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000135776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000134752 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000125536 _____ (AMD) C:\Windows\system32\atimuixx.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000124000 _____ C:\Windows\system32\atidxx64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000121440 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000120928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000107104 _____ C:\Windows\SysWOW64\atidxx32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000105568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000090720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000075360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000070240 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000046688 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000043616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2020-04-05 00:44 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 001686000 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 001365352 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000554072 _____ C:\Windows\system32\amdmiracast.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000472672 _____ C:\Windows\system32\amdgfxinfo64.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000381536 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000134824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000119232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2020-04-05 00:44 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2020-04-05 00:44 - 2019-09-18 17:33 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2020-04-05 00:44 - 2019-09-18 17:33 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2020-04-05 00:44 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\SysWOW64\atiapfxx.blb
2020-04-05 00:44 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\system32\atiapfxx.blb
2020-04-05 00:44 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2020-04-05 00:44 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2020-04-05 00:44 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2020-04-05 00:44 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2020-04-05 00:44 - 2019-09-18 17:33 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin
2020-04-05 00:44 - 2019-09-18 17:33 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin
2020-04-05 00:44 - 2019-09-18 17:33 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin
2020-04-05 00:44 - 2019-09-18 17:33 - 000121168 _____ C:\Windows\system32\kapp_si.sbin
2020-04-05 00:44 - 2019-09-18 17:32 - 000034488 _____ C:\Windows\system32\AMDKernelEvents.man
2020-04-05 00:40 - 2020-04-05 02:58 - 000000000 ____D C:\Users\ivanc\AppData\Local\PlaceholderTileLogoFolder
2020-04-05 00:39 - 2020-04-05 00:39 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-04-05 00:38 - 2020-04-05 00:38 - 000000000 ___HD C:\Users\ivanc\MicrosoftEdgeBackups
2020-04-05 00:38 - 2020-04-05 00:38 - 000000000 ____D C:\Users\ivanc\AppData\Local\Publishers
2020-04-05 00:38 - 2020-04-05 00:38 - 000000000 ____D C:\Users\ivanc\AppData\Local\MicrosoftEdge
2020-04-05 00:37 - 2020-04-08 08:53 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-04-05 00:37 - 2020-04-06 19:32 - 000000000 ____D C:\Users\ivanc\AppData\Local\Packages
2020-04-05 00:37 - 2020-04-05 20:21 - 000000000 ___RD C:\Users\ivanc\3D Objects
2020-04-05 00:37 - 2020-04-05 00:55 - 000000000 ____D C:\Users\ivanc\AppData\Local\ConnectedDevicesPlatform
2020-04-05 00:37 - 2020-04-05 00:38 - 000000000 ____D C:\Users\ivanc\AppData\Local\PackageStaging
2020-04-05 00:37 - 2020-04-05 00:37 - 000000000 ____D C:\Users\ivanc\AppData\Roaming\Adobe
2020-04-05 00:37 - 2020-04-05 00:37 - 000000000 ____D C:\Users\ivanc\AppData\Local\VirtualStore
2020-04-05 00:36 - 2020-04-05 00:36 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2020-04-05 00:36 - 2020-04-05 00:36 - 000000000 ____D C:\Windows\system32\SRSLabs
2020-04-05 00:36 - 2020-04-05 00:36 - 000000000 ____D C:\Program Files\Realtek
2020-04-05 00:35 - 2015-07-03 16:24 - 003271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 002966144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 001599792 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 001435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 001331336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 001122648 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000961024 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000749776 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000645464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000574248 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000467160 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000195184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2020-04-05 00:35 - 2015-07-03 16:24 - 000088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2020-04-05 00:35 - 2015-07-03 16:21 - 072121872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2020-04-05 00:35 - 2015-07-03 16:21 - 004515584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2020-04-05 00:35 - 2015-07-03 16:21 - 002926848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2020-04-05 00:35 - 2015-07-03 16:21 - 002711296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2020-04-05 00:35 - 2015-07-03 16:21 - 001757440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2020-04-05 00:35 - 2015-07-03 16:21 - 000259288 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2020-04-05 00:35 - 2015-07-03 16:21 - 000122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2020-04-05 00:35 - 2015-07-03 16:21 - 000023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2020-04-05 00:35 - 2015-07-02 06:43 - 002897741 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2020-04-05 00:33 - 2020-04-08 14:38 - 000000000 ____D C:\Users\ivanc
2020-04-05 00:33 - 2020-04-07 16:17 - 000002401 _____ C:\Users\ivanc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-05 00:33 - 2020-04-05 00:33 - 000000020 ___SH C:\Users\ivanc\ntuser.ini
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Reciente
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Plantillas
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Mis documentos
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Menú Inicio
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Impresoras
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Entorno de red
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Datos de programa
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\Configuración local
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\AppData\Local\Historial
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\AppData\Local\Datos de programa
2020-04-05 00:33 - 2020-04-05 00:33 - 000000000 _SHDL C:\Users\ivanc\AppData\Local\Archivos temporales de Internet
2020-04-04 19:48 - 2020-04-07 18:09 - 000000000 ____D C:\Windows\Panther
2020-04-04 19:39 - 2020-04-07 20:33 - 000000000 ____D C:\Windows.old
2020-04-04 19:30 - 2020-04-08 09:23 - 001684180 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-04 19:28 - 2020-04-08 09:07 - 000000000 ____D C:\Windows\minidump
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Reciente
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Plantillas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Mis documentos
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Impresoras
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Entorno de red
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Datos de programa
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\Configuración local
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Reciente
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Plantillas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Mis documentos
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Menú Inicio
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Impresoras
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Entorno de red
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Datos de programa
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\Configuración local
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Plantillas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Escritorio
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Documentos
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\ProgramData\Datos de programa
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Program Files\Archivos comunes
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Documents and Settings
2020-04-04 19:24 - 2020-04-04 19:24 - 000000000 _SHDL C:\Archivos de programa
2020-04-04 19:12 - 2020-01-09 18:25 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-04-04 19:10 - 2020-04-08 14:42 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-04 19:10 - 2020-04-04 19:10 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-04-04 19:09 - 2020-04-08 15:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-04-04 19:09 - 2020-04-04 19:09 - 000000000 ____D C:\Windows\ServiceProfiles
 
==================== Un mes (modificado) ==================
 
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
 
2020-04-08 15:52 - 2019-03-19 01:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-08 14:41 - 2019-03-19 01:37 - 000786432 _____ C:\Windows\system32\config\BBI
2020-04-08 14:04 - 2019-03-19 01:50 - 000000000 ____D C:\Windows\INF
2020-04-08 13:02 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\AppReadiness
2020-04-08 09:23 - 2019-03-19 08:59 - 000753744 _____ C:\Windows\system32\perfh00A.dat
2020-04-08 09:23 - 2019-03-19 08:59 - 000148288 _____ C:\Windows\system32\perfc00A.dat
2020-04-08 09:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\SystemResources
2020-04-08 09:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-04-08 09:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-04-08 09:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\Provisioning
2020-04-08 09:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\bcastdvr
2020-04-08 04:52 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-04-08 01:26 - 2019-03-19 01:37 - 000000000 ____D C:\Windows\CbsTemp
2020-04-08 00:34 - 2019-03-19 01:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-07 17:38 - 2019-03-19 01:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-04-07 17:24 - 2019-03-19 01:52 - 000000000 ___SD C:\Windows\Downloaded Program Files
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\setup
2020-04-05 20:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\oobe
2020-04-05 20:11 - 2019-03-19 01:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-04-05 20:11 - 2019-03-19 01:52 - 000000000 ___RD C:\Windows\PrintDialog
2020-04-05 20:11 - 2019-03-19 01:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-04-05 20:11 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\Dism
2020-04-05 20:11 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-04-05 20:11 - 2019-03-19 01:37 - 000000000 ____D C:\Windows\servicing
2020-04-05 04:33 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-05 03:35 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-04-05 03:35 - 2019-03-19 01:49 - 000000092 _____ C:\Windows\win.ini
2020-04-05 03:08 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\appcompat
2020-04-05 01:12 - 2019-03-19 09:01 - 000000000 ____D C:\Windows\OCR
2020-04-05 01:12 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\es-MX
2020-04-05 01:09 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\ServiceState
2020-04-05 00:31 - 2019-03-19 01:52 - 000000000 ____D C:\ProgramData\USOPrivate
2020-04-04 19:48 - 2019-03-19 01:49 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-04-04 19:30 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2020-04-04 19:28 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\spool
2020-04-04 19:28 - 2019-03-19 01:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2020-04-04 19:24 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Windows NT
2020-04-04 19:11 - 2019-03-19 01:37 - 000032768 _____ C:\Windows\system32\config\ELAM
 
==================== SigCheck ============================
 
(No existe una corrección automática para los archivos que no pasan la verificación.)
 
==================== Final de FRST.txt ========================
 
 
 
 
 
 
 
 
 

 


  • 0

Advertisements

#2
RKinner
Posted 08 April 2020 - 02:34 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Get Process Explorer

https://live.sysinte...com/procexp.exe

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


Copy the next 2 lines:

TASKLIST /SVC  > \junk.txt
notepad \junk.txt

Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
Win 8: http://www.eightforu...indows-8-a.html
win 10: http://www.howtogeek...-in-windows-10/

Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.


Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.


 


  • 0

#3
Matias Cooke
Posted 08 April 2020 - 08:14 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 77.16 60 K 8 K 0
procexp64.exe 6.21 34.616 K 65.880 K 11624 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
FAHWindow64.exe 2.59 1.840 K 676 K 11732 File Association Helper WinZip Computing, S.L. (Verified) Corel Corporation
FAHWindow64.exe 2.57 1.684 K 608 K 10852 File Association Helper WinZip Computing, S.L. (Verified) Corel Corporation
chrome.exe 2.02 106.932 K 169.900 K 1624 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 1.99 22.980 K 41.632 K 4436 Google Chrome Google LLC (Verified) Google LLC
System 1.55 200 K 568 K 4
dwm.exe 1.24 44.328 K 37.304 K 5112 Administrador de ventanas del escritorio Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.99 87.992 K 109.120 K 9388 Explorador de Windows Microsoft Corporation (Verified) Microsoft Windows
MsMpEng.exe 0.83 297.776 K 132.520 K 7848 Antimalware Service Executable Microsoft Corporation (Verified) Microsoft Corporation
Interrupts 0.77 0 K 0 K n/a Hardware Interrupts and DPCs
hldasvc.exe 0.43 14.460 K 6.752 K 7284 HDDlife HDD access service BinarySense, Inc. (Verified) BinarySense Inc
csrss.exe 0.39 5.320 K 1.904 K 6944 Proceso en tiempo de ejecución del cliente-servidor Microsoft Corporation (Verified) Microsoft Windows Publisher
HDDlifePro.exe 0.36 17.432 K 5.524 K 11804 HDDlife executable file BinarySense, Inc. (Verified) BinarySense Inc
svchost.exe 0.17 44.768 K 40.200 K 1196 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe 0.07 89.104 K 128.084 K 6876 Google Chrome Google LLC (Verified) Google LLC
explorer.exe 0.07 64.476 K 58.152 K 4672 Explorador de Windows Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.07 92.296 K 117.332 K 8764 Google Chrome Google LLC (Verified) Google LLC
Registry 0.06 6.652 K 45.012 K 104
atieclxx.exe 0.05 2.968 K 5.864 K 2824 AMD External Events Client Module AMD (Verified) Advanced Micro Devices, Inc.
ApMsgFwd.exe 0.05 1.484 K 668 K 84 ApMsgFwd Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
WmiPrvSE.exe 0.04 28.400 K 37.972 K 9160 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiApSrv.exe 0.03 1.896 K 8.544 K 9316 Adaptador de rendimiento inverso de WMI Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.03 13.872 K 14.540 K 2112 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
ShellExperienceHost.exe 0.03 13.324 K 7.148 K 3888 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe 0.03 15.304 K 6.228 K 9428 WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Microsoft Corporation (Verified) Microsoft Windows
Apoint.exe 0.03 3.344 K 1.224 K 6056 Alps Pointing-device Driver Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
Apoint.exe 0.03 3.164 K 3.068 K 9696 Alps Pointing-device Driver Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
csrss.exe 0.03 1.708 K 604 K 9672 Proceso en tiempo de ejecución del cliente-servidor Microsoft Corporation (Verified) Microsoft Windows Publisher
WzPreloader.exe 0.02 13.576 K 3.068 K 8684 WinZip Preloader WinZip Computing (Verified) Corel Corporation
chrome.exe 0.02 28.132 K 50.472 K 8992 Google Chrome Google LLC (Verified) Google LLC
AdminService.exe 0.01 2.172 K 2.628 K 3200 Windows Setup API Windows ® Win 7 DDK provider (Verified) Qualcomm Atheros
svchost.exe 0.01 3.620 K 3.892 K 6768 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
dwm.exe 0.01 47.916 K 8.192 K 7444 Administrador de ventanas del escritorio Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.01 18.100 K 35.168 K 4424 Google Chrome Google LLC (Verified) Google LLC
svchost.exe 0.01 14.664 K 20.252 K 552 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 15.912 K 28.912 K 10372 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
hldasvc.exe < 0.01 5.932 K 852 K 7240 HDDlife HDD access service BinarySense, Inc. (Verified) BinarySense Inc
HDDlifePro.exe < 0.01 7.336 K 956 K 2212 HDDlife executable file BinarySense, Inc. (Verified) BinarySense Inc
csrss.exe < 0.01 1.892 K 1.536 K 608 Proceso en tiempo de ejecución del cliente-servidor Microsoft Corporation (Verified) Microsoft Windows Publisher
RuntimeBroker.exe < 0.01 1.948 K 1.596 K 6184 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 10.536 K 19.116 K 8972 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
YourPhoneServer.exe 3.320 K 5.152 K 6664 (No hay ninguna firma presente en el sujeto)
YourPhoneServer.exe 3.340 K 5.040 K 9928 (No hay ninguna firma presente en el sujeto)
YourPhone.exe Suspended 17.096 K 7.912 K 10564 (No hay ninguna firma presente en el sujeto)
YourPhone.exe Suspended 16.960 K 6.148 K 11356 (No hay ninguna firma presente en el sujeto)
WinStore.App.exe Suspended 18.984 K 396 K 8068 Store Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
winlogon.exe 2.536 K 1.608 K 9092 Aplicación de inicio de sesión de Windows Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2.480 K 4.772 K 11880 Aplicación de inicio de sesión de Windows Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1.348 K 180 K 748 Aplicación de inicio de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe 15.112 K 11.376 K 5956 WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Microsoft Corporation (Verified) Microsoft Windows
taskhostw.exe 6.756 K 8.428 K 8724 Proceso de host para tareas de Windows Microsoft Corporation (Verified) Microsoft Windows
taskhostw.exe 7.824 K 5.396 K 1328 Proceso de host para tareas de Windows Microsoft Corporation (Verified) Microsoft Windows
SystemSettings.exe Suspended 21.100 K 748 K 9088 Configuración Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 23.296 K 17.596 K 1288 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.948 K 2.328 K 6676 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 25.980 K 39.240 K 1136 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9.200 K 12.216 K 592 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 13.232 K 19.224 K 1224 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.708 K 3.128 K 1996 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 7.600 K 13.700 K 1712 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.780 K 2.044 K 1216 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10.280 K 14.236 K 1628 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.764 K 2.504 K 2668 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.420 K 10.376 K 4132 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5.952 K 6.404 K 2828 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.488 K 3.800 K 2676 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.932 K 4.052 K 3704 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.668 K 7.964 K 2464 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.592 K 7.600 K 3480 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10.816 K 7.260 K 3032 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.316 K 2.292 K 1592 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.024 K 1.808 K 8116 Proceso host para los servicios de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
StartMenuExperienceHost.exe 25.500 K 59.688 K 8808 (Verified) Microsoft Windows
StartMenuExperienceHost.exe Suspended 25.888 K 24.276 K 6460 (Verified) Microsoft Windows
spoolsv.exe 5.596 K 3.728 K 2624 Aplicación de subsistema de cola Microsoft Corporation (Verified) Microsoft Windows
smss.exe 1.152 K 68 K 392 Administrador de sesión de Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
smartscreen.exe 17.704 K 5.928 K 9780 SmartScreen de Windows Defender Microsoft Corporation (Verified) Microsoft Windows
SkypeBackgroundHost.exe Suspended 1.964 K 180 K 10512 Microsoft Skype Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
SkypeBackgroundHost.exe Suspended 1.836 K 60 K 7084 Microsoft Skype Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
SkypeApp.exe Suspended 15.684 K 7.060 K 2312 SkypeApp Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
SkypeApp.exe Suspended 185.212 K 3.276 K 8644 SkypeApp Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
sihost.exe 6.884 K 18.668 K 10016 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
sihost.exe 6.844 K 16.256 K 4644 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe Suspended 15.932 K 6.360 K 2636 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SgrmBroker.exe 3.520 K 3.580 K 6352 Servicio Agente de supervisión en tiempo de ejecución de Protección del sistema Microsoft Corporation (Verified) Microsoft Windows Publisher
SettingSyncHost.exe 7.364 K 5.564 K 4088 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
services.exe 3.828 K 4.576 K 952 Aplicación de servicios y controlador Microsoft Corporation (Verified) Microsoft Windows Publisher
SecurityHealthSystray.exe 1.768 K 2.496 K 11012 Windows Security notification icon Microsoft Corporation (Verified) Microsoft Windows
SecurityHealthSystray.exe 1.940 K 2.504 K 11568 Windows Security notification icon Microsoft Corporation (Verified) Microsoft Windows
SecurityHealthService.exe 4.656 K 10.584 K 512 Windows Security Health Service Microsoft Corporation (Verified) Microsoft Windows Publisher
SecurityHealthHost.exe 2.308 K 1.856 K 1480 Windows Security Health Host Microsoft Corporation (Verified) Microsoft Windows
SearchUI.exe Suspended 113.564 K 2.284 K 4112 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SearchUI.exe Suspended 16.492 K 45.496 K 10612 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 8.524 K 30.672 K 8420 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 6.136 K 24.244 K 5508 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.704 K 2.444 K 11872 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.888 K 1.912 K 10272 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.952 K 10.192 K 816 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1.724 K 4.728 K 7404 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 7.764 K 6.276 K 2336 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.912 K 5.364 K 216 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 3.376 K 11.800 K 9984 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 4.688 K 2.536 K 10964 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 9.976 K 9.968 K 10392 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1.492 K 1.296 K 9212 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 3.644 K 10.920 K 7256 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 6.664 K 3.076 K 4948 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.480 K 1.812 K 8376 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1.804 K 6.588 K 5164 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RtkAudioService64.exe 2.164 K 3.008 K 2548 Realtek Audio Service Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVBg64.exe 6.104 K 2.604 K 10100 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVBg64.exe 5.980 K 2.852 K 11992 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
procexp.exe 4.276 K 10.984 K 6544 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
OneDrive.exe 28.908 K 6.716 K 11788 Microsoft OneDrive Microsoft Corporation (Verified) Microsoft Corporation
NisSrv.exe 8.860 K 6.260 K 4932 Microsoft Network Realtime Inspection Service Microsoft Corporation (Verified) Microsoft Corporation
MicrosoftEdgeSH.exe Suspended 4.224 K 232 K 6388 Microsoft Edge Web Platform Microsoft Corporation (Verified) Microsoft Windows
MicrosoftEdgeSH.exe Suspended 3.888 K 224 K 4124 Microsoft Edge Web Platform Microsoft Corporation (Verified) Microsoft Windows
MicrosoftEdgeCP.exe Suspended 66.520 K 664 K 4036 Microsoft Edge Content Process Microsoft Corporation (Verified) Microsoft Windows
MicrosoftEdgeCP.exe Suspended 5.828 K 376 K 4928 Microsoft Edge Content Process Microsoft Corporation (Verified) Microsoft Windows
MicrosoftEdge.exe Suspended 24.940 K 752 K 400 Microsoft Edge Microsoft Corporation (Verified) Microsoft Corporation
MicrosoftEdge.exe Suspended 23.744 K 964 K 5492 Microsoft Edge Microsoft Corporation (Verified) Microsoft Corporation
Memory Compression 1.732 K 91.020 K 2164
lsass.exe 7.992 K 10.828 K 968 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
LogonUI.exe 11.784 K 4.264 K 9080 Windows Logon User Interface Host Microsoft Corporation (Verified) Microsoft Windows
LockApp.exe Suspended 14.380 K 496 K 6012 LockApp.exe Microsoft Corporation (Verified) Microsoft Windows
LockApp.exe Suspended 12.880 K 35.680 K 1848 LockApp.exe Microsoft Corporation (Verified) Microsoft Windows
HxTsr.exe Suspended 21.568 K 4.436 K 5968 Microsoft Outlook Communications Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
HxOutlook.exe Suspended 37.712 K 5.092 K 8720 Microsoft Outlook Microsoft Corporation (No hay ninguna firma presente en el sujeto) Microsoft Corporation
HidMonitorSvc.exe 1.232 K 692 K 3184 HidMonitorSvc アプリケーション Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
hidfind.exe 1.208 K 1.076 K 4876 Alps Pointing-device Driver Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
hidfind.exe 1.436 K 752 K 3112 Alps Pointing-device Driver Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
GoogleCrashHandler64.exe 1.840 K 268 K 4796 Google Crash Handler Google LLC (Verified) Google LLC
GoogleCrashHandler.exe 1.840 K 336 K 6192 Google Crash Handler Google LLC (Verified) Google LLC
fontdrvhost.exe 3.524 K 4.668 K 6972 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
fontdrvhost.exe 1.408 K 672 K 632 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
fontdrvhost.exe 3.376 K 560 K 5364 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 1.920 K 9.608 K 4456 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 1.996 K 1.772 K 8008 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 5.968 K 2.588 K 12008 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 2.612 K 8.468 K 4664 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dasHost.exe 2.368 K 332 K 1640 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
ctfmon.exe 4.380 K 8.144 K 3940 Cargador de CTF Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6.812 K 1.516 K 1672 Host de ventana de consola Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6.980 K 752 K 9028 Host de ventana de consola Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 25.104 K 49.924 K 5456 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 200.560 K 180.380 K 11024 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 2.248 K 9.092 K 9232 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 1.852 K 6.740 K 2540 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 27.180 K 47.312 K 8432 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 29.552 K 53.892 K 11712 Google Chrome Google LLC (Verified) Google LLC
browser_broker.exe 3.056 K 2.532 K 10524 Browser_Broker Microsoft Corporation (Verified) Microsoft Windows
browser_broker.exe 1.768 K 1.604 K 10040 Browser_Broker Microsoft Corporation (Verified) Microsoft Windows
atiesrxx.exe 1.420 K 924 K 1888 AMD External Events Service Module AMD (Verified) Advanced Micro Devices, Inc.
atieclxx.exe 3.112 K 3.064 K 4148 AMD External Events Client Module AMD (Verified) Advanced Micro Devices, Inc.
ApplicationFrameHost.exe 39.800 K 12.820 K 8276 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows
ApplicationFrameHost.exe 10.548 K 2.188 K 10528 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows
ApntEx.exe 1.760 K 1.824 K 11116 Alps Pointing-device Driver for Windows Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
ApntEx.exe 1.932 K 428 K 276 Alps Pointing-device Driver for Windows Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
ApMsgFwd.exe 1.696 K 404 K 9820 ApMsgFwd Alps Electric Co., Ltd. (Verified) Alps Electric Co., LTD.
AnyDesk.exe 17.664 K 6.736 K 3316 AnyDesk philandro Software GmbH (Verified) philandro Software GmbH
AnyDesk.exe 17.136 K 1.240 K 2356 AnyDesk philandro Software GmbH (Verified) philandro Software GmbH
AnyDesk.exe 16.996 K 744 K 11964 AnyDesk philandro Software GmbH (Verified) philandro Software GmbH

  • 0

#4
Matias Cooke
Posted 08 April 2020 - 08:14 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts
 
Nombre de imagen               PID Servicios                                    
========================= ======== =============================================
System Idle Process              0 N/D                                          
System                           4 N/D                                          
Registry                       104 N/D                                          
smss.exe                       392 N/D                                          
csrss.exe                      608 N/D                                          
wininit.exe                    748 N/D                                          
services.exe                   952 N/D                                          
lsass.exe                      968 KeyIso, SamSs, VaultSvc                      
svchost.exe                    552 BrokerInfrastructure, DcomLaunch, LSM,       
                                   PlugPlay, Power, SystemEventsBroker          
fontdrvhost.exe                632 N/D                                          
svchost.exe                    592 RpcEptMapper, RpcSs                          
svchost.exe                   1136 Appinfo, gpsvc, iphlpsvc, LanmanServer,      
                                   lfsvc, ProfSvc, Schedule, SENS,              
                                   ShellHWDetection, Themes, TokenBroker,       
                                   UserManager, UsoSvc, Winmgmt, wlidsvc,       
                                   WpnService                                   
svchost.exe                   1196 AudioEndpointBuilder,                        
                                   DeviceAssociationService,                    
                                   DisplayEnhancementService, DsSvc,            
                                   NcbService, NgcSvc, PcaSvc, StorSvc,         
                                   SysMain, TabletInputService, TrkWks,         
                                   WdiSystemHost                                
svchost.exe                   1216 BTAGService                                  
svchost.exe                   1224 BthAvctpSvc, bthserv, CDPSvc,                
                                   DispBrokerDesktopSvc, EventSystem,           
                                   FontCache, LicenseManager, netprofm, nsi,    
                                   SstpSvc, WdiServiceHost                      
svchost.exe                   1288 Dhcp, EventLog, lmhosts, NgcCtnrSvc,         
                                   SmsRouter, TimeBrokerSvc, WinHttpAutoProxySv 
svchost.exe                   1592 SEMgrSvc                                     
svchost.exe                   1628 CryptSvc, Dnscache, LanmanWorkstation, NlaSv 
dasHost.exe                   1640 N/D                                          
svchost.exe                   1712 camsvc, StateRepository                      
atiesrxx.exe                  1888 AMD External Events Utility                  
svchost.exe                   1996 SSDPSRV                                      
svchost.exe                   2112 CoreMessagingRegistrar, DPS                  
Memory Compression            2164 N/D                                          
svchost.exe                   2464 Audiosrv                                     
RtkAudioService64.exe         2548 RtkAudioService                              
svchost.exe                   2668 DusmSvc                                      
svchost.exe                   2676 Wcmsvc                                       
svchost.exe                   2828 WlanSvc                                      
spoolsv.exe                   2624 Spooler                                      
svchost.exe                   3032 BFE, mpssvc                                  
HidMonitorSvc.exe             3184 ApHidMonitorService                          
AdminService.exe              3200 AtherosSvc                                   
AnyDesk.exe                   3316 AnyDesk                                      
svchost.exe                   3480 RasMan                                       
SecurityHealthService.exe      512 SecurityHealthService                        
svchost.exe                   3704 wscsvc                                       
hldasvc.exe                   7240 N/D                                          
hldasvc.exe                   7284 HDDlife HDD Access service                   
GoogleCrashHandler.exe        6192 N/D                                          
GoogleCrashHandler64.exe      4796 N/D                                          
SgrmBroker.exe                6352 SgrmBroker                                   
svchost.exe                   6676 WbioSrvc                                     
svchost.exe                   8116 InstallService                               
csrss.exe                     9672 N/D                                          
winlogon.exe                  9092 N/D                                          
fontdrvhost.exe               5364 N/D                                          
dwm.exe                       7444 N/D                                          
atieclxx.exe                  4148 N/D                                          
Apoint.exe                    6056 N/D                                          
RAVBg64.exe                  10100 N/D                                          
sihost.exe                   10016 N/D                                          
svchost.exe                   8972 CDPUserSvc_38b477, OneSyncSvc_38b477,        
                                   WpnUserService_38b477                        
ApMsgFwd.exe                  9820 N/D                                          
taskhostw.exe                 1328 N/D                                          
ApntEx.exe                     276 N/D                                          
hidfind.exe                   3112 N/D                                          
conhost.exe                   9028 N/D                                          
explorer.exe                  4672 N/D                                          
svchost.exe                   6768 cbdhsvc_38b477                               
dllhost.exe                   8008 N/D                                          
StartMenuExperienceHost.e     6460 N/D                                          
RuntimeBroker.exe             4948 N/D                                          
SearchUI.exe                  4112 N/D                                          
RuntimeBroker.exe            10392 N/D                                          
SkypeBackgroundHost.exe      10512 N/D                                          
ApplicationFrameHost.exe     10528 N/D                                          
YourPhone.exe                10564 N/D                                          
RuntimeBroker.exe            10964 N/D                                          
SkypeApp.exe                  2312 N/D                                          
SecurityHealthSystray.exe    11568 N/D                                          
FAHWindow64.exe              11732 N/D                                          
OneDrive.exe                 11788 N/D                                          
RuntimeBroker.exe            11872 N/D                                          
AnyDesk.exe                  11964 N/D                                          
RuntimeBroker.exe              216 N/D                                          
dllhost.exe                  12008 N/D                                          
RuntimeBroker.exe            10272 N/D                                          
SecurityHealthHost.exe        1480 N/D                                          
MsMpEng.exe                   7848 WinDefend                                    
ShellExperienceHost.exe       3888 N/D                                          
RuntimeBroker.exe             8376 N/D                                          
NisSrv.exe                    4932 WdNisSvc                                     
WindowsInternal.Composabl     9428 N/D                                          
LockApp.exe                   6012 N/D                                          
RuntimeBroker.exe             2336 N/D                                          
YourPhoneServer.exe           9928 N/D                                          
smartscreen.exe               9780 N/D                                          
MicrosoftEdge.exe              400 N/D                                          
browser_broker.exe           10524 N/D                                          
MicrosoftEdgeSH.exe           6388 N/D                                          
MicrosoftEdgeCP.exe           4036 N/D                                          
LogonUI.exe                   9080 N/D                                          
csrss.exe                     6944 N/D                                          
winlogon.exe                 11880 N/D                                          
fontdrvhost.exe               6972 N/D                                          
dwm.exe                       5112 N/D                                          
atieclxx.exe                  2824 N/D                                          
Apoint.exe                    9696 N/D                                          
RAVBg64.exe                  11992 N/D                                          
sihost.exe                    4644 N/D                                          
svchost.exe                  10372 CDPUserSvc_8ee774, OneSyncSvc_8ee774,        
                                   PimIndexMaintenanceSvc_8ee774,               
                                   UnistoreSvc_8ee774, UserDataSvc_8ee774,      
                                   WpnUserService_8ee774                        
taskhostw.exe                 8724 N/D                                          
ApMsgFwd.exe                    84 N/D                                          
explorer.exe                  9388 N/D                                          
hidfind.exe                   4876 N/D                                          
ApntEx.exe                   11116 N/D                                          
svchost.exe                   4132 cbdhsvc_8ee774                               
conhost.exe                   1672 N/D                                          
dllhost.exe                   4456 N/D                                          
SkypeApp.exe                  8644 N/D                                          
YourPhone.exe                11356 N/D                                          
ctfmon.exe                    3940 N/D                                          
SettingSyncHost.exe           4088 N/D                                          
SecurityHealthSystray.exe    11012 N/D                                          
RuntimeBroker.exe             9984 N/D                                          
FAHWindow64.exe              10852 N/D                                          
RuntimeBroker.exe             7404 N/D                                          
AnyDesk.exe                   2356 N/D                                          
WzPreloader.exe               8684 N/D                                          
HDDlifePro.exe                2212 N/D                                          
HDDlifePro.exe               11804 N/D                                          
YourPhoneServer.exe           6664 N/D                                          
ShellExperienceHost.exe       2636 N/D                                          
RuntimeBroker.exe              816 N/D                                          
ApplicationFrameHost.exe      8276 N/D                                          
SystemSettings.exe            9088 N/D                                          
HxOutlook.exe                 8720 N/D                                          
RuntimeBroker.exe             7256 N/D                                          
HxTsr.exe                     5968 N/D                                          
MicrosoftEdge.exe             5492 N/D                                          
browser_broker.exe           10040 N/D                                          
RuntimeBroker.exe             9212 N/D                                          
MicrosoftEdgeSH.exe           4124 N/D                                          
MicrosoftEdgeCP.exe           4928 N/D                                          
WinStore.App.exe              8068 N/D                                          
RuntimeBroker.exe             6184 N/D                                          
WindowsInternal.Composabl     5956 N/D                                          
dllhost.exe                   4664 N/D                                          
SkypeBackgroundHost.exe       7084 N/D                                          
RuntimeBroker.exe             8420 N/D                                          
LockApp.exe                   1848 N/D                                          
StartMenuExperienceHost.e     8808 N/D                                          
RuntimeBroker.exe             5508 N/D                                          
SearchUI.exe                 10612 N/D                                          
RuntimeBroker.exe             5164 N/D                                          
chrome.exe                    1624 N/D                                          
chrome.exe                    2540 N/D                                          
chrome.exe                    9232 N/D                                          
chrome.exe                   11024 N/D                                          
chrome.exe                    4424 N/D                                          
chrome.exe                    6876 N/D                                          
chrome.exe                    8764 N/D                                          
chrome.exe                    5456 N/D                                          
WmiPrvSE.exe                  9160 N/D                                          
chrome.exe                    8432 N/D                                          
chrome.exe                    8992 N/D                                          
chrome.exe                   11712 N/D                                          
procexp.exe                   6544 N/D                                          
procexp64.exe                11624 N/D                                          
RuntimeBroker.exe             8148 N/D                                          
smartscreen.exe              10580 N/D                                          
audiodg.exe                   7308 N/D                                          
WmiPrvSE.exe                  6940 N/D                                          
powershell.exe                5872 N/D                                          
conhost.exe                   8084 N/D                                          
tasklist.exe                  9748 N/D                                          

  • 0

#5
Matias Cooke
Posted 08 April 2020 - 08:18 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

Here's the last of it. 

Attached Files


  • 0

#6
RKinner
Posted 08 April 2020 - 10:13 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Right click on the clock and select Task Manager (or you can search for task manager and hit Enter).  More Details, Startup

 

Look for WinZip FAH.  Select it then hit the Disable button in the right hand bottom corner.  Status should change to Disabled.

 

Reboot.

 

Go back into Task Manager.  This time click on Performance.  At the bottom of the page, click on  Open Resource Monitor

 

Click on the Disk tab.  This should show what processes are using the hard drive.  If not sorted with the processes with the most total disk activity at the top click on the column header for Total (B/s) once or twice until the largest numbers are at the top.

 

Should look something like this:

diskuse.JPG

 

Search

snipping tool

Hit Enter

From the Mode menu select Window snip then click on the Resource Monitor Window.  File Save As to your desktop, Capture, (make sure it uses Save As type: JPEG ( jpg) Save.  Then attach Capture.jpg to a reply like you did the speccy log.


  • 0

#7
Matias Cooke
Posted 09 April 2020 - 01:12 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

Here it is.

 

 

Attached Thumbnails

  • Captura.JPG

  • 0

#8
RKinner
Posted 09 April 2020 - 02:31 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Interesting.  Looks like System is the culprit.  Go back into Task Manager, Resource Monitor Disk as before.  Click on the box in front of System.  At the bottom right is a little down arrow.  Click on it.  That should open up a new pane.  This lists the processes that are using the hard drive.  Unfortunately it is hard to read as it is.  To the right of the File column header find the dividing line, click and hold and drag to the right so you can read the first couple of entries.  You can also move the dividing line on the left of the column to the left.  You can use the dividing lines to shrink the width of other columns.  We just want to see the File and if possible the Read Write & Total columns.

Up in the right upper corner of Resource Monitor click on the Full screen box.

 

Then use the snipping tool as before to make a capture.  You can overwrite the old one.  Should look like this:

diskuse2.JPG


  • 0

#9
Matias Cooke
Posted 10 April 2020 - 01:55 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

It was quite hard to take the picture for everything since it was constantly creating new processes . But here they are (sorry if some show repeated processes).

 

 

Attached Thumbnails

  • captura 0.JPG
  • Captura.JPG
  • Captura 2.JPG
  • Captura 3.JPG

  • 0

#10
RKinner
Posted 10 April 2020 - 02:57 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Looks like something has turned on tracing. 

Search for

 

Event Viewer

\

hit Enter

 

This will bring up the Event Viewer.

Click the arrow in front of Applications and Services Log

Click the arrow in front of Microsoft

Click the arrow in front of Windows

 

You will see a long list of possible logs.  Scroll down until you find

 

PackageStateRoaming

 

Click the arrow in front of PackageStateRoaming

 

You should see Operational.  Click on it then look in the next pane to the right.  There should be a bunch of events in the top pane.  Click on the top event then the details should appear in the bottom pane.  Take a screen shot and post it.

 

On the right under Actions should be an option to Disable.  Should toggle to Enable when you click on it.  Is the Disable option shown?  Does it change to Enable when you click on it?


  • 0

Advertisements

#11
Matias Cooke
Posted 10 April 2020 - 06:19 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

Here´s the picture. As for the enable / disable option, yes it's there. How should I leave it? I left it at disable. 

Attached Thumbnails

  • Captura de pantalla (4).png

  • 0

#12
RKinner
Posted 10 April 2020 - 06:34 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Not sure what all of these logs are about but it won't hurt to DISABLE all of them since they don't mean anything to anyone.  (Google search comes up empty).  Go back to the four pictures on your next to last post. 

http://www.geekstogo...r/#entry2647261

Any time the line ends in .evtx it will be associated with a similar log.  See how many you can find and disable then go back and look at the Resource Monitor and see if it has helped any.


  • 0

#13
Matias Cooke
Posted 10 April 2020 - 08:14 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

So I have to disable any log that ends with .evtx in the event viewer or the resource monitor? Just to be clear. 


  • 0

#14
RKinner
Posted 10 April 2020 - 08:51 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Resource Monitor.  The one we just did was the 5th one down on the first picture.  Next one is WER something.


  • 0

#15
Matias Cooke
Posted 10 April 2020 - 11:31 PM

Matias Cooke

    Member

  • Topic Starter
  • Member
  • PipPip
  • 62 posts

Sorry, I don't really understand. I have to disable these logs from inside the resource monitor, but I can't find the option to disable them. The event viewer has that option. I mean. I can disable logs in event viewer but not in resource monitor. 


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics


Also tagged with one or more of these keywords: virus, disk, slow, laptop

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP