• Registrarse
  • Iniciar sesión


  • Resultados 1 al 7 de 7

    Ni firewall ni conexion a internet

    Buenas tardes a todos, les escribo por un problema que me trae de cabeza, tengo una maquina Dell con windows 7 ultimate procesador i5 y 12 de ram . Hasta hace dos dias todo funcionaba ...

    1. #1
      Usuario Avatar de naldy71
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      4

      Ni firewall ni conexion a internet

      Buenas tardes a todos, les escribo por un problema que me trae de cabeza, tengo una maquina Dell con windows 7 ultimate procesador i5 y 12 de ram . Hasta hace dos dias todo funcionaba perfectamente. Pero desde el día domingo la máquina no conecta a internet por ningún medio, ni cable ni wifi y si llega a concretarse la conexión dice que tengo Acceso limitado al dar click a solucionar problema y este responde " El servicio de directivas de diagnostico no se está ejecutando" y si trato de iniciarlo me dice Error 5: Acceso denegado. Por otro lado no hay manera de iniciar el firewall ni por el action center ni desde services.msc. Ya no se que otra cosa tratar y todo de un dia para otro.

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      Re: Ni firewall ni conexion a internet

      Saludos y [email protected]





      TIENES CONEXION CON OTROS DISPOSITIVOS QUE PUEDAS CONECTAR A ESA RED??

      DESECARGASTE ALGO O INSTALASTE ALGO ANTES DE SUCEDER EL PROBLEMA??



      Comprueba si puedes conectarte en modo seguro con red


      Desde otro pc o dispositivo , si no es posible desde tu pc, descargas el programa que te indico y lo ejecutas en modo normal y me pasas los logs




      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de naldy71
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      4

      Re: Ni firewall ni conexion a internet

      Antes de todo el desastre le preste el laptop a mi hermano y me imagino que o descargo algo que no debia o inserto un pendrive infestado de algún bicho.

      Intente iniciarla en modo seguro con red y no funciono.

      En cuanto tenga los archivos que dices los pongo aca.

      Saludos y gracias anticipadas

    4. #4
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      Re: Ni firewall ni conexion a internet

      Ok, me pegas ambos logs
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de naldy71
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      4

      Re: Ni firewall ni conexion a internet

      FRST.txt
      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
      Ran by User (administrator) on USER-PC (16-08-2017 21:29:07)
      Running from C:\Users\User\Desktop
      Loaded Profiles: User (Available Profiles: User)
      Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (Microsoft Corporation) C:\Windows\System32\wlanext.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
      (Intel Corporation) C:\Windows\System32\igfxtray.exe
      (Intel Corporation) C:\Windows\System32\hkcmd.exe
      (Intel Corporation) C:\Windows\System32\igfxpers.exe
      (© 2015 Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\BingSvc\BingSvc.exe
      (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
      (Dell) C:\Users\User\AppData\Local\Apps\2.0\3TL1ROK7.BXW\COAE3EA5.7PB\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
      (Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
      () C:\Windows\SysWOW64\srvany.exe
      (O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
      (Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\bin\oracle.exe
      (Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE
      (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
      (O2Micro International) C:\Windows\System32\drivers\o2flash.exe
      (Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
      (Intel Corporation) C:\Windows\System32\igfxsrvc.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe


      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-17] (AVAST Software)
      HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
      Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\Run: [BingSvc] => C:\Users\User\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27815896 2017-07-28] (Skype Technologies S.A.)
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\Run: [DellSystemDetect] => C:\Users\User\AppData\Local\Apps\2.0\3TL1ROK7.BXW\COAE3EA5.7PB\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe [310728 2016-12-17] (Dell)
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\MountPoints2: {7c37a564-30a3-11e5-a8fd-806e6f6e6963} - D:\DriverPackSolution.exe
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\MountPoints2: {f96e5ee4-2f02-11e5-8c45-806e6f6e6963} - D:\DriverPackSolution.exe
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-17] (AVAST Software)
      ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-17] (AVAST Software)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk [2017-08-12]
      ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
      GroupPolicyScripts: Restriction <======= ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{1D27AEC6-5956-4E4D-A648-6C372DAAAACA}: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{2965E5E3-BDFE-4C16-B8BE-87C9AAF405A0}: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{59FACDBE-0424-47B7-97E5-5E4F9A8287E7}: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{858015EE-475F-4575-994E-1ACAE5B46A8D}: [DhcpNameServer] 172.16.0.1
      Tcpip\..\Interfaces\{8A25AA96-8CF5-4E36-8901-6CF180BA4E2B}: [DhcpNameServer] 192.168.1.1

      Internet Explorer:
      ==================
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2017-03-01] (Sun Microsystems, Inc.)
      BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)

      FireFox:
      ========
      FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2017-03-01] (Sun Microsystems, Inc.)
      FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
      CHR StartupUrls: Default -> "hxxp://www.google.co.ve/","hxxp://google.com/"
      CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
      CHR Extension: (Duolingo en la web) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2017-06-09]
      CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-15]
      CHR Extension: (Mobile & Tablet Emulator) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoncepgjhkfeapbalkebdoiialgofpan [2017-06-09]
      CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-08]
      CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-08]
      CHR Extension: (REST Console) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cokgbflfommojglbmbpenpphppikmonn [2017-06-09]
      CHR Extension: (Búsqueda de Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-08]
      CHR Extension: (Postman) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2017-08-02]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-17]
      CHR Extension: (TVNewtab) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmpdplppghbgkmcegclmcgolabkgalac [2017-06-09]
      CHR Extension: (Advanced REST client) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmloofddffdnphfgcellkdfbfbjeloo [2017-06-09]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-08]
      CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
      CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
      CHR Extension: (Vacation Island) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppfjnmapngedofbjgnfjkgmdkbnhopcb [2017-06-09]
      CHR HKU\S-1-5-21-4052586052-2387293332-205491979-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-17] (AVAST Software s.r.o.)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-17] (AVAST Software)
      R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
      S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
      R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
      S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe [45568 2014-05-29] () [File not signed]
      S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [81408 2014-05-29] (Oracle Corporation) [File not signed]
      R2 OracleServiceXE; c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [147110912 2014-05-30] (Oracle Corporation) [File not signed]
      S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [83968 2014-05-29] (Oracle Corporation) [File not signed]
      R2 OracleXETNSListener; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [522240 2014-05-29] (Oracle Corporation) [File not signed]
      S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-17] (AVAST Software s.r.o.)
      R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-17] (AVAST Software s.r.o.)
      R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-17] (AVAST Software s.r.o.)
      R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-17] (AVAST Software s.r.o.)
      S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-06-22] (AVAST Software)
      R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-09] (AVAST Software)
      R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-06-22] (AVAST Software)
      R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-06-22] (AVAST Software)
      R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-09] (AVAST Software)
      R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-06-22] (AVAST Software)
      R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-06-22] (AVAST Software)
      R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-06-30] (AVAST Software)
      S3 BCMTPM; C:\Windows\System32\DRIVERS\btpmwx64.sys [32096 2012-10-24] (Broadcom Corp.)
      R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
      S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
      R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
      R1 MpKsl71746a08; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D5F73F55-D3B4-4002-8A89-3903F9C1973A}\MpKsl71746a08.sys [44928 2017-08-16] (Microsoft Corporation)
      S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
      S3 O2FJ2RDR; C:\Windows\System32\DRIVERS\O2FJ2w7x64.sys [186784 2013-07-19] (O2Micro )
      S2 risdptsk; C:\Windows\System32\DRIVERS\risdsn64.sys [76288 2009-09-24] (REDC)
      S3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [2978520 2013-10-07] (Realtek Semiconductor Corporation )
      U5 storvsc; C:\Windows\System32\Drivers\storvsc.sys [34688 2010-11-20] (Microsoft Corporation)
      R3 ST_Accel; C:\Windows\System32\DRIVERS\ST_Accel.sys [87776 2013-04-11] (STMicroelectronics)
      S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-08-16 22:01 - 2017-08-16 22:01 - 00003026 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest-Retry
      2017-08-16 21:29 - 2017-08-16 21:29 - 00014118 _____ C:\Users\User\Desktop\FRST.txt
      2017-08-16 21:27 - 2017-08-15 15:15 - 01345720 _____ (SafeBytes Software Inc.) C:\Users\User\Desktop\TotalSystemCare_Installer.exe
      2017-08-16 21:27 - 2017-08-15 11:30 - 151800088 _____ (Microsoft Corporation) C:\Users\User\Desktop\msert.exe
      2017-08-12 21:38 - 2017-08-12 21:38 - 324123952 _____ C:\Users\User\Desktop\copiaregistro.reg
      2017-08-12 21:36 - 2017-08-12 21:36 - 00004026 _____ C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
      2017-08-12 21:36 - 2017-08-12 21:36 - 00003334 _____ C:\Windows\System32\Tasks\PCDDataUploadTask
      2017-08-12 21:36 - 2017-08-12 21:36 - 00003214 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest
      2017-08-12 21:31 - 2017-08-12 21:31 - 00000446 _____ C:\Users\User\Desktop\Repair.bat
      2017-08-12 21:16 - 2017-08-16 21:29 - 00000000 ____D C:\FRST
      2017-08-12 21:16 - 2017-08-16 10:56 - 02375168 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
      2017-08-12 21:16 - 2017-08-12 21:16 - 00000000 ____D C:\ProgramData\SWCUTemp
      2017-08-12 21:12 - 2017-08-12 21:12 - 00000000 _____ C:\Users\User\Desktop\New Text Document.txt
      2017-08-12 21:11 - 2017-08-12 21:11 - 00003216 ____N C:\bootsqm.dat
      2017-08-12 21:11 - 2017-08-12 21:11 - 00000718 _____ C:\Users\User\Downloads\error.txt
      2017-08-12 21:08 - 2017-08-12 21:12 - 00392822 _____ C:\Windows\ntbtlog.txt
      2017-08-12 21:08 - 2017-08-12 21:08 - 00262144 _____ C:\Windows\Minidump\081217-11341-01.dmp
      2017-08-12 16:49 - 2017-08-12 16:49 - 00266288 _____ C:\Windows\Minidump\081217-10483-02.dmp
      2017-08-12 08:07 - 2017-08-12 08:07 - 00266288 _____ C:\Windows\Minidump\081217-10483-01.dmp
      2017-08-12 08:07 - 2017-08-12 08:07 - 00266288 _____ C:\Windows\Minidump\081217-10296-01.dmp
      2017-08-12 07:14 - 2017-08-12 07:14 - 00266288 _____ C:\Windows\Minidump\081217-9984-01.dmp
      2017-08-10 07:26 - 2017-07-29 10:56 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
      2017-08-10 07:26 - 2017-07-21 10:26 - 00518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
      2017-08-10 07:26 - 2017-07-21 10:26 - 00409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
      2017-08-10 07:26 - 2017-07-21 10:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
      2017-08-10 07:26 - 2017-07-21 10:26 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
      2017-08-10 07:26 - 2017-07-15 14:35 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
      2017-08-10 07:26 - 2017-07-15 13:52 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 02319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 02222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 02058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
      2017-08-10 07:26 - 2017-07-14 11:29 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
      2017-08-10 07:26 - 2017-07-14 11:12 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
      2017-08-10 07:26 - 2017-07-14 11:12 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
      2017-08-10 07:26 - 2017-07-14 11:11 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
      2017-08-10 07:26 - 2017-07-14 11:10 - 01549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 01400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 01363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
      2017-08-10 07:26 - 2017-07-14 11:10 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
      2017-08-10 07:26 - 2017-07-14 11:00 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
      2017-08-10 07:26 - 2017-07-14 11:00 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
      2017-08-10 07:26 - 2017-07-14 10:59 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
      2017-08-10 07:26 - 2017-07-14 10:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
      2017-08-10 07:26 - 2017-07-14 10:57 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
      2017-08-10 07:26 - 2017-07-14 10:50 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
      2017-08-10 07:26 - 2017-07-14 10:50 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
      2017-08-10 07:26 - 2017-07-14 03:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
      2017-08-10 07:26 - 2017-07-14 03:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
      2017-08-10 07:26 - 2017-07-14 02:49 - 25733632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
      2017-08-10 07:26 - 2017-07-14 02:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
      2017-08-10 07:26 - 2017-07-14 02:45 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
      2017-08-10 07:26 - 2017-07-14 02:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
      2017-08-10 07:26 - 2017-07-14 02:44 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
      2017-08-10 07:26 - 2017-07-14 02:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
      2017-08-10 07:26 - 2017-07-14 02:38 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
      2017-08-10 07:26 - 2017-07-14 02:29 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
      2017-08-10 07:26 - 2017-07-14 02:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
      2017-08-10 07:26 - 2017-07-14 02:22 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
      2017-08-10 07:26 - 2017-07-14 02:20 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
      2017-08-10 07:26 - 2017-07-14 02:20 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
      2017-08-10 07:26 - 2017-07-14 02:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
      2017-08-10 07:26 - 2017-07-14 02:19 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
      2017-08-10 07:26 - 2017-07-14 02:08 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
      2017-08-10 07:26 - 2017-07-14 02:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
      2017-08-10 07:26 - 2017-07-14 01:49 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
      2017-08-10 07:26 - 2017-07-14 01:48 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
      2017-08-10 07:26 - 2017-07-14 01:47 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
      2017-08-10 07:26 - 2017-07-14 01:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
      2017-08-10 07:26 - 2017-07-14 01:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
      2017-08-10 07:26 - 2017-07-14 01:35 - 05981184 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
      2017-08-10 07:26 - 2017-07-14 01:35 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
      2017-08-10 07:26 - 2017-07-14 01:33 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
      2017-08-10 07:26 - 2017-07-14 01:16 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
      2017-08-10 07:26 - 2017-07-14 01:11 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
      2017-08-10 07:26 - 2017-07-14 01:10 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
      2017-08-10 07:26 - 2017-07-14 01:09 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
      2017-08-10 07:26 - 2017-07-14 01:09 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
      2017-08-10 07:26 - 2017-07-14 00:40 - 15254016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
      2017-08-10 07:26 - 2017-07-14 00:23 - 03240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
      2017-08-10 07:26 - 2017-07-14 00:07 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
      2017-08-10 07:26 - 2017-07-13 23:58 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
      2017-08-10 07:26 - 2017-07-13 23:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
      2017-08-10 07:26 - 2017-07-13 22:54 - 20270080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
      2017-08-10 07:26 - 2017-07-13 22:48 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
      2017-08-10 07:26 - 2017-07-13 22:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
      2017-08-10 07:26 - 2017-07-13 22:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
      2017-08-10 07:26 - 2017-07-13 22:48 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
      2017-08-10 07:26 - 2017-07-13 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
      2017-08-10 07:26 - 2017-07-13 22:44 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
      2017-08-10 07:26 - 2017-07-13 22:42 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
      2017-08-10 07:26 - 2017-07-13 22:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
      2017-08-10 07:26 - 2017-07-13 22:39 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
      2017-08-10 07:26 - 2017-07-13 22:38 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
      2017-08-10 07:26 - 2017-07-13 22:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
      2017-08-10 07:26 - 2017-07-13 22:38 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
      2017-08-10 07:26 - 2017-07-13 22:30 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
      2017-08-10 07:26 - 2017-07-13 22:26 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
      2017-08-10 07:26 - 2017-07-13 22:25 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
      2017-08-10 07:26 - 2017-07-13 22:25 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
      2017-08-10 07:26 - 2017-07-13 22:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
      2017-08-10 07:26 - 2017-07-13 22:22 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
      2017-08-10 07:26 - 2017-07-13 22:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
      2017-08-10 07:26 - 2017-07-13 22:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
      2017-08-10 07:26 - 2017-07-13 22:17 - 04546048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
      2017-08-10 07:26 - 2017-07-13 22:13 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
      2017-08-10 07:26 - 2017-07-13 22:12 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
      2017-08-10 07:26 - 2017-07-13 22:11 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
      2017-08-10 07:26 - 2017-07-13 22:11 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
      2017-08-10 07:26 - 2017-07-13 22:09 - 13663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
      2017-08-10 07:26 - 2017-07-13 21:53 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
      2017-08-10 07:26 - 2017-07-13 21:50 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
      2017-08-10 07:26 - 2017-07-13 21:48 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
      2017-08-10 07:26 - 2017-07-08 11:34 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
      2017-08-10 07:26 - 2017-07-08 11:00 - 03224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
      2017-08-10 07:26 - 2017-07-07 11:37 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
      2017-08-10 07:26 - 2017-07-07 11:33 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
      2017-08-10 07:26 - 2017-07-07 11:33 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
      2017-08-10 07:26 - 2017-07-07 11:33 - 00363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
      2017-08-10 07:26 - 2017-07-07 11:33 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
      2017-08-10 07:26 - 2017-07-07 11:33 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
      2017-08-10 07:26 - 2017-07-07 11:31 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:15 - 04001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
      2017-08-10 07:26 - 2017-07-07 11:15 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
      2017-08-10 07:26 - 2017-07-07 11:13 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
      2017-08-10 07:26 - 2017-07-07 11:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:10 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 11:02 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
      2017-08-10 07:26 - 2017-07-07 11:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
      2017-08-10 07:26 - 2017-07-07 11:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
      2017-08-10 07:26 - 2017-07-07 11:01 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
      2017-08-10 07:26 - 2017-07-07 10:58 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
      2017-08-10 07:26 - 2017-07-07 10:57 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
      2017-08-10 07:26 - 2017-07-07 10:54 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
      2017-08-10 07:26 - 2017-07-07 10:54 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
      2017-08-10 07:26 - 2017-07-07 10:54 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
      2017-08-10 07:26 - 2017-07-07 10:53 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
      2017-08-10 07:26 - 2017-07-07 10:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
      2017-08-10 07:26 - 2017-07-07 10:51 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
      2017-08-10 07:26 - 2017-07-07 10:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
      2017-08-10 07:26 - 2017-07-07 10:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
      2017-08-10 07:26 - 2017-07-07 10:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
      2017-08-10 07:26 - 2017-07-07 10:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
      2017-08-10 07:26 - 2017-07-07 10:47 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
      2017-08-10 07:26 - 2017-07-07 10:47 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 10:47 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 10:47 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-07 10:47 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
      2017-08-10 07:26 - 2017-07-01 09:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
      2017-08-08 06:18 - 2017-08-08 06:18 - 00262144 _____ C:\Windows\Minidump\080817-10186-01.dmp
      2017-08-06 12:50 - 2017-08-06 12:50 - 00266288 _____ C:\Windows\Minidump\080617-10280-01.dmp
      2017-08-05 01:40 - 2017-08-12 21:09 - 00000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics
      2017-07-25 07:58 - 2017-07-25 07:58 - 00254464 _____ (mrtDoubt LLC) C:\Users\User\Downloads\installer_i1729_ffe42384a9b9453a95ffddf65fabce65.exe
      2017-07-20 13:47 - 2017-07-20 13:46 - 00003982 _____ C:\Users\User\Downloads\PERFILDELUUARIOBOLE.txt
      2017-07-20 13:38 - 2017-07-20 13:46 - 00003982 _____ C:\Users\User\Desktop\PERFILDELUUARIOBOLE.jar
      2017-07-19 22:51 - 2017-07-19 22:09 - 118896680 _____ (SmartBear Software) C:\Users\User\Downloads\SoapUI-x64-5.3.0.exe
      2017-07-19 22:44 - 2017-07-19 22:45 - 00000000 ____D C:\Users\User\AppData\Roaming\Notepad++
      2017-07-19 22:44 - 2017-07-19 22:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
      2017-07-19 22:44 - 2017-07-19 22:44 - 00000000 ____D C:\Program Files\Notepad++
      2017-07-19 22:43 - 2017-07-19 22:43 - 03053480 _____ C:\Users\User\Downloads\npp.7.4.2.Installer.x64.exe
      2017-07-19 22:40 - 2017-07-20 13:45 - 00000000 ____D C:\Users\User\Desktop\PERFIL_DEL_USUARIO_BOLE
      2017-07-19 22:40 - 2017-07-19 22:40 - 00000000 ____D C:\Users\User\Downloads\sbconfig_ERFIL_DEL_USUARIO_BOLE
      2017-07-19 22:33 - 2017-07-19 22:33 - 00002255 _____ C:\Users\Public\Desktop\SoapUI 5.3.0.lnk
      2017-07-19 22:33 - 2017-07-19 22:33 - 00000000 ____D C:\Users\User\SoapUI-Tutorials
      2017-07-19 22:33 - 2017-07-19 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartBear
      2017-07-19 22:32 - 2017-07-19 22:32 - 00000000 ____D C:\Users\User\.soapuios
      2017-07-19 22:32 - 2017-07-19 22:32 - 00000000 ____D C:\Program Files\SmartBear
      2017-07-19 22:14 - 2017-07-19 22:14 - 00003953 _____ C:\Users\User\Downloads\sbconfig_ERFIL_DEL_USUARIO_BOLE.rar
      2017-07-17 07:08 - 2017-07-17 07:08 - 00004604 _____ C:\Users\User\Downloads\REACTIVAR_USUARIO_18072017.txt
      2017-07-17 07:06 - 2017-07-17 07:06 - 00004683 _____ C:\Users\User\Downloads\SUSPENDER_USUARIO_18072017.txt
      2017-07-17 07:05 - 2017-07-17 07:05 - 00009681 _____ C:\Users\User\Downloads\CREAR_USUARIO_BOLE_18072017.txt
      2017-07-17 07:00 - 2017-07-17 07:00 - 00011720 _____ C:\Users\User\Downloads\ELIMINAR_USUARIO_18072017.txt
      2017-07-17 07:00 - 2017-07-17 07:00 - 00002358 _____ C:\Users\User\Downloads\RESTABLECER_CLAVE_18072017.txt
      2017-07-17 06:59 - 2017-07-17 06:59 - 00011720 _____ C:\Users\User\Downloads\ELIMINAR_USUARIO_18072017,txt.txt
      2017-07-17 06:59 - 2017-07-17 06:59 - 00009709 _____ C:\Users\User\Downloads\ACTUALIZAR_USUARIO_18072017.txt
      2017-07-17 06:58 - 2017-07-17 06:58 - 00400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
      2017-07-17 06:58 - 2017-07-17 06:58 - 00009706 _____ C:\Users\User\Downloads\ACTUALIZAR_USUARIO_18072017.xml
      2017-07-17 06:57 - 2017-07-17 06:57 - 00011720 _____ C:\Users\User\Downloads\ELIMINAR_USUARIO_18072017.xml
      2017-07-17 06:57 - 2017-07-17 06:57 - 00009681 _____ C:\Users\User\Downloads\CREAR_USUARIO_BOLE_18072017.xml
      2017-07-17 06:57 - 2017-07-17 06:57 - 00004680 _____ C:\Users\User\Downloads\SUSPENDER_USUARIO_18072017.xml
      2017-07-17 06:57 - 2017-07-17 06:57 - 00004601 _____ C:\Users\User\Downloads\REACTIVAR_USUARIO_18072017.xml
      2017-07-17 06:57 - 2017-07-17 06:57 - 00002358 _____ C:\Users\User\Downloads\RESTABLECER_CLAVE_18072017.xml
      2017-07-17 06:50 - 2017-07-17 06:50 - 00025094 _____ C:\Users\User\Desktop\RECARGAJULIO2017.pdf

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-08-16 22:02 - 2016-12-17 15:45 - 00003484 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
      2017-08-16 21:27 - 2016-12-24 21:26 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
      2017-08-16 21:27 - 2009-07-14 01:13 - 00785026 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-08-16 21:27 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\inf
      2017-08-16 21:25 - 2017-04-03 21:02 - 00000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
      2017-08-12 21:36 - 2016-12-17 15:45 - 00000000 ____D C:\ProgramData\PCDr
      2017-08-12 21:36 - 2016-12-17 15:42 - 00000000 ____D C:\Users\User\AppData\Roaming\PCDr
      2017-08-12 21:36 - 2016-12-17 15:38 - 00000000 ____D C:\Users\User\AppData\Local\Deployment
      2017-08-12 21:17 - 2017-03-18 17:01 - 00004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
      2017-08-12 21:17 - 2009-07-14 00:45 - 00021312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2017-08-12 21:17 - 2009-07-14 00:45 - 00021312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2017-08-12 21:12 - 2016-12-17 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Systems VPN Client
      2017-08-12 21:12 - 2009-07-13 23:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
      2017-08-12 21:08 - 2017-03-12 21:57 - 622610389 _____ C:\Windows\MEMORY.DMP
      2017-08-12 21:08 - 2017-03-12 21:57 - 00000000 ____D C:\Windows\Minidump
      2017-08-12 21:08 - 2017-03-04 21:05 - 00000000 ____D C:\Users\User\AppData\Roaming\vlc
      2017-08-12 21:08 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
      2017-08-11 22:06 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\system32\NDF
      2017-08-11 07:32 - 2015-07-15 11:26 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
      2017-08-10 07:47 - 2009-07-14 00:45 - 00409520 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-08-10 07:40 - 2015-07-16 08:55 - 00777640 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
      2017-08-10 07:38 - 2015-07-15 14:14 - 00000000 ____D C:\Windows\system32\MRT
      2017-08-10 07:37 - 2015-07-15 14:13 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2017-08-09 07:42 - 2016-12-25 14:09 - 01015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
      2017-08-09 07:42 - 2016-12-25 14:09 - 00146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
      2017-08-08 06:35 - 2015-07-15 11:27 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
      2017-08-08 06:30 - 2015-07-15 11:23 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-08-08 06:30 - 2015-07-15 11:23 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-08-08 06:29 - 2015-07-15 11:22 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
      2017-08-08 06:29 - 2015-07-15 11:22 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
      2017-08-08 06:29 - 2015-07-15 11:22 - 00004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
      2017-08-08 06:28 - 2015-07-15 11:22 - 00000000 ____D C:\Windows\SysWOW64\Macromed
      2017-08-08 06:28 - 2015-07-15 11:21 - 00000000 ____D C:\Windows\system32\Macromed
      2017-08-02 07:40 - 2016-12-24 21:26 - 00000000 ____D C:\ProgramData\Skype
      2017-07-20 13:44 - 2017-03-01 16:15 - 00000000 ____D C:\Users\User\AppData\Local\Eclipse
      2017-07-20 13:34 - 2017-06-22 21:17 - 00000000 ____D C:\Users\User\Desktop\0935
      2017-07-17 06:57 - 2017-03-18 17:01 - 00343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
      2017-07-17 06:57 - 2017-03-18 17:01 - 00320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
      2017-07-17 06:57 - 2017-03-18 17:01 - 00198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
      2017-07-17 06:57 - 2017-03-18 17:01 - 00057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys

    6. #6
      Usuario Avatar de naldy71
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      4

      Re: Ni firewall ni conexion a internet

      continuacion FRST


      Some files in TEMP:
      ====================
      C:\Users\User\AppData\Local\Temp\7za.exe
      C:\Users\User\AppData\Local\Temp\BSvcProcessor.exe
      C:\Users\User\AppData\Local\Temp\BSvcUpdater.exe
      C:\Users\User\AppData\Local\Temp\proxy_vole5405351197234851410.dll
      C:\Users\User\AppData\Local\Temp\tmp6C3A.tmp.exe
      C:\Users\User\AppData\Local\Temp\vcredist_x64.exe
      C:\Users\User\AppData\Local\Temp\vc_redist.x86.exe
      C:\Users\User\AppData\Local\Temp\vpnclient_setup.exe


      ==================== Bamital & volsnap =================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\SysWOW64\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


      LastRegBack: 2017-08-16 22:20

      ==================== End of FRST.txt ============================

      addition.txt

      Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-04-2016
      Ran by User (2017-08-16 21:29:35)
      Running from C:\Users\User\Desktop
      Windows 7 Professional Service Pack 1 (X64) (2015-07-15 14:42:17)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrator (S-1-5-21-4052586052-2387293332-205491979-500 - Administrator - Disabled)
      Guest (S-1-5-21-4052586052-2387293332-205491979-501 - Limited - Disabled)
      HomeGroupUser$ (S-1-5-21-4052586052-2387293332-205491979-1002 - Limited - Enabled)
      User (S-1-5-21-4052586052-2387293332-205491979-1000 - Administrator - Enabled) => C:\Users\User

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
      AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
      Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.151 - Adobe Systems Incorporated)
      Apowersoft Online Launcher version 1.4.6 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.4.6 - APOWERSOFT LIMITED)
      Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
      Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.)
      Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
      Dell System Detect (HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.90 - Google Inc.)
      Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
      HeavyLoad V3.3 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.3 - JAM Software)
      Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.8 - Intel)
      Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)
      Java(TM) SE Development Kit 6 Update 24 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160240}) (Version: 1.6.0.240 - Oracle)
      Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
      Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
      Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
      Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
      Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
      Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
      Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.4.2 - Notepad++ Team)
      O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.)
      O2Micro Flash Memory Card Windows Driver (x32 Version: 3.0.07.23 - O2Micro International LTD.) Hidden
      Oracle Database 11g Express Edition (HKLM-x32\...\InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C}) (Version: 11.2.0 - Oracle Corporation)
      Oracle Database 11g Express Edition (Version: 11.2.0 - Oracle Corporation) Hidden
      Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
      SoapUI 5.3.0 5.3.0 (HKLM\...\5517-2803-0637-4585) (Version: 5.3.0 - SmartBear Software)
      Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
      VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
      WhatsApp + BlueStacks Packages (HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\WhatsApp + BlueStacks Packages) (Version: - ) <==== ATTENTION
      WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {1117F61F-6A70-4452-B03A-8CE163B21517} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe <==== ATTENTION
      Task: {149CE097-FC46-4BBB-B6A1-632E0019D175} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-09-13] (PC-Doctor, Inc.)
      Task: {21C08BB3-817F-406F-91F6-85E5D76FCBB5} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-09-13] (PC-Doctor, Inc.)
      Task: {3033FF0C-A473-4E47-A782-E64BC7277859} - System32\Tasks\SystemToolsDailyTest-Retry => uaclauncher.exe
      Task: {320BEBFA-A588-482D-B323-5DE25186AF16} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-08] (AVAST Software)
      Task: {35452978-9D42-4810-86EF-A086AB71A2AA} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
      Task: {46016DB0-ECB0-44AE-9298-0EF9E5876C38} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
      Task: {7476C064-AFE0-4F70-8D55-1171B90EE5DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
      Task: {76F2678A-8EA3-4401-BF8C-4309890FD3E1} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
      Task: {7B7F162E-BC78-4FC2-87A1-FCE86A528DEB} - System32\Tasks\LaunchApp => C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe <==== ATTENTION
      Task: {84A2232A-A64E-4F07-BE9D-026CC88DD53F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
      Task: {8549A7D5-023B-43BD-869A-21DDF299BBAD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-08] (Adobe Systems Incorporated)
      Task: {AE8B3E72-0208-422B-9399-58A6C580E50D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-07-17] (AVAST Software)
      Task: {E6847403-D924-494D-8C3E-24E537936F6A} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


      ==================== Shortcuts =============================

      (The entries could be listed to be restored or removed.)

      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle WebLogic\User Projects\soa_domain (1)\Oracle Service Bus Admin Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/sbconsole
      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle WebLogic\User Projects\soa_domain\Oracle Service Bus Admin Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/sbconsole
      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle Fusion Middleware 11.1.1.6.0\User Projects\soa_domain\Admin Server Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/console

      ==================== Loaded Modules (Whitelisted) ==============

      2017-06-18 17:44 - 2017-06-18 17:44 - 00230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
      2012-01-10 21:12 - 2012-01-10 21:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
      2015-08-19 12:22 - 2003-04-18 18:06 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe
      2017-07-17 06:57 - 2017-07-17 06:57 - 00162032 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00831664 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00276808 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
      2017-08-11 07:06 - 2017-08-11 07:06 - 05895544 _____ () C:\Program Files\AVAST Software\Avast\defs\17081108\algo.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00231664 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
      2017-07-24 15:57 - 2017-07-24 15:57 - 01991640 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
      2017-07-17 06:58 - 2017-07-17 06:58 - 01065936 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
      2017-06-22 21:21 - 2017-06-22 21:21 - 67109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2017-07-17 06:57 - 2017-07-17 06:57 - 00292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
      2010-03-23 14:26 - 2010-03-23 14:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


      ==================== EXE Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE trusted site: HKU\S-1-5-21-4052586052-2387293332-205491979-1000\...\dell.com -> dell.com

      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-4052586052-2387293332-205491979-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
      DNS Servers: Media is not connected to internet.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      MpsSvc => Firewall Service is not running.
      bfe => Firewall Service is not running.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      (Currently there is no automatic fix for this section.)


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
      FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
      FirewallRules: [{459882E3-06DE-4000-9F59-9FF48C08B560}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
      FirewallRules: [{647032DC-1534-4C43-811B-A5CF9397E07B}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
      FirewallRules: [{35B76FFD-1300-4F50-8986-DC2A18D9EA8F}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
      FirewallRules: [{99444826-55D6-4291-BB5A-8D7B2B1E5249}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
      FirewallRules: [{30762070-FB1B-4B32-AD81-427F0846F92B}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
      FirewallRules: [TCP Query User{B648A66E-D97E-41ED-A868-0B384A40DFDA}C:\program files\java\jdk1.6.0_24\bin\java.exe] => (Allow) C:\program files\java\jdk1.6.0_24\bin\java.exe
      FirewallRules: [UDP Query User{D5BC5230-9FE1-4A7E-A0F8-F51AEE6D0F3B}C:\program files\java\jdk1.6.0_24\bin\java.exe] => (Allow) C:\program files\java\jdk1.6.0_24\bin\java.exe
      FirewallRules: [TCP Query User{8DFC00F0-B474-45F1-B82D-5B264F44707A}C:\program files\smartbear\soapui-5.3.0\bin\soapui-5.3.0.exe] => (Allow) C:\program files\smartbear\soapui-5.3.0\bin\soapui-5.3.0.exe
      FirewallRules: [UDP Query User{F8793538-6244-4E64-B2CA-2A3311AB6DFA}C:\program files\smartbear\soapui-5.3.0\bin\soapui-5.3.0.exe] => (Allow) C:\program files\smartbear\soapui-5.3.0\bin\soapui-5.3.0.exe
      FirewallRules: [{BD8D7C15-2199-4EEC-AA11-8A11FEDE5853}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================

      12-08-2017 21:57:31 Installed Microsoft Solution - f4c2a476-3532-4511-a4be-0f5ccc5501af
      Check "winmgmt" service or repair WMI.


      ==================== Faulty Device Manager Devices =============

      Name: Cisco Systems VPN Adapter for 64-bit Windows
      Description: Cisco Systems VPN Adapter for 64-bit Windows
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: Cisco Systems
      Service: CVirtA
      Problem: : This device is disabled. (Code 22)
      Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (08/12/2017 09:09:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

      Error: (08/12/2017 09:08:39 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Volume Shadow Copy Service error: Unexpected error calling routine RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...). hr = 0x80070005, Access is denied.
      .


      Operation:
      Initializing Writer

      Context:
      Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
      Writer Name: System Writer
      Writer Instance ID: {500aa86f-7715-49d4-8f1c-11d8023bbfac}

      Error: (08/12/2017 09:09:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

      Error: (08/12/2017 09:08:39 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Volume Shadow Copy Service error: Unexpected error calling routine RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...). hr = 0x80070005, Access is denied.
      .


      Operation:
      Initializing Writer

      Context:
      Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
      Writer Name: System Writer
      Writer Instance ID: {bf959e38-25e7-4bd5-b2fe-2f47e4388fb6}

      Error: (08/12/2017 09:09:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

      Error: (08/12/2017 09:08:39 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Volume Shadow Copy Service error: Unexpected error calling routine RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...). hr = 0x80070005, Access is denied.
      .


      Operation:
      Initializing Writer

      Context:
      Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
      Writer Name: System Writer
      Writer Instance ID: {0611a48b-a7bc-4b01-b8fa-544933269bfd}

      Error: (08/12/2017 09:09:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

      Error: (08/12/2017 09:08:39 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Volume Shadow Copy Service error: Unexpected error calling routine RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...). hr = 0x80070005, Access is denied.
      .


      Operation:
      Initializing Writer

      Context:
      Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
      Writer Name: System Writer
      Writer Instance ID: {82bf7693-7f49-4a62-97eb-26a01c0963e1}

      Error: (08/12/2017 0926 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

      Error: (08/12/2017 09:20:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: The program pcdrcui.exe version 6.0.6855.61 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

      Process ID: 1050

      Start Time: 01d313d495433434

      Termination Time: 16

      Application Path: C:\Program Files\Dell\SupportAssist\pcdrcui.exe

      Report Id:


      System errors:
      =============
      Error: (08/16/2017 09:29:10 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
      Description: The Network Location Awareness service terminated with service-specific error %%-1073741288.

      Error: (08/16/2017 09:29:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
      %%0

      Error: (08/16/2017 09:29:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
      Description: The Network Location Awareness service terminated with service-specific error %%-1073741288.

      Error: (08/16/2017 09:29:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
      %%0

      Error: (08/16/2017 09:28:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
      Description: The Network Location Awareness service terminated with service-specific error %%-1073741288.

      Error: (08/16/2017 09:28:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
      %%1062

      Error: (08/16/2017 09:28:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
      %%0

      Error: (08/16/2017 09:28:45 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
      Description: The Network Location Awareness service terminated with service-specific error %%-1073741288.

      Error: (08/16/2017 09:28:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
      %%0

      Error: (08/16/2017 09:28:29 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
      Description: The Network Location Awareness service terminated with service-specific error %%-1073741288.


      CodeIntegrity:
      ===================================
      Date: 2017-08-05 01:01:45.134
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\cvusbdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-07-16 19:38:46.820
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbccgp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2016-02-23 11:43:20.112
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2016-02-23 11:43:20.066
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-20 13:34:07.927
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-20 13:34:07.912
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-20 12:46:41.525
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-20 12:46:41.478
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-15 10:30:38.321
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2015-07-15 10:30:38.321
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\btpmwx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
      Percentage of memory in use: 20%
      Total physical RAM: 12168.94 MB
      Available physical RAM: 9627.29 MB
      Total Virtual: 24336.06 MB
      Available Virtual: 21757.61 MB

      ==================== Drives ================================

      Drive c: () (Fixed) (Total:238.37 GB) (Free:174.88 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: DEC782F6)
      Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================

    7. #7
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      Re: Ni firewall ni conexion a internet

      Realiza lo siguiente por favor:

      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)
      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      GroupPolicyScripts: Restriction <======= ATTENTION
      CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
      CHR StartupUrls: Default -> "hxxp://www.google.co.ve/","hxxp://google.com/"
      CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
      CHR Extension: (Vacation Island) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppfjnmapngedofbjgnfjkgmdkbnhopcb [2017-06-09]
      CHR HKU\S-1-5-21-4052586052-2387293332-205491979-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      2017-08-12 21:16 - 2017-08-12 21:16 - 00000000 ____D C:\ProgramData\SWCUTemp
      C:\Users\User\AppData\Local\Temp\7za.exe
      C:\Users\User\AppData\Local\Temp\BSvcProcessor.exe
      C:\Users\User\AppData\Local\Temp\BSvcUpdater.exe
      C:\Users\User\AppData\Local\Temp\proxy_vole5405351197234851410.dll
      C:\Users\User\AppData\Local\Temp\tmp6C3A.tmp.exe
      C:\Users\User\AppData\Local\Temp\vcredist_x64.exe
      C:\Users\User\AppData\Local\Temp\vc_redist.x86.exe
      C:\Users\User\AppData\Local\Temp\vpnclient_setup.exe
      Task: {1117F61F-6A70-4452-B03A-8CE163B21517} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe <==== ATTENTION
      C:\Program Files (x86)\OLBPre
      Task: {7B7F162E-BC78-4FC2-87A1-FCE86A528DEB} - System32\Tasks\LaunchApp => C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe <==== ATTENTION
      C:\Program Files (x86)\MyPC Backup
      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle WebLogic\User Projects\soa_domain (1)\Oracle Service Bus Admin Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/sbconsole
      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle WebLogic\User Projects\soa_domain\Oracle Service Bus Admin Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/sbconsole
      ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle Fusion Middleware 11.1.1.6.0\User Projects\soa_domain\Admin Server Console.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url.dll, FileProtocolHandler hxxp://User-PC:7001/console
      
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, comentado como va el problema
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.