• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 21

    Ayuda, posible virus o error del sistema

    Sigue igual o incluso algo peor, cualquier accion que intento sigue saliendo el Mensade de No responde, ya sea al abrir mozilla o al intentar abrir una carpeta, hoy le costo bastante mas hasta encender. ...

    1. #11
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      Sigue igual o incluso algo peor, cualquier accion que intento sigue saliendo el Mensade de No responde, ya sea al abrir mozilla o al intentar abrir una carpeta, hoy le costo bastante mas hasta encender.

      Me aparecio 2 block de notas en el escritorio que pone esto:

      1
      [.ShellClassInfo]
      [email protected]%SystemRoot%\system32\shell32.dll,-21769
      IconResource=%SystemRoot%\system32\imageres.dll,-183

      2
      [.ShellClassInfo]
      [email protected]%SystemRoot%\system32\shell32.dll,-21799

    2. #12
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Ayuda, posible virus o error del sistema

      Hola

      Realiza lo siguiente:

      1- Haga clic en el botón "Inicio" y después en "Panel de control"
      2- Haga clic en "Apariencia y personalización"
      3- Haga clic en "Opciones de carpeta"
      4- Haga clic en la pestaña "Ver".
      5- Marcar la casilla "Ocultar extensiones de archivo para tipos de archivo conocidos".
      6- En la carpeta "Archivos ocultos" seleccione "No Mostrar archivos y carpetas ocultos".
      7- Tildar en "Ocultar archivos protegidos del sistema operativo".
      8- Haga clic en Aplicar, y después en Aceptar.

      Comenta si desaparecieron esos bloc de notas y como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #13
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      Hola Daniela, te comento, ayer volvi a pasar el EsetOnline, ya que creo que la otra vez no lo pase bien, te dejo el reporte:

      16:49:07 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL(2).exe=2.0.19.0
      # EOSSerial=09dc69158532de4d81ff0a117246563f
      # end=init
      # utc_time=2018-03-03 15:49:06
      # local_time=2018-03-03 16:49:06 (+0100, Hora estándar romance)
      # country="Spain"
      # osver=10.0.16299 NT
      16:51:56 16:54:32 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL(2).exe=2.0.19.0
      # EOSSerial=09dc69158532de4d81ff0a117246563f
      # end=init
      # utc_time=2018-03-03 15:54:31
      # local_time=2018-03-03 16:54:31 (+0100, Hora estándar romance)
      # country="Spain"
      # osver=10.0.16299 NT
      16:55:18 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL(2).exe=2.0.19.0
      # EOSSerial=09dc69158532de4d81ff0a117246563f
      # end=init
      # utc_time=2018-03-03 15:55:18
      # local_time=2018-03-03 16:55:18 (+0100, Hora estándar romance)
      # country="Spain"
      # osver=10.0.16299 NT
      17:00:37 Call m_esets_charon_setup_create
      17:00:44 Call m_esets_charon_create
      17:00:58 m_esets_charon_create OK
      17:01:09 Call m_esets_charon_start_send_thread
      17:01:17 Call m_esets_charon_setup_set
      17:01:28 m_esets_charon_setup_set OK
      17:04:14 Call m_esets_charon_send
      17:04:31 Call m_esets_charon_destroy
      17:16:08 Call m_esets_charon_setup_create
      17:16:36 Call m_esets_charon_create
      17:17:04 m_esets_charon_create OK
      17:17:19 Call m_esets_charon_start_send_thread
      17:17:42 Call m_esets_charon_setup_set
      17:17:54 m_esets_charon_setup_set OK
      17:29:26 Updating
      17:29:26 Update Init
      17:30:56 Call m_esets_charon_send
      17:31:08 Call m_esets_charon_destroy
      17:31:26 Update timeout and progress <3, Retry update
      17:31:26 Update Init
      17:31:53 Call m_esets_charon_setup_create
      17:31:57 Call m_esets_charon_create
      17:32:08 m_esets_charon_create OK
      17:32:08 Call m_esets_charon_start_send_thread
      17:32:08 Call m_esets_charon_setup_set
      17:32:08 m_esets_charon_setup_set OK
      17:32:08 Update Download
      17:46:50 esets_scanner_reload returned 2
      17:47:21 g_uiModuleBuild: 36588
      17:47:40 Update Finalize
      17:50:42 Call m_esets_charon_send
      17:50:50 Call m_esets_charon_destroy
      17:50:58 Updated modules version: 36588
      17:52:44 Call m_esets_charon_setup_create
      17:52:55 Call m_esets_charon_create
      17:53:07 m_esets_charon_create OK
      17:53:07 Call m_esets_charon_start_send_thread
      17:53:44 Call m_esets_charon_setup_set
      17:53:51 m_esets_charon_setup_set OK
      17:53:55 Scanner engine: 36588
      09:59:02 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL(2).exe=2.0.19.0
      # EOSSerial=09dc69158532de4d81ff0a117246563f
      # engine=36588
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # sfx_checked=true
      # utc_time=2018-03-04 08:59:01
      # local_time=2018-03-04 09:59:01 (+0100, Hora estándar romance)
      # country="Spain"
      # lang=13322
      # osver=10.0.16299 NT
      # compatibility_mode_1='Avast Antivirus'
      # compatibility_mode=803 16777213 83 100 150231 30284453 0 0
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776573 100 94 65142 13461462 0 0
      # scanned=2
      # found=1
      # cleaned=1
      # scan_time=58081
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Users\Manuel\Downloads\ccsetup538.exe"
      11:53:43 Call m_esets_charon_send
      11:53:43 Call m_esets_charon_destroy
      11:53:45 RecursiveRemoveDirectoryAndAllFiles: C:\Users\Manuel\AppData\Local\ESET\ESETOnlineScanner\Quarantine\


      Hice lo que me dijiste y se quitaron los 2 blocks de notas. Voy a reiniciar el PC, para ver como va.

      Gracias

      Saludos

      Acabo de reiniciarlo y sigue igual. Te iba a dejar una captura pero parece que no se puede




    4. #14
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Ayuda, posible virus o error del sistema

      Hola

      Recuerdas haber instalado algún programa cuando empezó a suceder el problema?

      Descarga Farbar Recovery Scan Tool segun la arquitectura de tu sistema (32 o 64 bits)

      • La guardas en el escritorio >> Esto es muy importante..
      • Doble clic para ejecutar Frst.exe. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • En la ventana del Disclaimer, presiona Yes.

      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.


      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #15
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      No descargue ningun programa, descargue un capitulo por mega y me salto una ventana emergente, que mi software habia sido infectado o algo asi, ya que la cerre al momento pero a raiz de eso empezo a fallar.

      te dejo el reporte

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04.03.2018
      Ran by Manuel (04-03-2018 21:37:48)
      Running from C:\Users\Manuel\Desktop
      Windows 10 Home Version 1709 16299.248 (X64) (2017-11-30 21:14:23)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-938948591-2983292031-1742911588-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-938948591-2983292031-1742911588-503 - Limited - Disabled)
      Invitado (S-1-5-21-938948591-2983292031-1742911588-501 - Limited - Disabled)
      Manuel (S-1-5-21-938948591-2983292031-1742911588-1001 - Administrator - Enabled) => C:\Users\Manuel
      WDAGUtilityAccount (S-1-5-21-938948591-2983292031-1742911588-504 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      µTorrent (HKU\S-1-5-21-938948591-2983292031-1742911588-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.)
      Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
      ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
      ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
      ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
      ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
      ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.11.0001 - ASUS)
      ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
      ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0039 - ASUS)
      Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
      AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.91 - ICEpower a/s)
      Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.1.2326 - AVAST Software)
      Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
      Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
      CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform)
      CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
      CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
      CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.) Hidden
      CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
      Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
      Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
      Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.0.292 - SurfRight B.V.)
      Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
      Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security)
      Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
      Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10602.174 - Intel Corporation)
      Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
      Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-938948591-2983292031-1742911588-1001\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      MKVToolNix 7.9.0 (32bit) (HKLM-x32\...\MKVToolNix) (Version: 7.9.0 - Moritz Bunkus)
      Mozilla Firefox 58.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 58.0.2 (x64 es-ES)) (Version: 58.0.2 - Mozilla)
      Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla)
      Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
      Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
      Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
      SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
      Subtitle Edit 3.4.6 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.4.6.544 - Nikse)
      Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
      Telegram Desktop version 1.1.23 (HKU\S-1-5-21-938948591-2983292031-1742911588-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.1.23 - Telegram Messenger LLP)
      Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
      VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
      WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
      WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent)
      WinAVI All-in-One Converter (HKLM-x32\...\WinAVI All-in-One Converter) (Version: 1.7.0.4734 - ZJMedia Digital Technology Ltd.)
      WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
      WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
      WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
      ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
      ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-02-23] (AVAST Software)
      ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-02-23] (AVAST Software)
      ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-02-23] (AVAST Software)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
      ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-02-23] (AVAST Software)
      ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\WINDOWS\system32\mscoree.dll [2017-09-29] (Microsoft Corporation)
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-30] (Intel Corporation)
      ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-02-23] (AVAST Software)
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {002A9403-27A4-4452-A5CB-7F5419AEB4E7} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-02-23] (AVAST Software)
      Task: {093C1640-2907-4D86-93CE-7394B2F75C9C} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-05-30] (AVAST Software)
      Task: {09C97F9D-0C9C-4E11-903A-DE635C1085C7} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-30] (Realtek Semiconductor)
      Task: {1F9A0AA0-83E2-436E-BE46-C70CB8E7117E} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
      Task: {2761F9F3-ED94-4B1F-80AE-C10BDB7CDCDF} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
      Task: {2F8D178D-8E9A-464B-8FCB-7C83E98321CC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-01-16] (AVAST Software)
      Task: {36D2D80C-2DF3-4773-8C6F-226E85A48760} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-03] (Microsoft Corporation)
      Task: {453697D3-9CE3-4CAF-A596-A1FDD52CFE7C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
      Task: {6A8F9E69-DBED-4770-A143-2A5FA4BD5362} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2015-03-14] (Microsoft Corporation)
      Task: {6D02BE17-30E8-4C02-BA81-947416981603} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-07] (Adobe Systems Incorporated)
      Task: {707740C9-304D-44C5-939D-A2590E9FF863} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-13] (Piriform Ltd)
      Task: {7EC7BFDB-043B-44DA-9550-4F40532D3F43} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-03] (Microsoft Corporation)
      Task: {81178980-2D7E-4FF6-961E-012EC9EC3E74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-27] (Google Inc.)
      Task: {83E5A20C-2477-4740-A3C6-640DDEE37546} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-06-09] (ASUS)
      Task: {976A4B4C-BA38-409B-884D-76B3C4186694} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-26] (Realtek Semiconductor)
      Task: {A5DE7702-4781-4CAD-B897-D63916201233} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-27] (Google Inc.)
      Task: {A65965E8-CA1E-4FC1-9E6C-A9635C845971} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
      Task: {AE2BADBB-161F-4F3D-B311-264FB4D705C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-03] (Microsoft Corporation)
      Task: {BE9C8645-F639-4BC2-BB37-0E45B4C53D2D} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
      Task: {BF9A465B-8119-463F-9E00-5B2CFEADD234} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-12-13] (Piriform Ltd)
      Task: {C12F7CF0-5B5F-4B14-B319-3753CDF0C892} - System32\Tasks\SafeZone scheduled Autoupdate 1478966127 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
      Task: {CE8A7F48-B46A-4A8D-8807-1980B24CD7C7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
      Task: {D3772D52-DE43-4A1E-B592-E7F6C6C9E7B7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
      Task: {D7FEB65D-E586-40FD-8720-42822D8CD930} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-03] (Microsoft Corporation)
      Task: {E9B1F556-EDAD-4DE0-923A-4022C75F0D4B} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-04-11] (AsusTek)
      Task: {EA860513-2723-4A8A-BDE5-B146A2ADF6C9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
      Task: {F6A095CE-8C87-4186-A144-8F6D955197F0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
      Task: {FE14DE20-1436-4583-A79F-E9AF0D27B8F7} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
      2018-02-27 16:08 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
      2018-02-27 16:08 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
      2015-09-19 12:10 - 2014-04-14 18:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
      2016-05-30 14:32 - 2016-05-30 14:32 - 000592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
      2016-11-30 21:57 - 2016-11-30 21:57 - 000401888 _____ () C:\WINDOWS\system32\igfxTray.exe
      2018-02-03 00:16 - 2018-02-03 00:17 - 002250240 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11801.1001.6.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
      2018-02-27 15:59 - 2018-02-27 16:00 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      2018-02-27 15:59 - 2018-02-27 16:00 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2018-02-27 15:59 - 2018-02-27 16:00 - 021824000 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkyWrap.dll
      2018-02-27 15:59 - 2018-02-27 16:00 - 002529792 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\skypert.dll
      2018-02-27 15:59 - 2018-02-27 16:00 - 000649216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
      2018-03-02 18:47 - 2018-03-02 19:13 - 000477696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
      2018-03-02 18:47 - 2018-03-02 19:13 - 059575808 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
      2018-02-16 15:26 - 2018-02-16 15:28 - 000010240 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
      2017-10-04 20:52 - 2017-10-04 20:54 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
      2018-03-02 18:46 - 2018-03-02 19:13 - 003741184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
      2017-12-14 19:27 - 2017-12-14 19:35 - 002270720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
      2018-03-02 18:47 - 2018-03-02 19:13 - 015986688 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
      2018-03-02 18:46 - 2018-03-02 19:13 - 003592704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\MediaEngine.dll
      2018-03-02 18:43 - 2018-03-02 19:13 - 003231232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
      2018-03-02 18:47 - 2018-03-02 19:13 - 001369088 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
      2018-02-04 19:29 - 2018-02-04 19:32 - 004601048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
      2018-03-02 18:43 - 2018-03-02 19:13 - 000094208 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\BendRealityNode.dll
      2018-02-16 15:26 - 2018-02-16 15:28 - 000043520 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
      2018-03-02 18:47 - 2018-03-02 19:13 - 000628736 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
      2018-02-16 19:55 - 2018-02-10 05:39 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2018-02-16 19:55 - 2018-02-10 05:36 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2018-02-07 18:32 - 2018-02-07 18:32 - 000061952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11801.1001.6.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
      2015-06-09 20:25 - 2015-06-09 20:25 - 000035376 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
      2015-06-09 20:25 - 2015-06-09 20:25 - 000124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
      2015-06-24 01:07 - 2015-06-24 01:07 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
      2017-07-11 14:54 - 2017-07-11 14:54 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2018-02-23 20:51 - 2018-02-23 20:51 - 000287960 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
      2018-02-23 20:51 - 2018-02-23 20:51 - 000280280 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
      2018-02-23 20:51 - 2018-02-23 20:51 - 000275672 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
      2016-05-30 14:33 - 2016-05-30 14:33 - 038907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2015-07-10 12:04 - 2017-01-04 14:56 - 000000834 ____N C:\WINDOWS\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-938948591-2983292031-1742911588-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
      DNS Servers: 213.60.205.175
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{252E97CB-5EDA-43A9-9908-0ABE973C28EB}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
      FirewallRules: [{ED160D51-97DC-4BE4-A8CA-6487B4DBA896}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
      FirewallRules: [{051A67F3-2796-4B05-A5C9-CC43F79FE5E0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{A9E0DED4-4A9F-492D-ACA8-4269240D3667}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{7108FD60-431E-4FCF-BB94-292409A53C05}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{89BC3D32-116F-45C6-B1D9-5A97CB74B82E}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{5302A4E6-7824-4633-966C-959CD4D26690}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{2575263C-4E21-4B40-87AA-D118B4D17B29}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{B893365A-150A-409B-AEEE-A92440BB156F}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{DD71893A-E8BA-40E3-BA33-55EB7B1CC4D1}] => (Allow) C:\Users\Manuel\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [TCP Query User{732B0754-725D-44DE-AAE8-D3C88ACBC158}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
      FirewallRules: [UDP Query User{6A3C6032-B739-438F-B4BC-2C74D69A8AE5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
      FirewallRules: [{C2D68311-6584-4BB8-8C23-A10DEAAF901D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================


      ==================== Faulty Device Manager Devices =============


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (03/04/2018 09:06:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-Q2EUA4Q)
      Description: Se detuvo el paquete Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy+CortanaUI porque se tardó demasiado en suspender.

      Error: (03/04/2018 08:42:19 PM) (Source: DPTF) (EventID: 256) (User: )
      Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10602.174) TYPE: ERROR

      DPTF Build Version: 8.1.10602.174
      DPTF Build Date: Jul 23 2015 11:24:10
      Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
      Executing Function: DptfEvent
      Message: Received unexpected event
      Framework Event: DptfResume [3]

      Error: (03/04/2018 08:01:13 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-Q2EUA4Q)
      Description: Se detuvo el paquete Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe+App porque se tardó demasiado en suspender.

      Error: (03/04/2018 05:31:21 PM) (Source: DPTF) (EventID: 256) (User: )
      Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10602.174) TYPE: ERROR

      DPTF Build Version: 8.1.10602.174
      DPTF Build Date: Jul 23 2015 11:24:10
      Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
      Executing Function: DptfEvent
      Message: Received unexpected event
      Framework Event: DptfResume [3]

      Error: (03/04/2018 04:35:31 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: tor.exe, versión: 0.0.0.0, marca de tiempo: 0x5a53e151
      Nombre del módulo con errores: shcore.dll, versión: 10.0.16299.15, marca de tiempo: 0x30134c68
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x00038091
      Identificador del proceso con errores: 0x1d74
      Hora de inicio de la aplicación con errores: 0x01d3b3ce6b320006
      Ruta de acceso de la aplicación con errores: C:\Users\Manuel\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
      Ruta de acceso del módulo con errores: C:\WINDOWS\System32\shcore.dll
      Identificador del informe: ccb1325a-bfa0-4a8c-9a1f-982e2d6d7bb8
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (03/04/2018 04:04:21 PM) (Source: DPTF) (EventID: 256) (User: )
      Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10602.174) TYPE: ERROR

      DPTF Build Version: 8.1.10602.174
      DPTF Build Date: Jul 23 2015 11:24:10
      Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
      Executing Function: DptfEvent
      Message: Received unexpected event
      Framework Event: DptfResume [3]

      Error: (03/04/2018 02:46:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: El programa firefox.exe, versión 58.0.2.6611, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

      Identificador de proceso: 19ec

      Hora de inicio: 01d3b3a9ca9b3126

      Hora de finalización: 39

      Ruta de la aplicación: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

      Identificador de informe: a7b0d54c-ee08-4025-a878-2f5c61d2fb82

      Nombre completo de paquete con errores:

      Identificador de aplicación relativa del paquete con errores:

      Error: (03/04/2018 12:16:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-Q2EUA4Q)
      Description: Se detuvo el paquete Microsoft.BingFinance_4.22.3254.0_x64__8wekyb3d8bbwe+AppexFinance porque se tardó demasiado en suspender.


      System errors:
      =============
      Error: (03/04/2018 09:36:39 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:36 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:32 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:29 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:25 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:21 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:18 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

      Error: (03/04/2018 09:36:14 PM) (Source: Disk) (EventID: 7) (User: )
      Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.


      Windows Defender:
      ===================================
      Date: 2018-03-04 2013.670
      Description:
      El examen de Antivirus de Windows Defender se detuvo antes de completarse.
      Id. de examen: {DADF1504-9693-403A-A8DF-7D5CE226677B}
      Tipo de examen: Antimalware
      Parámetros de examen: Examen rápido
      Usuario: NT AUTHORITY\SYSTEM

      Date: 2018-03-04 18:47:55.874
      Description:
      El examen de Antivirus de Windows Defender se detuvo antes de completarse.
      Id. de examen: {8FACB8BF-704B-4D39-975E-36E91391AE03}
      Tipo de examen: Antimalware
      Parámetros de examen: Examen rápido
      Usuario: NT AUTHORITY\SYSTEM

      Date: 2018-02-25 18:54:03.698
      Description:
      El examen de Antivirus de Windows Defender se detuvo antes de completarse.
      Id. de examen: {8B20B15C-A3C4-44DD-88BE-A3C68AD1EAEE}
      Tipo de examen: Antimalware
      Parámetros de examen: Examen completo
      Usuario: DESKTOP-Q2EUA4Q\Manuel

      Date: 2018-02-25 13:40:24.618
      Description:
      El examen de Antivirus de Windows Defender se detuvo antes de completarse.
      Id. de examen: {E98B18B7-20E2-43D5-8EAF-C8DC383480E6}
      Tipo de examen: Antimalware
      Parámetros de examen: Examen completo
      Usuario: DESKTOP-Q2EUA4Q\Manuel

      Date: 2018-03-03 17:41:31.567
      Description:
      Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
      Nueva versión de firma:
      Versión de firma anterior: 1.263.82.0
      Origen de actualización: Centro de protección contra malware de Microsoft
      Tipo de firma: AntiVirus
      Tipo de actualización: Completa
      Usuario: NT AUTHORITY\Servicio de red
      Versión de motor actual:
      Versión de motor anterior: 1.1.14600.4
      Código de error: 0x80070652
      Descripción del error: Existe otra instalación en curso. Complete dicha instalación antes de continuar con ésta.

      Date: 2018-03-03 17:41:31.567
      Description:
      Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
      Nueva versión de firma:
      Versión de firma anterior: 1.263.82.0
      Origen de actualización: Centro de protección contra malware de Microsoft
      Tipo de firma: AntiSpyware
      Tipo de actualización: Completa
      Usuario: NT AUTHORITY\Servicio de red
      Versión de motor actual:
      Versión de motor anterior: 1.1.14600.4
      Código de error: 0x80070652
      Descripción del error: Existe otra instalación en curso. Complete dicha instalación antes de continuar con ésta.

      Date: 2018-03-03 17:41:31.566
      Description:
      Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
      Nueva versión de firma:
      Versión de firma anterior: 1.263.82.0
      Origen de actualización: Centro de protección contra malware de Microsoft
      Tipo de firma: AntiVirus
      Tipo de actualización: Completa
      Usuario: NT AUTHORITY\Servicio de red
      Versión de motor actual:
      Versión de motor anterior: 1.1.14600.4
      Código de error: 0x80070652
      Descripción del error: Existe otra instalación en curso. Complete dicha instalación antes de continuar con ésta.

      Date: 2018-03-03 17:35:16.097
      Description:
      Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
      Nueva versión de firma:
      Versión de firma anterior:
      Origen de actualización: Usuario
      Tipo de firma:
      Tipo de actualización:
      Usuario: NT AUTHORITY\Servicio de red
      Versión de motor actual:
      Versión de motor anterior:
      Código de error: 0x80070652
      Descripción del error: Existe otra instalación en curso. Complete dicha instalación antes de continuar con ésta.

      Date: 2018-03-03 17:35:16.082
      Description:
      Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
      Nueva versión de firma:
      Versión de firma anterior:
      Origen de actualización: Usuario
      Tipo de firma:
      Tipo de actualización:
      Usuario: NT AUTHORITY\Servicio de red
      Versión de motor actual:
      Versión de motor anterior:
      Código de error: 0x80070652
      Descripción del error: Existe otra instalación en curso. Complete dicha instalación antes de continuar con ésta.

      CodeIntegrity:
      ===================================

      Date: 2018-02-28 23:55:02.843
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2018-02-28 23:55:01.956
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2018-02-28 23:54:44.468
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2018-02-28 23:54:37.428
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2018-02-28 23:54:27.748
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2018-02-28 23:54:27.287
      Description:
      Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
      Percentage of memory in use: 61%
      Total physical RAM: 4004.71 MB
      Available physical RAM: 1548.2 MB
      Total Virtual: 6692.71 MB
      Available Virtual: 3166.47 MB

      ==================== Drives ================================

      Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:23.65 GB) NTFS ==>[system with boot components (obtained from drive)]
      Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:160.22 GB) NTFS

      \\?\Volume{8168ccfc-a885-4a29-86f0-e26d434b658b}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
      \\?\Volume{a873f236-c26f-401a-af30-b26fd8958818}\ (RECOVERY) (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 465.8 GB) (Disk ID: FDC441EB)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    6. #16
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      Tool (FRST) (x64) Version: 04.03.2018
      Ran by Manuel (administrator) on DESKTOP-Q2EUA4Q (04-03-2018 21:32:39)
      Running from C:\Users\Manuel\Desktop
      Loaded Profiles: Manuel (Available Profiles: Manuel)
      Platform: Windows 10 Home Version 1709 16299.248 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: FF)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
      (SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
      (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
      (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
      (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
      (ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
      (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
      () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
      () C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
      (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
      (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\MsMpEng.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
      (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
      (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\NisSrv.exe
      (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
      (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
      (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (Intel Corporation) C:\Windows\System32\igfxEM.exe
      (Intel Corporation) C:\Windows\System32\igfxHK.exe
      () C:\Windows\System32\igfxTray.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
      (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
      (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\mspaint.exe
      (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11801.1001.6.0_x64__8wekyb3d8bbwe\WinStore.App.exe
      (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
      (Microsoft Corporation) C:\Windows\System32\rundll32.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
      (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [243496 2018-02-23] (AVAST Software)
      HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      HKU\S-1-5-21-938948591-2983292031-1742911588-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
      Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-09-19]
      ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 213.60.205.175
      Tcpip\..\Interfaces\{3e2b707f-12f8-4a8e-bfcf-c1c2d49e9c43}: [DhcpNameServer] 213.60.205.175

      Internet Explorer:
      ==================
      HKU\S-1-5-21-938948591-2983292031-1742911588-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
      BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
      BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
      BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
      Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
      Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)

      FireFox:
      ========
      FF DefaultProfile: 39ho42nf.default
      FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default [2018-03-04]
      FF Homepage: Mozilla\Firefox\Profiles\39ho42nf.default -> hxxps://www.google.es/
      FF Extension: (Adaware Ad Block) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2017-11-15]
      FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2016-06-17] [Legacy]
      FF Extension: (Webmail Ad Blocker) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2018-02-07]
      FF Extension: (Unlimited Free VPN - Hola) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2018-02-15]
      FF Extension: (Strict Pop-up Blocker) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2017-12-07]
      FF Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2018-03-02]
      FF Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2017-10-14]
      FF Extension: (Adblock Plus) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-12]
      FF Extension: (Greasemonkey) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2018-01-19]
      FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-07] ()
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-07] ()
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] ()

      Chrome:
      =======
      CHR Profile: C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default [2018-03-03]
      CHR Extension: (Presentaciones) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-25]
      CHR Extension: (Documentos) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-25]
      CHR Extension: (Google Drive) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-27]
      CHR Extension: (YouTube) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-27]
      CHR Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-02-25]
      CHR Extension: (Hojas de cálculo) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-25]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-27]
      CHR Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-25]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-02-25]
      CHR Extension: (Gmail) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-27]
      CHR Extension: (Chrome Media Router) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-25]
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [File not signed]
      R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
      S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7564512 2018-02-23] (AVAST Software)
      R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-07-29] (Windows (R) Win 7 DDK provider)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [300600 2018-02-23] (AVAST Software)
      R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1385640 2015-08-04] (Intel Corporation)
      R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
      R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [135488 2018-02-28] (SurfRight B.V.)
      R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
      S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
      S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
      S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
      R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
      S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
      R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
      R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-05-30] ()
      R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
      R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
      S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
      R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\NisSrv.exe [356152 2018-03-03] (Microsoft Corporation)
      R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MsMpEng.exe [106280 2018-03-03] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [101872 2017-04-11] (ASUS Corporation)
      R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [192944 2018-02-23] (AVAST Software)
      R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2017-12-23] (AVAST Software)
      R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2017-12-23] (AVAST Software)
      R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2017-12-23] (AVAST Software)
      R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2017-12-23] (AVAST Software)
      R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [190440 2018-02-23] (AVAST Software)
      R3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-02-23] (AVAST Software)
      R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-10] (AVAST Software)
      R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146648 2018-02-23] (AVAST Software)
      R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110328 2018-02-23] (AVAST Software)
      R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84368 2018-02-23] (AVAST Software)
      R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026696 2018-02-23] (AVAST Software)
      R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [459952 2018-02-23] (AVAST Software)
      R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [205464 2018-02-23] (AVAST Software)
      R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [379448 2018-02-23] (AVAST Software)
      R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [43512 2015-08-04] (Intel Corporation)
      R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [41976 2015-08-04] (Intel Corporation)
      R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [251384 2015-08-04] (Intel Corporation)
      R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-29] ()
      R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
      R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2018-02-27] (Malwarebytes)
      R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2018-03-04] (Malwarebytes)
      R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2018-03-04] (Malwarebytes)
      R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-02-27] (Malwarebytes)
      R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2018-03-04] (Malwarebytes)
      R1 MpKslb80a0022; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B64C09D-AA31-4BBD-9DDF-EF436E50B620}\MpKslb80a0022.sys [58120 2018-03-04] (Microsoft Corporation)
      R1 MpKslcc3b94e1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B7E76F-658C-4980-90E1-ED7721AFD7C0}\MpKslcc3b94e1.sys [58120 2018-03-03] (Microsoft Corporation)
      R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
      R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [428032 2017-02-16] (Realsil Semiconductor Corporation)
      S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-03-03] (Microsoft Corporation)
      R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288296 2018-03-03] (Microsoft Corporation)
      R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129568 2018-03-03] (Microsoft Corporation)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2018-03-04 21:32 - 2018-03-04 21:35 - 000019109 _____ C:\Users\Manuel\Desktop\FRST.txt
      2018-03-04 21:32 - 2018-03-04 21:32 - 000000000 ____D C:\FRST
      2018-03-04 21:20 - 2018-03-04 21:21 - 001763328 _____ (Farbar) C:\Users\Manuel\Desktop\FRST.exe
      2018-03-04 20:51 - 2018-03-04 20:51 - 002403328 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe
      2018-03-04 12:09 - 2018-03-04 12:09 - 000000000 ___HD C:\OneDriveTemp
      2018-03-03 18:40 - 2018-03-04 18:37 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
      2018-03-03 16:40 - 2018-03-03 16:41 - 006974584 _____ (ESET spol. s r.o.) C:\Users\Manuel\Downloads\ESETOnlineScanner_ESL(2).exe
      2018-03-03 16:39 - 2018-03-03 16:41 - 006974584 _____ (ESET spol. s r.o.) C:\Users\Manuel\Downloads\ESETOnlineScanner_ESL(1).exe
      2018-03-02 16:05 - 2018-03-03 16:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
      2018-03-01 22:01 - 2018-02-23 20:51 - 000380768 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
      2018-02-28 22:25 - 2018-02-28 22:25 - 000001562 _____ C:\Users\Manuel\Documents\virus.txt
      2018-02-28 22:05 - 2017-06-24 12:25 - 517382144 _____ C:\Users\Manuel\Downloads\El Chapo.1x01.Capitulo 1.WEB-Rip.Fly3RS.avi
      2018-02-28 21:53 - 2018-02-28 21:54 - 543203651 _____ C:\Users\Manuel\Downloads\El Chapo.1x01.Capitulo 1.WEB-Rip.Fly3RS.rar
      2018-02-28 18:41 - 2018-02-28 18:41 - 006974584 _____ (ESET spol. s r.o.) C:\Users\Manuel\Downloads\ESETOnlineScanner_ESL.exe
      2018-02-28 16:40 - 2018-02-28 17:09 - 000002004 _____ C:\Users\Public\Desktop\HitmanPro.lnk
      2018-02-28 16:40 - 2018-02-28 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
      2018-02-28 16:40 - 2018-02-28 16:40 - 000000000 ____D C:\Program Files\HitmanPro
      2018-02-28 16:38 - 2018-02-28 17:04 - 000000000 ____D C:\ProgramData\HitmanPro
      2018-02-28 16:37 - 2018-02-28 16:37 - 011605440 _____ (SurfRight B.V.) C:\Users\Manuel\Downloads\hitmanpro_x64(1).exe
      2018-02-27 23:00 - 2018-02-27 23:00 - 000004888 _____ C:\Users\Manuel\Documents\copia de seguridad 1.reg
      2018-02-27 22:58 - 2018-02-27 22:58 - 000115456 _____ C:\Users\Manuel\Documents\copia de seguridad.reg
      2018-02-27 22:47 - 2018-02-27 22:47 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
      2018-02-27 22:47 - 2018-02-27 22:47 - 000002872 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
      2018-02-27 22:47 - 2018-02-27 22:47 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2018-02-27 22:47 - 2018-02-27 22:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      2018-02-27 22:46 - 2018-02-27 22:47 - 000000000 ____D C:\Program Files\CCleaner
      2018-02-27 22:09 - 2018-02-27 22:11 - 008222496 _____ (Malwarebytes) C:\Users\Manuel\Downloads\AdwCleaner.exe
      2018-02-27 22:04 - 2018-02-27 22:04 - 000001470 _____ C:\Users\Manuel\Desktop\JRT.txt
      2018-02-27 21:55 - 2018-02-27 21:55 - 001790024 _____ (Malwarebytes) C:\Users\Manuel\Downloads\JRT.exe
      2018-02-27 21:54 - 2018-03-04 12:02 - 000003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
      2018-02-27 21:19 - 2018-02-27 21:19 - 000001701 _____ C:\Users\Manuel\Documents\maravites.txt
      2018-02-27 16:09 - 2018-03-04 12:07 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
      2018-02-27 16:09 - 2018-03-04 12:06 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
      2018-02-27 16:09 - 2018-02-27 16:09 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
      2018-02-27 16:08 - 2018-02-27 16:08 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
      2018-02-27 16:08 - 2018-02-27 16:08 - 000001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2018-02-27 16:08 - 2018-02-27 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2018-02-27 16:08 - 2018-02-27 16:08 - 000000000 ____D C:\ProgramData\Malwarebytes
      2018-02-27 16:08 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
      2018-02-27 16:07 - 2018-02-27 16:08 - 067863088 _____ (Malwarebytes ) C:\Users\Manuel\Downloads\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.4106.exe
      2018-02-26 21:36 - 2018-02-26 21:36 - 000000000 ____D C:\Users\Manuel\Downloads\backups
      2018-02-26 21:26 - 2018-02-26 21:26 - 000388608 _____ (Trend Micro Inc.) C:\Users\Manuel\Downloads\HijackThis.exe
      2018-02-25 16:25 - 2018-02-25 16:25 - 000000000 _____ C:\autoexec.bat
      2018-02-25 14:43 - 2018-02-25 14:43 - 000000000 ____D C:\Program Files\Malwarebytes
      2018-02-25 14:23 - 2018-02-25 14:23 - 083316440 _____ (Malwarebytes ) C:\Users\Manuel\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
      2018-02-24 23:57 - 2018-02-27 22:23 - 000000000 ____D C:\AdwCleaner
      2018-02-24 23:37 - 2018-02-24 23:37 - 008222496 _____ (Malwarebytes) C:\Users\Manuel\Downloads\adwcleaner_7.0.8.0.exe
      2018-02-24 16:38 - 2018-02-28 15:29 - 000000000 ____D C:\WINDOWS\Minidump
      2018-02-24 16:12 - 2018-02-24 16:17 - 596425328 _____ C:\Users\Manuel\Downloads\polo ball1nuevo.rar
      2018-02-23 20:31 - 2018-02-23 20:31 - 000000000 ____D C:\ProgramData\SWCUTemp
      2018-02-22 23:40 - 2018-02-22 23:41 - 024844874 _____ C:\Users\Manuel\Downloads\GABRI__CLAUDIA_OSL_-_QUIERO_VIDEOCLIP_OFICIAL_A_FLOR_DE_PIEL(youtube.com).mp4
      2018-02-18 21:00 - 2018-02-09 03:46 - 575207424 _____ C:\Users\Manuel\Downloads\Shameless.8x12.Somnambulismo.HDiTunes.Fly3RS.avi
      2018-02-18 20:40 - 2018-02-04 11:00 - 522715136 _____ C:\Users\Manuel\Downloads\Shameless.8x11.Una.pedicura.Gallagher.HDiTunes.Fly3RS.avi
      2018-02-16 19:56 - 2018-02-10 07:20 - 001055640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
      2018-02-16 19:56 - 2018-02-10 07:20 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
      2018-02-16 19:56 - 2018-02-10 07:20 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
      2018-02-16 19:56 - 2018-02-10 07:16 - 008603032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2018-02-16 19:56 - 2018-02-10 07:16 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
      2018-02-16 19:56 - 2018-02-10 07:15 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
      2018-02-16 19:56 - 2018-02-10 07:15 - 000471968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
      2018-02-16 19:56 - 2018-02-10 07:14 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2018-02-16 19:56 - 2018-02-10 07:13 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
      2018-02-16 19:56 - 2018-02-10 07:12 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
      2018-02-16 19:56 - 2018-02-10 07:09 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
      2018-02-16 19:56 - 2018-02-10 07:08 - 003010248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
      2018-02-16 19:56 - 2018-02-10 07:08 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2018-02-16 19:56 - 2018-02-10 07:07 - 002710728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
      2018-02-16 19:56 - 2018-02-10 07:06 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
      2018-02-16 19:56 - 2018-02-10 07:06 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
      2018-02-16 19:56 - 2018-02-10 07:06 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
      2018-02-16 19:56 - 2018-02-10 07:06 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
      2018-02-16 19:56 - 2018-02-10 07:04 - 001254144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
      2018-02-16 19:56 - 2018-02-10 07:04 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
      2018-02-16 19:56 - 2018-02-10 07:04 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
      2018-02-16 19:56 - 2018-02-10 07:04 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
      2018-02-16 19:56 - 2018-02-10 07:02 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
      2018-02-16 19:56 - 2018-02-10 07:02 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
      2018-02-16 19:56 - 2018-02-10 06:21 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
      2018-02-16 19:56 - 2018-02-10 06:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
      2018-02-16 19:56 - 2018-02-10 06:08 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
      2018-02-16 19:56 - 2018-02-10 06:06 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
      2018-02-16 19:56 - 2018-02-10 06:06 - 004670728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
      2018-02-16 19:56 - 2018-02-10 06:06 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
      2018-02-16 19:56 - 2018-02-10 06:05 - 001149272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
      2018-02-16 19:56 - 2018-02-10 06:05 - 000662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
      2018-02-16 19:56 - 2018-02-10 06:05 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
      2018-02-16 19:56 - 2018-02-10 06:05 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
      2018-02-16 19:56 - 2018-02-10 05:50 - 003665408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
      2018-02-16 19:56 - 2018-02-10 05:49 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
      2018-02-16 19:56 - 2018-02-10 05:49 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
      2018-02-16 19:56 - 2018-02-10 05:49 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
      2018-02-16 19:56 - 2018-02-10 05:47 - 017160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
      2018-02-16 19:56 - 2018-02-10 05:47 - 013704192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
      2018-02-16 19:56 - 2018-02-10 05:46 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
      2018-02-16 19:56 - 2018-02-10 05:46 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
      2018-02-16 19:56 - 2018-02-10 05:46 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
      2018-02-16 19:56 - 2018-02-10 05:46 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
      2018-02-16 19:56 - 2018-02-10 05:46 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
      2018-02-16 19:56 - 2018-02-10 05:45 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
      2018-02-16 19:56 - 2018-02-10 05:45 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
      2018-02-16 19:56 - 2018-02-10 05:45 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
      2018-02-16 19:56 - 2018-02-10 05:44 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
      2018-02-16 19:56 - 2018-02-10 05:44 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
      2018-02-16 19:56 - 2018-02-10 05:44 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
      2018-02-16 19:56 - 2018-02-10 05:44 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
      2018-02-16 19:56 - 2018-02-10 05:43 - 018923008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
      2018-02-16 19:56 - 2018-02-10 05:43 - 008020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
      2018-02-16 19:56 - 2018-02-10 05:43 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
      2018-02-16 19:56 - 2018-02-10 05:43 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
      2018-02-16 19:56 - 2018-02-10 05:43 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
      2018-02-16 19:56 - 2018-02-10 05:43 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 023671808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
      2018-02-16 19:56 - 2018-02-10 05:42 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
      2018-02-16 19:56 - 2018-02-10 05:42 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
      2018-02-16 19:56 - 2018-02-10 05:41 - 019352576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
      2018-02-16 19:56 - 2018-02-10 05:41 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
      2018-02-16 19:56 - 2018-02-10 05:41 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
      2018-02-16 19:56 - 2018-02-10 05:41 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
      2018-02-16 19:56 - 2018-02-10 05:41 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
      2018-02-16 19:56 - 2018-02-10 05:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
      2018-02-16 19:56 - 2018-02-10 05:40 - 012831744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
      2018-02-16 19:56 - 2018-02-10 05:40 - 008110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
      2018-02-16 19:56 - 2018-02-10 05:40 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
      2018-02-16 19:56 - 2018-02-10 05:40 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
      2018-02-16 19:56 - 2018-02-10 05:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
      2018-02-16 19:56 - 2018-02-10 05:39 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
      2018-02-16 19:56 - 2018-02-10 05:39 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 006567936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 003125760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
      2018-02-16 19:56 - 2018-02-10 05:38 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
      2018-02-16 19:56 - 2018-02-10 05:38 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
      2018-02-16 19:56 - 2018-02-10 05:38 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
      2018-02-16 19:56 - 2018-02-10 05:37 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
      2018-02-16 19:56 - 2018-02-10 05:37 - 003678720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
      2018-02-16 19:56 - 2018-02-10 05:37 - 002784256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
      2018-02-16 19:56 - 2018-02-10 05:37 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
      2018-02-16 19:56 - 2018-02-10 05:37 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
      2018-02-16 19:56 - 2018-02-10 05:36 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
      2018-02-16 19:56 - 2018-02-10 05:35 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
      2018-02-16 19:56 - 2018-02-10 05:35 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
      2018-02-16 19:56 - 2018-02-10 05:35 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
      2018-02-16 19:56 - 2018-02-10 05:35 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
      2018-02-16 19:56 - 2018-02-10 05:34 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
      2018-02-16 19:55 - 2018-02-10 07:21 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
      2018-02-16 19:55 - 2018-02-10 07:20 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
      2018-02-16 19:55 - 2018-02-10 07:20 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
      2018-02-16 19:55 - 2018-02-10 07:18 - 000319864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
      2018-02-16 19:55 - 2018-02-10 07:17 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
      2018-02-16 19:55 - 2018-02-10 07:15 - 001415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
      2018-02-16 19:55 - 2018-02-10 07:14 - 004504464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
      2018-02-16 19:55 - 2018-02-10 07:12 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
      2018-02-16 19:55 - 2018-02-10 07:11 - 000711432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
      2018-02-16 19:55 - 2018-02-10 07:11 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
      2018-02-16 19:55 - 2018-02-10 07:09 - 003904296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
      2018-02-16 19:55 - 2018-02-10 07:08 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
      2018-02-16 19:55 - 2018-02-10 07:08 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
      2018-02-16 19:55 - 2018-02-10 07:08 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
      2018-02-16 19:55 - 2018-02-10 07:07 - 004506576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
      2018-02-16 19:55 - 2018-02-10 07:04 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
      2018-02-16 19:55 - 2018-02-10 07:04 - 006791984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
      2018-02-16 19:55 - 2018-02-10 07:04 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
      2018-02-16 19:55 - 2018-02-10 07:04 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
      2018-02-16 19:55 - 2018-02-10 07:03 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
      2018-02-16 19:55 - 2018-02-10 07:02 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
      2018-02-16 19:55 - 2018-02-10 06:09 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
      2018-02-16 19:55 - 2018-02-10 06:09 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
      2018-02-16 19:55 - 2018-02-10 06:07 - 025253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2018-02-16 19:55 - 2018-02-10 06:07 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
      2018-02-16 19:55 - 2018-02-10 06:06 - 006481640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
      2018-02-16 19:55 - 2018-02-10 05:50 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
      2018-02-16 19:55 - 2018-02-10 05:49 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
      2018-02-16 19:55 - 2018-02-10 05:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
      2018-02-16 19:55 - 2018-02-10 05:45 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
      2018-02-16 19:55 - 2018-02-10 05:45 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
      2018-02-16 19:55 - 2018-02-10 05:45 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
      2018-02-16 19:55 - 2018-02-10 05:44 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
      2018-02-16 19:55 - 2018-02-10 05:43 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
      2018-02-16 19:55 - 2018-02-10 05:43 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
      2018-02-16 19:55 - 2018-02-10 05:43 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
      2018-02-16 19:55 - 2018-02-10 05:42 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
      2018-02-16 19:55 - 2018-02-10 05:41 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
      2018-02-16 19:55 - 2018-02-10 05:41 - 000721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
      2018-02-16 19:55 - 2018-02-10 05:40 - 001002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
      2018-02-16 19:55 - 2018-02-10 05:40 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
      2018-02-16 19:55 - 2018-02-10 05:39 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
      2018-02-16 19:55 - 2018-02-10 05:39 - 002976256 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
      2018-02-16 19:55 - 2018-02-10 05:39 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 004815360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 003169280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
      2018-02-16 19:55 - 2018-02-10 05:38 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
      2018-02-16 19:55 - 2018-02-10 05:37 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
      2018-02-16 19:55 - 2018-02-10 05:37 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
      2018-02-16 19:55 - 2018-02-10 05:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
      2018-02-16 19:55 - 2018-02-10 05:36 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
      2018-02-16 19:55 - 2018-02-10 05:36 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
      2018-02-16 19:55 - 2018-02-10 05:36 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
      2018-02-16 19:55 - 2018-02-10 05:35 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
      2018-02-16 19:55 - 2018-02-10 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
      2018-02-16 19:55 - 2018-02-10 05:33 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
      2018-02-16 19:54 - 2018-02-10 07:24 - 000270744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
      2018-02-16 19:54 - 2018-02-10 07:23 - 001577880 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
      2018-02-16 19:54 - 2018-02-10 07:23 - 000758168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
      2018-02-16 19:54 - 2018-02-10 07:23 - 000613272 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
      2018-02-16 19:54 - 2018-02-10 07:23 - 000138136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
      2018-02-16 19:54 - 2018-02-10 07:22 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
      2018-02-16 19:54 - 2018-02-10 07:22 - 000662936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
      2018-02-16 19:54 - 2018-02-10 07:22 - 000460696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
      2018-02-16 19:54 - 2018-02-10 07:22 - 000387480 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
      2018-02-16 19:54 - 2018-02-10 07:22 - 000272800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
      2018-02-16 19:54 - 2018-02-10 07:22 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
      2018-02-16 19:54 - 2018-02-10 07:22 - 000035224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
      2018-02-16 19:54 - 2018-02-10 07:21 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
      2018-02-16 19:54 - 2018-02-10 07:21 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
      2018-02-16 19:54 - 2018-02-10 07:19 - 001133888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
      2018-02-16 19:54 - 2018-02-10 07:18 - 001193192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll

    7. #17
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      ystem32\FsIso.exe
      2018-02-16 19:54 - 2018-02-10 07:18 - 000022400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
      2018-02-16 19:54 - 2018-02-10 07:16 - 002406456 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
      2018-02-16 19:54 - 2018-02-10 07:15 - 002514944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
      2018-02-16 19:54 - 2018-02-10 07:14 - 001002592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
      2018-02-16 19:54 - 2018-02-10 07:13 - 001416392 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
      2018-02-16 19:54 - 2018-02-10 07:13 - 000535960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
      2018-02-16 19:54 - 2018-02-10 07:13 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
      2018-02-16 19:54 - 2018-02-10 07:12 - 004537040 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
      2018-02-16 19:54 - 2018-02-10 07:12 - 001313016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
      2018-02-16 19:54 - 2018-02-10 07:11 - 001029528 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
      2018-02-16 19:54 - 2018-02-10 07:11 - 000494496 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
      2018-02-16 19:54 - 2018-02-10 07:10 - 002447768 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
      2018-02-16 19:54 - 2018-02-10 07:10 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
      2018-02-16 19:54 - 2018-02-10 07:10 - 000614160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
      2018-02-16 19:54 - 2018-02-10 07:10 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2018-02-16 19:54 - 2018-02-10 07:10 - 000154520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
      2018-02-16 19:54 - 2018-02-10 07:09 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
      2018-02-16 19:54 - 2018-02-10 07:09 - 000491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
      2018-02-16 19:54 - 2018-02-10 07:09 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
      2018-02-16 19:54 - 2018-02-10 07:08 - 000687552 _____ C:\WINDOWS\system32\StructuredQuery.dll
      2018-02-16 19:54 - 2018-02-10 07:08 - 000398824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
      2018-02-16 19:54 - 2018-02-10 07:08 - 000096200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
      2018-02-16 19:54 - 2018-02-10 07:07 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
      2018-02-16 19:54 - 2018-02-10 07:07 - 000436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 004486904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 000824896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 000594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 000519144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
      2018-02-16 19:54 - 2018-02-10 07:06 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 000189336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
      2018-02-16 19:54 - 2018-02-10 07:06 - 000100248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
      2018-02-16 19:54 - 2018-02-10 07:05 - 000688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
      2018-02-16 19:54 - 2018-02-10 07:05 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
      2018-02-16 19:54 - 2018-02-10 07:05 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
      2018-02-16 19:54 - 2018-02-10 07:05 - 000070856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
      2018-02-16 19:54 - 2018-02-10 07:04 - 001430760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
      2018-02-16 19:54 - 2018-02-10 07:04 - 001426672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
      2018-02-16 19:54 - 2018-02-10 07:04 - 000339872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
      2018-02-16 19:54 - 2018-02-10 07:04 - 000212880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
      2018-02-16 19:54 - 2018-02-10 07:04 - 000093592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
      2018-02-16 19:54 - 2018-02-10 07:03 - 001619808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
      2018-02-16 19:54 - 2018-02-10 07:03 - 000849304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
      2018-02-16 19:54 - 2018-02-10 07:03 - 000722616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
      2018-02-16 19:54 - 2018-02-10 07:03 - 000706600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
      2018-02-16 19:54 - 2018-02-10 07:03 - 000098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
      2018-02-16 19:54 - 2018-02-10 07:02 - 000628632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
      2018-02-16 19:54 - 2018-02-10 06:22 - 001930224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
      2018-02-16 19:54 - 2018-02-10 06:18 - 001384288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
      2018-02-16 19:54 - 2018-02-10 06:17 - 002255112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
      2018-02-16 19:54 - 2018-02-10 06:17 - 000542856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
      2018-02-16 19:54 - 2018-02-10 06:17 - 000211864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
      2018-02-16 19:54 - 2018-02-10 06:15 - 001145624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
      2018-02-16 19:54 - 2018-02-10 06:12 - 004382032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
      2018-02-16 19:54 - 2018-02-10 06:11 - 001250528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
      2018-02-16 19:54 - 2018-02-10 06:10 - 000422592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
      2018-02-16 19:54 - 2018-02-10 06:09 - 002338776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
      2018-02-16 19:54 - 2018-02-10 06:09 - 001123456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
      2018-02-16 19:54 - 2018-02-10 06:09 - 000559976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
      2018-02-16 19:54 - 2018-02-10 06:09 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
      2018-02-16 19:54 - 2018-02-10 06:08 - 003980720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
      2018-02-16 19:54 - 2018-02-10 06:08 - 000592792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000527864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000123808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000089504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000083216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
      2018-02-16 19:54 - 2018-02-10 06:07 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000718232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000654456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000551672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000193248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000079256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
      2018-02-16 19:54 - 2018-02-10 06:05 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
      2018-02-16 19:54 - 2018-02-10 06:03 - 000505160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
      2018-02-16 19:54 - 2018-02-10 05:50 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
      2018-02-16 19:54 - 2018-02-10 05:50 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
      2018-02-16 19:54 - 2018-02-10 05:50 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
      2018-02-16 19:54 - 2018-02-10 05:49 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
      2018-02-16 19:54 - 2018-02-10 05:49 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
      2018-02-16 19:54 - 2018-02-10 05:49 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
      2018-02-16 19:54 - 2018-02-10 05:48 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
      2018-02-16 19:54 - 2018-02-10 05:47 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
      2018-02-16 19:54 - 2018-02-10 05:47 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
      2018-02-16 19:54 - 2018-02-10 05:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
      2018-02-16 19:54 - 2018-02-10 05:46 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
      2018-02-16 19:54 - 2018-02-10 05:46 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
      2018-02-16 19:54 - 2018-02-10 05:46 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
      2018-02-16 19:54 - 2018-02-10 05:45 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
      2018-02-16 19:54 - 2018-02-10 05:44 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
      2018-02-16 19:54 - 2018-02-10 05:44 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
      2018-02-16 19:54 - 2018-02-10 05:43 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
      2018-02-16 19:54 - 2018-02-10 05:43 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
      2018-02-16 19:54 - 2018-02-10 05:43 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 001113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
      2018-02-16 19:54 - 2018-02-10 05:42 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
      2018-02-16 19:54 - 2018-02-10 05:42 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
      2018-02-16 19:54 - 2018-02-10 05:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
      2018-02-16 19:54 - 2018-02-10 05:41 - 000859648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
      2018-02-16 19:54 - 2018-02-10 05:41 - 000820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
      2018-02-16 19:54 - 2018-02-10 05:41 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
      2018-02-16 19:54 - 2018-02-10 05:41 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
      2018-02-16 19:54 - 2018-02-10 05:41 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
      2018-02-16 19:54 - 2018-02-10 05:41 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 004498432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
      2018-02-16 19:54 - 2018-02-10 05:40 - 004113408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 003405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 001234432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
      2018-02-16 19:54 - 2018-02-10 05:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
      2018-02-16 19:54 - 2018-02-10 05:40 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 002741248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 002677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 001669120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
      2018-02-16 19:54 - 2018-02-10 05:39 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 006722560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
      2018-02-16 19:54 - 2018-02-10 05:38 - 002184192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 001968640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
      2018-02-16 19:54 - 2018-02-10 05:38 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
      2018-02-16 19:54 - 2018-02-10 05:38 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
      2018-02-16 19:54 - 2018-02-10 05:38 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
      2018-02-16 19:54 - 2018-02-10 05:37 - 003419136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
      2018-02-16 19:54 - 2018-02-10 05:37 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
      2018-02-16 19:54 - 2018-02-10 05:37 - 002523648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
      2018-02-16 19:54 - 2018-02-10 05:37 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
      2018-02-16 19:54 - 2018-02-10 05:37 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 001759744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
      2018-02-16 19:54 - 2018-02-10 05:36 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
      2018-02-16 19:54 - 2018-02-10 05:35 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
      2018-02-16 19:54 - 2018-02-10 05:35 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
      2018-02-16 19:54 - 2018-02-10 05:34 - 002983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
      2018-02-16 19:54 - 2018-02-10 05:34 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
      2018-02-16 19:54 - 2018-02-10 05:34 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
      2018-02-16 19:54 - 2018-02-10 05:34 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
      2018-02-16 19:54 - 2018-02-10 05:33 - 001936384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
      2018-02-16 19:54 - 2018-02-10 05:33 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
      2018-02-16 19:54 - 2018-02-10 05:33 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
      2018-02-16 19:54 - 2018-02-10 05:33 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
      2018-02-16 19:54 - 2018-02-10 05:33 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
      2018-02-16 19:54 - 2018-02-10 05:33 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
      2018-02-16 19:54 - 2018-02-10 05:33 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
      2018-02-16 19:54 - 2018-02-10 05:33 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
      2018-02-16 19:54 - 2018-02-10 05:33 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
      2018-02-16 19:54 - 2018-02-10 05:32 - 002427904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
      2018-02-16 19:54 - 2018-02-10 05:32 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
      2018-02-16 19:54 - 2018-02-10 05:32 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
      2018-02-16 19:54 - 2018-02-10 05:31 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
      2018-02-16 19:54 - 2018-02-10 05:31 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
      2018-02-16 19:54 - 2018-02-10 05:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
      2018-02-16 19:54 - 2018-02-10 03:59 - 000804240 _____ C:\WINDOWS\SysWOW64\locale.nls
      2018-02-16 19:54 - 2018-02-10 03:59 - 000804240 _____ C:\WINDOWS\system32\locale.nls
      2018-02-16 19:54 - 2018-02-09 04:35 - 004959688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
      2018-02-16 19:54 - 2018-02-09 04:35 - 001234888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
      2018-02-16 19:54 - 2018-02-09 04:35 - 001002952 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
      2018-02-16 19:54 - 2018-02-09 04:35 - 000892872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
      2018-02-16 19:54 - 2018-02-09 04:35 - 000065992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
      2018-02-16 19:54 - 2018-02-02 04:36 - 003903944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
      2018-02-16 19:54 - 2018-02-02 04:36 - 000921032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
      2018-02-16 19:54 - 2018-02-02 04:36 - 000854976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
      2018-02-16 19:54 - 2018-02-02 04:36 - 000649672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
      2018-02-16 19:54 - 2018-02-02 04:36 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
      2018-02-16 19:53 - 2018-02-10 05:49 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
      2018-02-16 19:53 - 2018-02-10 05:48 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
      2018-02-16 19:53 - 2018-02-10 05:48 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
      2018-02-16 19:53 - 2018-02-10 05:47 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
      2018-02-16 19:53 - 2018-02-10 05:47 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
      2018-02-16 19:53 - 2018-02-10 05:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
      2018-02-16 19:53 - 2018-02-10 05:46 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
      2018-02-16 19:53 - 2018-02-10 05:45 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
      2018-02-16 19:53 - 2018-02-10 05:45 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
      2018-02-16 19:53 - 2018-02-10 05:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
      2018-02-16 19:53 - 2018-02-10 05:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EnterpriseAppMgmtClient.dll
      2018-02-16 19:53 - 2018-02-10 05:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
      2018-02-16 19:53 - 2018-02-10 05:44 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
      2018-02-16 19:53 - 2018-02-10 05:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
      2018-02-16 19:53 - 2018-02-10 05:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 003756032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
      2018-02-16 19:53 - 2018-02-10 05:43 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
      2018-02-16 19:53 - 2018-02-10 05:42 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
      2018-02-16 19:53 - 2018-02-10 05:42 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvr32.exe
      2018-02-16 19:53 - 2018-02-10 05:41 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
      2018-02-16 19:53 - 2018-02-10 05:41 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
      2018-02-16 19:53 - 2018-02-10 05:41 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
      2018-02-16 19:53 - 2018-02-10 05:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
      2018-02-16 19:53 - 2018-02-10 05:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 003367936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
      2018-02-16 19:53 - 2018-02-10 05:40 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
      2018-02-16 19:53 - 2018-02-10 05:40 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
      2018-02-16 19:53 - 2018-02-10 05:40 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 002490880 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
      2018-02-16 19:53 - 2018-02-10 05:39 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
      2018-02-16 19:53 - 2018-02-10 05:39 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regsvr32.exe
      2018-02-16 19:53 - 2018-02-10 05:38 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
      2018-02-16 19:53 - 2018-02-10 05:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
      2018-02-16 19:53 - 2018-02-10 05:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
      2018-02-16 19:53 - 2018-02-10 05:37 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
      2018-02-16 19:53 - 2018-02-10 05:37 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
      2018-02-16 19:53 - 2018-02-10 05:37 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
      2018-02-16 19:53 - 2018-02-10 05:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
      2018-02-16 19:53 - 2018-02-10 05:37 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
      2018-02-16 19:53 - 2018-02-10 05:36 - 002462208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
      2018-02-16 19:53 - 2018-02-10 05:36 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
      2018-02-16 19:53 - 2018-02-10 05:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
      2018-02-16 19:53 - 2018-02-10 05:36 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
      2018-02-16 19:53 - 2018-02-10 05:35 - 005388800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
      2018-02-16 19:53 - 2018-02-10 05:35 - 002814976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
      2018-02-16 19:53 - 2018-02-10 05:35 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
      2018-02-16 19:53 - 2018-02-10 05:35 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
      2018-02-16 19:53 - 2018-02-10 05:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
      2018-02-16 19:53 - 2018-02-10 05:34 - 006532096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
      2018-02-16 19:53 - 2018-02-10 05:34 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
      2018-02-16 19:53 - 2018-02-10 05:33 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
      2018-02-16 19:53 - 2018-02-10 05:33 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
      2018-02-16 19:53 - 2018-02-10 05:33 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
      2018-02-16 19:53 - 2018-02-10 05:33 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
      2018-02-16 19:53 - 2018-02-10 05:32 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
      2018-02-16 19:53 - 2018-02-10 05:32 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
      2018-02-16 19:53 - 2018-02-10 05:32 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.ProxyStub.dll
      2018-02-16 19:53 - 2018-02-10 05:31 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
      2018-02-16 19:53 - 2018-02-10 05:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
      2018-02-16 19:20 - 2018-02-16 19:30 - 000000000 ____D C:\Users\Manuel\Documents\Temario correos
      2018-02-14 18:58 - 2018-02-14 18:58 - 000000000 ____D C:\WINDOWS\Panther
      2018-02-07 18:37 - 2018-02-07 18:37 - 000211170 _____ C:\Users\Manuel\Downloads\SOLICITUD VIDA CRISTIAN RAMOS LORENZO.pdf
      2018-02-04 19:20 - 2018-02-04 19:44 - 844952153 _____ C:\Users\Manuel\Downloads\G0m0rr4.3x02.m720p.Dmsec.mkv
      2018-02-04 16:48 - 2018-02-04 17:16 - 747205773 _____ C:\Users\Manuel\Downloads\G0m0rr4.3x01.m720p.Dmsec.mkv
      2018-02-03 23:44 - 2018-02-03 23:45 - 1180422144 _____ C:\Users\Manuel\Documents\olala1.camrec
      2018-02-03 16:51 - 2018-01-26 21:14 - 575262720 _____ C:\Users\Manuel\Downloads\Shameless.8x10.La.Iglesia.de.Jesús.Gay.HDitunes.Fly3RS.avi
      2018-02-02 22:54 - 2018-02-02 22:56 - 1506045952 _____ C:\Users\Manuel\Documents\olala.camrec

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2018-03-04 20:56 - 2016-11-19 22:05 - 000000000 ____D C:\Users\Manuel\AppData\LocalLow\Mozilla
      2018-03-04 20:42 - 2017-11-30 21:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2018-03-04 20:42 - 2016-05-29 15:24 - 000000165 _____ C:\Users\Manuel\AppData\Roaming\sp_data.sys
      2018-03-04 17:31 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
      2018-03-04 15:44 - 2017-11-30 22:08 - 000004220 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{30BA9641-8536-4CD1-A34E-2C7F3EEEA55D}
      2018-03-04 12:21 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
      2018-03-04 12:09 - 2016-05-29 15:27 - 000000000 ___RD C:\Users\Manuel\OneDrive
      2018-03-04 12:08 - 2017-07-20 19:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      2018-03-04 12:08 - 2016-05-29 15:24 - 000000000 __SHD C:\Users\Manuel\IntelGraphicsProfiles
      2018-03-04 12:07 - 2017-07-22 07:48 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
      2018-03-04 12:05 - 2017-11-30 22:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2018-03-04 12:05 - 2017-09-29 09:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
      2018-03-04 12:02 - 2017-11-30 22:08 - 000003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
      2018-03-04 09:22 - 2017-11-30 22:08 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
      2018-03-03 16:53 - 2017-09-29 14:46 - 000000000 ___RD C:\Program Files\Windows Defender
      2018-03-03 16:52 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
      2018-03-02 19:14 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
      2018-03-02 18:42 - 2016-05-29 15:48 - 000000867 _____ C:\Users\Manuel\Desktop\Start Tor Browser.lnk
      2018-03-02 16:04 - 2017-11-30 21:43 - 000000000 ____D C:\Users\Manuel
      2018-03-01 22:09 - 2017-06-18 07:32 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
      2018-03-01 22:09 - 2016-11-12 16:52 - 000001981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
      2018-03-01 22:09 - 2016-11-12 16:52 - 000001969 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
      2018-03-01 00:26 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
      2018-02-28 15:31 - 2016-06-08 15:37 - 000000000 ____D C:\Users\Manuel\AppData\Roaming\uTorrent
      2018-02-28 15:29 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
      2018-02-28 15:29 - 2017-01-08 18:25 - 000000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps
      2018-02-27 22:27 - 2017-09-29 09:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
      2018-02-26 21:46 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
      2018-02-26 21:27 - 2016-05-29 15:24 - 000000000 ____D C:\Users\Manuel\AppData\Local\VirtualStore
      2018-02-25 00:09 - 2017-11-30 22:03 - 002248120 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2018-02-25 00:09 - 2017-09-30 15:41 - 001030580 _____ C:\WINDOWS\system32\perfh00A.dat
      2018-02-25 00:09 - 2017-09-30 15:41 - 000222206 _____ C:\WINDOWS\system32\perfc00A.dat
      2018-02-24 17:10 - 2016-10-28 23:24 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
      2018-02-23 20:52 - 2017-06-18 07:32 - 000061304 _____ () C:\WINDOWS\SMSS-PFRObbce.tmp
      2018-02-23 20:51 - 2017-11-20 16:44 - 000192944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
      2018-02-23 20:51 - 2017-11-10 22:59 - 000190440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 001026696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000459952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000379448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000205464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000146648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000110328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000084368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
      2018-02-23 20:51 - 2016-11-12 16:52 - 000046968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
      2018-02-23 20:49 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\rescache
      2018-02-23 20:33 - 2017-10-16 21:51 - 000000000 ___RD C:\Users\Manuel\3D Objects
      2018-02-23 20:33 - 2016-04-27 07:14 - 000000000 __RHD C:\Users\Public\AccountPictures
      2018-02-23 20:30 - 2017-11-30 13:59 - 000239336 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2018-02-23 20:29 - 2016-11-19 15:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
      2018-02-23 20:29 - 2016-05-29 15:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2018-02-23 20:26 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\TextInput
      2018-02-23 20:25 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\oobe
      2018-02-23 20:25 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2018-02-23 20:25 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2018-02-23 20:25 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\bcastdvr
      2018-02-23 16:16 - 2017-03-27 09:28 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2018-02-23 16:16 - 2017-03-27 09:28 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2018-02-17 23:42 - 2017-12-03 00:52 - 000000446 _____ C:\Users\Manuel\Documents\pordede pagina.txt
      2018-02-16 19:52 - 2016-06-05 19:01 - 000000000 ____D C:\WINDOWS\system32\MRT
      2018-02-16 19:48 - 2017-10-10 21:02 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2018-02-16 19:48 - 2016-06-05 19:00 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2018-02-16 18:42 - 2017-11-30 22:08 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-938948591-2983292031-1742911588-1001
      2018-02-16 18:42 - 2016-05-29 15:27 - 000002400 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2018-02-16 07:02 - 2016-05-29 15:37 - 000001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
      2018-02-09 22:01 - 2016-06-10 22:30 - 000000000 ____D C:\Users\Manuel\AppData\Roaming\vlc
      2018-02-07 18:28 - 2017-12-12 22:10 - 006165504 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
      2018-02-07 18:28 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
      2018-02-07 18:28 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
      2018-02-06 03:49 - 2018-01-17 22:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2018-02-06 03:49 - 2018-01-17 22:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
      2018-02-05 00:06 - 2017-03-26 01:07 - 000181576 _____ C:\Users\Manuel\Downloads\FileUploader.nast
      2018-02-04 23:07 - 2017-04-01 18:04 - 000013586 _____ C:\Users\Manuel\Downloads\FileUploader.err
      2018-02-03 23:43 - 2017-01-05 10:29 - 000004608 _____ C:\Users\Manuel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

      ==================== Files in the root of some directories =======

      2016-05-29 15:24 - 2018-03-04 20:42 - 000000165 _____ () C:\Users\Manuel\AppData\Roaming\sp_data.sys
      2017-01-05 10:29 - 2018-02-03 23:43 - 000004608 _____ () C:\Users\Manuel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2018-02-28 18:37

      ==================== End of FRST.txt ============================

      Saludos y gracias por tu tiempo

    8. #18
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Ayuda, posible virus o error del sistema

      Hola

      Cita Originalmente publicado por Seiton Ver Mensaje
      No descargue ningun programa, descargue un capitulo por mega y me salto una ventana emergente, que mi software habia sido infectado o algo asi, ya que la cerre al momento pero a raiz de eso empezo a fallar.
      No tiene porqué ser un programa, como has visto .... ese capítulo descargado por mega trae regalo


      Sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

      • Para hacerlo descarga >> DelFix en tu escritorio.
        • Doble clic para ejecutarlo.(Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
        • Marca unicamente la casilla "Create registry backup".
      • Pulsar en Run.

        Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


      A continuación inicia tu equipo desde el >> Modo Seguro de Windows con función de red.

      Si tu SO es Windows 8/8.1/10 usa el 2º MÉTODO: de esta Faq de Windows 8 (aplicable a Windows 10) >> ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.


      Con los demás programas cerrados ve a >> Inicio >> Ejecutar >> y escribe notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)

      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      FF Extension: (Unlimited Free VPN - Hola) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2018-02-15]
      FF Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2018-03-02]
      FF Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2017-10-14]
      FF Extension: (Greasemonkey) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2018-01-19]
      CHR Extension: (Presentaciones) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-25]
      CHR Extension: (Documentos) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-25]
      CHR Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-02-25]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-27]
      CHR Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-25]
      CHR Extension: (Chrome Media Router) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-25]
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
      2018-03-04 12:08 - 2017-07-20 19:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      Task: {D3772D52-DE43-4A1E-B592-E7F6C6C9E7B7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION 
      
      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

      Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo

      • Ejecutas Frst.exe.
      • Presionas el botón Fix y aguardas a que termine.
      • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      • Lo pegas en tu próxima respuesta.


      Pon el reporte y comenta como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #19
      Usuario Avatar de Seiton
      Registrado
      abr 2016
      Ubicación
      España
      Mensajes
      13

      Re: Ayuda, posible virus o error del sistema

      Hola, te comento, hice lo que me dijiste y cuando estaba en Modo Seguro de Windows con función de red y quise entrar en tu respuesta para copiar y pegar el script en el escritorio resulta que no tenia conexion a internet, entonces tuve que volver al principio, para tener conexion. Copie el script y lo pegue en el escritorio (no se si esta bien asi , o si habia que pegarlo despues). A continuación inicie mi equipo en Modo Seguro de Windows con función de red y antes de ir me salio un recuadro rectangular de color negro de esos que parecen cuando entras en el sistema, lo cerre en la x y se fue a modo seguro de windows, al ejecutar el programa frst64 salio un cuadradito en ingles que no se lo que ponia, lo cerre y ejecute el progama y justo cuando acababa volvio a salir ese cuadradito y se reinicio el pc solo, te cuento todo eso por si hay algo que hice mal. Sigo teniendo problemas para abrir las carpetas sigue saliendo el mensaje de no responde, en mozilla tambien sigue saliendo. Te dejo el reporte

      Fix result of Farbar Recovery Scan Tool (x64) Version: 04.03.2018
      Ran by Manuel (06-03-2018 22:14:06) Run:1
      Running from C:\Users\Manuel\Desktop
      Loaded Profiles: Manuel (Available Profiles: Manuel)
      Boot Mode: Safe Mode (with Networking)
      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses:

      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      FF Extension: (Unlimited Free VPN - Hola) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] [2018-02-15]
      FF Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2018-03-02]
      FF Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2017-10-14]
      FF Extension: (Greasemonkey) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2018-01-19]
      CHR Extension: (Presentaciones) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-25]
      CHR Extension: (Documentos) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-25]
      CHR Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-02-25]
      CHR Extension: (Documentos de Google sin conexi�n) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-27]
      CHR Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-25]
      CHR Extension: (Chrome Media Router) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-25]
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
      2018-03-04 12:08 - 2017-07-20 19:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      Task: {D3772D52-DE43-4A1E-B592-E7F6C6C9E7B7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION

      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      *****************

      Error: Restore point can only be created in normal mode.
      Processes closed successfully.
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
      C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected] => moved successfully
      "FF Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2018-03-02]" => not found
      "FF Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\[email protected][2017-10-14]" => not found
      C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\39ho42nf.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi => moved successfully
      CHR Extension: (Presentaciones) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-25] => Error: No automatic fix found for this entry.
      CHR Extension: (Documentos) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-25] => Error: No automatic fix found for this entry.
      CHR Extension: (Avast SafePrice) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-02-25] => Error: No automatic fix found for this entry.
      CHR Extension: (Documentos de Google sin conexi�n) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-27] => Error: No automatic fix found for this entry.
      CHR Extension: (Avast Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-25] => Error: No automatic fix found for this entry.
      CHR Extension: (Chrome Media Router) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-25] => Error: No automatic fix found for this entry.
      "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => removed successfully
      "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully
      C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
      "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully
      HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
      "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3772D52-DE43-4A1E-B592-E7F6C6C9E7B7}" => removed successfully
      "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3772D52-DE43-4A1E-B592-E7F6C6C9E7B7}" => removed successfully
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.

      ========= ipconfig /flushdns =========


      Configuraci¢n IP de Windows

      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

      ========= End of CMD: =========


      ========= ipconfig /renew =========


      Configuraci¢n IP de Windows

      No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Wi-Fi mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Conexi¢n de *rea local* 3 mientras los medios
      est‚n desconectados.

      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========


      BITSADMIN version 3.0
      BITS administration utility.
      (C) Copyright 2000-2006 Microsoft Corp.

      BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
      Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

      Unable to connect to BITS - 0x8007043c
      El servicio no puede iniciarse en modo a prueba de errores



      ========= End of CMD: =========


      ========= RemoveProxy: =========

      "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
      "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
      "HKU\S-1-5-21-938948591-2983292031-1742911588-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
      "HKU\S-1-5-21-938948591-2983292031-1742911588-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


      ========= End of RemoveProxy: =========

      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      =========== EmptyTemp: ==========

      BITS transfer queue => 8675328 B
      DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83812542 B
      Java, Flash, Steam htmlcache => 1251 B
      Windows/system/drivers => 878957 B
      Edge => 25892 B
      Chrome => 355591 B
      Firefox => 387591002 B
      Opera => 0 B

      Temp, IE cache, history, cookies, recent:
      Default => 0 B
      Users => 0 B
      ProgramData => 0 B
      Public => 0 B
      systemprofile => 0 B
      systemprofile32 => 0 B
      LocalService => 228432 B
      NetworkService => 135385162 B
      Manuel => 45001833 B

      RecycleBin => 1894637 B
      EmptyTemp: => 633.1 MB temporary data Removed.

      ================================

      Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 06-03-2018 22:19:34)


      Result of scheduled keys to remove after reboot:

      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.

      ==== End of Fixlog 22:19:36 ====

    10. #20
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Ayuda, posible virus o error del sistema

      Hola

      Realiza los siguientes pasos en Modo Seguro

      1.- Descarga, instala y/o actualiza , pero no ejecutes aún, las siguientes herramientas :



      2.- Ejecuta una por una y en el siguiente orden :

      a) CCleaner

      • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador
      • clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad
      • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.


      b) Argente-Registry Cleaner.

      • Lo instalas como indica el Manual
      • Lo ejecutas y presionas Iniciar Análisis
      • Cuando termine el análisis presionas Reparar errores seleccionados.


      c) Glary Utilities.

      • Instalas y actualizas (Pestaña Estado)
      • En su pestaña Mantenimiento 1-Clic presionas Ver Resultados
      • Cuando termine el escaneo presionas Reparar Problemas
      • Presiona para utilizar Limpiador de Disco


      Ejecutas estas tres herramientas varias veces, una por una y en el mismo orden, hasta que veas que no te encuentran prácticamente ningún error.

      Comenta como sigue.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.