Solucionado Infectado con win32/delf.bdv

Estado
Cerrado para nuevas respuestas

PepePalote

Nuevo Miembro
Miembro
Buenas tardes.

Primero os pongo en situación.

Ayer fui a descargar un archivo y tonto de mí, no me di cuenta de que había pinchado donde no era y descargué un archivo que al abrirlo me infectó con este virus/troyano.El antivirus empezó a mostrar notificaciones cada 5-10 segundos diciendo de que había borrado un archivo infectado con win32/delf.bdv.

Empecé a buscar información sobre como eliminarlo y tras un par de horas no encontré nada de utilidad, así que decidí descargar varios antispywares e ir probando a ver si alguno me solucionaba la papeleta. El único que me encontró algo fue el AdWare que me encontró una carpeta oculta en C:\ProgramData llamada ebf35e66 con varios archivos. Cuando borraba esta carpeta, volvía a aparecer al instante, así que no me solucionaba nada.

Hoy cuando he vuelto a encender el PC, he visto que una notificación del antivirus decía que había borrado win32/delf.bdv en Compilación de Visual Basic. Investigando por ahí vi en el administrador de tareas una tarea llamada igual y la borré. Esto hizo que el antivirus dejara de saltar con la misma notificación del win32/delf.bdv, así que pensé que iba por buen camino y reinicié el PC.

Al reiniciar, volvió a salir la dichosa notificación del antivirus, por lo que el virus debía de seguir activo en algún lugar. Me fui a los programas que inician al arrancar y vi dos tareas llamadas AutoIt v3 Script que me resultaban sospechosas. Al abrir la ubicación del archivo me encontré con esto:
Captura.PNG

Deshabilité ambas tareas, borré esta carpeta y la anterior que se creaba en ProgramData y no ha vuelto a salir la notificación del antivirus. El único resto visible que encuentro es que en las tareas de inicio sigue apareciendo esto y no se como quitarlo:
Captura1.PNG


La cosa es que parece que está eliminado, pero no me fío y me gustaría que me ayudarais para que no quedará ningún resto y si puedo eliminar eso que ha quedado en el inicio, así que os dejo el log de HijackThis. Siento no poder poner los logs de los anteriores programas que pasé porque no caí en guardarlos, aparte de que estaban todos limpios, salvo el comentado de AdWare.

Saludos y gracias de antemano.

Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:27:27, on 04/09/2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN España | Hotmail y Outlook, noticias, famosos y horóscopo
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN España | Hotmail y Outlook, noticias, famosos y horóscopo
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [GXT155gmmouseRun] "C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe" -runauto
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --notification-launch-id=1|1|2|Default|0|chrome-extension://pheccebhjjlenlidbnddkjgpgfhokmio/|pheccebhjjlenlidbnddkjgpgfhokmio-gmail|masu1986@gmail.com|165a0931a8287193 --flag-switches-begin --flag-switches-end --restore-last-session
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Servicio de red')
O4 - HKUS\S-1-5-18\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" (User 'Default user')
O4 - Startup: debf35e66c8cf7deee20bc551e27cd61.lnk = C:\MASU-PC\dxbhuhskve.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{08a93d5a-193a-42a4-ba86-316ec1db6f85}: NameServer = 1.1.1.1,1.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{08a93d5a-193a-42a4-ba86-316ec1db6f85}: NameServer = 1.1.1.1,1.0.0.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\AJRouter.dll,-2 (AJRouter) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\Windows\System32\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atiesrxx.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100 (AssignedAccessManagerSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BcastDVRUserService.dll,-100 (BcastDVRUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: BcastDVRUserService_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101 (BluetoothUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: BluetoothUserService_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BTAGService.dll,-101 (BTAGService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BthAvctpSvc.dll,-101 (BthAvctpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\CapabilityAccessManager.dll,-1 (camsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\CaptureService.dll,-100 (CaptureService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: CaptureService_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cdpsvc.dll,-100 (CDPSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cdpusersvc.dll,-100 (CDPUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: CDPUserSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ClipSVC.dll,-103 (ClipSVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\coremessaging.dll,-1 (CoreMessagingRegistrar) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006 (DevicePickerUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DevicePickerUserSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DevicesFlowBroker.dll,-103 (DevicesFlowUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DevicesFlowUserSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DevQueryBroker.dll,-100 (DevQueryBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%systemroot%\system32\DiagSvc.dll,-100 (diagsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\diagtrack.dll,-3001 (DiagTrack) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%systemroot%\system32\Windows.Internal.Management.dll,-100 (DmEnrollmentSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dmwappushsvc.dll,-200 (dmwappushservice) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dosvc.dll,-100 (DoSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dssvc.dll,-10003 (DsSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dusmsvc.dll,-1 (DusmSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%SystemRoot%\system32\embeddedmodesvc.dll,-201 (embeddedmode) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @EnterpriseAppMgmtSvc.dll,-1 (EntAppSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ET Gaming Mouse Service (ETGMGlcsSrv) - Unknown owner - C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FrameServer.dll,-100 (FrameServer) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\GraphicsPerfSvc.dll,-100 (GraphicsPerfSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Servicio de Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\hvhostsvc.dll,-100 (HvHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\tetheringservice.dll,-4097 (icssvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\InstallService.dll,-200 (InstallService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\ipxlatcfg.dll,-500 (IpxlatCfgSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\irmon.dll,-2000 (irmon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\lfsvc.dll,-1 (lfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\licensemanagersvc.dll,-200 (LicenseManager) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\LanguageOverlayServer.dll,-100 (LxpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\moshost.dll,-100 (MapsBroker) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @%SystemRoot%\system32\MessagingService.dll,-100 (MessagingService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: MessagingService_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (mpssvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%systemroot%\system32\NaturalAuth.dll,-100 (NaturalAuthentication) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\NetSetupSvc.dll,-3 (NetSetupSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\NgcCtnrSvc.dll,-1 (NgcCtnrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\APHostRes.dll,-10002 (OneSyncSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: OneSyncSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%SystemRoot%\system32\PhoneserviceRes.dll,-10000 (PhoneSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-15001 (PimIndexMaintenanceSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PimIndexMaintenanceSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Plex Update Service (PlexUpdateService) - Plex, Inc. - C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\PrintWorkflowService.dll,-100 (PrintWorkflowUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PrintWorkflowUserSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pushtoinstall.dll,-200 (PushToInstall) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\RDXService.dll,-256 (RetailDemo) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\RMapi.dll,-1001 (RmSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\Windows\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SEMgrSvc.dll,-1001 (SEMgrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\sensorservice.dll,-1000 (SensorService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SharedRealitySvc.dll,-100 (SharedRealitySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SmsRouterSvc.dll,-10001 (SmsRouter) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\windows.staterepository.dll,-1 (StateRepository) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBrokerSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\tokenbroker.dll,-100 (TokenBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-10003 (UnistoreSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: UnistoreSvc_274bc - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-14001 (UserDataSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: UserDataSvc_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\usermgr.dll,-100 (UserManager) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\usocore.dll,-101 (UsoSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vac.dll,-200 (VacSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\icsvc.dll,-801 (vmicguestinterface) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-101 (vmicheartbeat) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-201 (vmickvpexchange) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvcext.dll,-601 (vmicrdv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-301 (vmicshutdown) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-401 (vmictimesync) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-901 (vmicvmsession) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvcext.dll,-501 (vmicvss) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: VRLService - Chaos Software Ltd. - C:\Program Files\Chaos Group\VRLService\OLS/vrol.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @WaaSMedicSvc.dll,-100 (WaaSMedicSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\WalletService.dll,-1000 (WalletService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\Windows.WARP.JITService.dll,-100 (WarpJITSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wfdsconmgrsvc.dll,-9000 (WFDSConMgrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\flightsettings.dll,-103 (wisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lpasvc.dll,-1000 (wlpasvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\WpcRefreshTask.dll,-100 (WpcMonSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpnservice.dll,-1 (WpnService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WpnUserService.dll,-1 (WpnUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: WpnUserService_274bc - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\Windows\system32\xbgmsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\XblAuthManager.dll,-100 (XblAuthManager) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\XblGameSave.dll,-100 (XblGameSave) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\xboxgipsvc.dll,-100 (XboxGipSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\XboxNetApiSvc.dll,-100 (XboxNetApiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 36983 bytes
 

jbex

El que peca y reza empata
Administrador
Si tienes instalado el CCleaner, en la pestaña Herramientas en botón Inicio, clic derecho eliminar entrada Dxbhuhskve
Desde el mismo Ccleaner, haz una limpieza en el registro de las entradas que hagan referencia a este malware y limpias.
Comprueba no queda rastro en los complementos y plugins de los navegadores. AdwCleaner es una buena herramienta. Si fuera necesario restable por defecto los navegadores.
Inicia el sistema modo seguro con funciones de red y sigue los pasos que señalamos en este hilo: Importante - Consejos antes de pegar su log de HijackThis
Un saludo
 

PepePalote

Nuevo Miembro
Miembro
Buenas.

He seguido todos los pasos y pasado los programas que indicas en el enlace y me ha salido todo limpio. Dejo el log de HijackThis para revisarlo antes de darlo por zanjado.
Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:19:13, on 05/09/2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Dlna Server.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN España | Hotmail y Outlook, noticias, famosos y horóscopo
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN España | Hotmail y Outlook, noticias, famosos y horóscopo
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [GXT155gmmouseRun] "C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe" -runauto
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Servicio de red')
O4 - HKUS\S-1-5-18\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{08a93d5a-193a-42a4-ba86-316ec1db6f85}: NameServer = 1.1.1.1,1.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{08a93d5a-193a-42a4-ba86-316ec1db6f85}: NameServer = 1.1.1.1,1.0.0.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\AJRouter.dll,-2 (AJRouter) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\Windows\System32\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atiesrxx.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100 (AssignedAccessManagerSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BcastDVRUserService.dll,-100 (BcastDVRUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio de usuario de difusión y GameDVR_7483c6 (BcastDVRUserService_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101 (BluetoothUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio de soporte técnico de usuario de Bluetooth_7483c6 (BluetoothUserService_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BTAGService.dll,-101 (BTAGService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\BthAvctpSvc.dll,-101 (BthAvctpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\CapabilityAccessManager.dll,-1 (camsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\CaptureService.dll,-100 (CaptureService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: CaptureService_7483c6 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cdpsvc.dll,-100 (CDPSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cdpusersvc.dll,-100 (CDPUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio de usuario de plataforma de dispositivos conectados_7483c6 (CDPUserSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ClipSVC.dll,-103 (ClipSVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\coremessaging.dll,-1 (CoreMessagingRegistrar) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006 (DevicePickerUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DevicePicker_7483c6 (DevicePickerUserSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DevicesFlowBroker.dll,-103 (DevicesFlowUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DevicesFlow_7483c6 (DevicesFlowUserSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DevQueryBroker.dll,-100 (DevQueryBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%systemroot%\system32\DiagSvc.dll,-100 (diagsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\diagtrack.dll,-3001 (DiagTrack) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%systemroot%\system32\Windows.Internal.Management.dll,-100 (DmEnrollmentSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dmwappushsvc.dll,-200 (dmwappushservice) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dosvc.dll,-100 (DoSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dssvc.dll,-10003 (DsSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dusmsvc.dll,-1 (DusmSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%SystemRoot%\system32\embeddedmodesvc.dll,-201 (embeddedmode) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @EnterpriseAppMgmtSvc.dll,-1 (EntAppSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ET Gaming Mouse Service (ETGMGlcsSrv) - Unknown owner - C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FrameServer.dll,-100 (FrameServer) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\GraphicsPerfSvc.dll,-100 (GraphicsPerfSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Servicio de Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\hvhostsvc.dll,-100 (HvHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\tetheringservice.dll,-4097 (icssvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\InstallService.dll,-200 (InstallService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\ipxlatcfg.dll,-500 (IpxlatCfgSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\irmon.dll,-2000 (irmon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\lfsvc.dll,-1 (lfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\licensemanagersvc.dll,-200 (LicenseManager) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\LanguageOverlayServer.dll,-100 (LxpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\moshost.dll,-100 (MapsBroker) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @%SystemRoot%\system32\MessagingService.dll,-100 (MessagingService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: MessagingService_7483c6 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (mpssvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: Panda Protection Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%systemroot%\system32\NaturalAuth.dll,-100 (NaturalAuthentication) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\NetSetupSvc.dll,-3 (NetSetupSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\NgcCtnrSvc.dll,-1 (NgcCtnrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\APHostRes.dll,-10002 (OneSyncSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Sincronizar host_7483c6 (OneSyncSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Panda VPN Service - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%SystemRoot%\system32\PhoneserviceRes.dll,-10000 (PhoneSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-15001 (PimIndexMaintenanceSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Datos de contactos_7483c6 (PimIndexMaintenanceSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Plex Update Service (PlexUpdateService) - Plex, Inc. - C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\PrintWorkflowService.dll,-100 (PrintWorkflowUserSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PrintWorkflow_7483c6 (PrintWorkflowUserSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: @%SystemRoot%\system32\pushtoinstall.dll,-200 (PushToInstall) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\RDXService.dll,-256 (RetailDemo) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\RMapi.dll,-1001 (RmSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\Windows\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SEMgrSvc.dll,-1001 (SEMgrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\sensorservice.dll,-1000 (SensorService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SharedRealitySvc.dll,-100 (SharedRealitySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SmsRouterSvc.dll,-10001 (SmsRouter) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\windows.staterepository.dll,-1 (StateRepository) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBrokerSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\tokenbroker.dll,-100 (TokenBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-10003 (UnistoreSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Almacenamiento de datos de usuarios_7483c6 (UnistoreSvc_7483c6) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-14001 (UserDataSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Acceso a datos de usuarios_7483c6 (UserDataSvc_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\usermgr.dll,-100 (UserManager) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\usocore.dll,-101 (UsoSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vac.dll,-200 (VacSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\icsvc.dll,-801 (vmicguestinterface) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-101 (vmicheartbeat) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-201 (vmickvpexchange) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvcext.dll,-601 (vmicrdv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-301 (vmicshutdown) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-401 (vmictimesync) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvc.dll,-901 (vmicvmsession) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\icsvcext.dll,-501 (vmicvss) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: VRLService - Chaos Software Ltd. - C:\Program Files\Chaos Group\VRLService\OLS/vrol.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @WaaSMedicSvc.dll,-100 (WaaSMedicSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\WalletService.dll,-1000 (WalletService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\Windows.WARP.JITService.dll,-100 (WarpJITSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wfdsconmgrsvc.dll,-9000 (WFDSConMgrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\flightsettings.dll,-103 (wisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lpasvc.dll,-1000 (wlpasvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\WpcRefreshTask.dll,-100 (WpcMonSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpnservice.dll,-1 (WpnService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WpnUserService.dll,-1 (WpnUserService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio de usuario de notificaciones de inserción de Windows_7483c6 (WpnUserService_7483c6) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\Windows\system32\xbgmsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\XblAuthManager.dll,-100 (XblAuthManager) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\XblGameSave.dll,-100 (XblGameSave) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\xboxgipsvc.dll,-100 (XboxGipSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\XboxNetApiSvc.dll,-100 (XboxNetApiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 38245 bytes
Un Saludo.
 

PepePalote

Nuevo Miembro
Miembro
Aquí esta el log de OTL:
Insertar CODE, HTML o PHP:
OTL logfile created on: 06/09/2018 18:27:15 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\masu1\Desktop
64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.17134.0)
Locale: 00000C0A | Country: España | Language: ESN | Date Format: dd/MM/yyyy

8,00 Gb Total Physical Memory | 4,40 Gb Available Physical Memory | 55,00% Memory free
12,50 Gb Paging File | 8,16 Gb Available in Paging File | 65,31% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 209,06 Gb Total Space | 94,05 Gb Free Space | 44,99% Space Free | Partition Type: NTFS
Drive D: | 931,51 Gb Total Space | 281,65 Gb Free Space | 30,24% Space Free | Partition Type: NTFS

Computer Name: MASU-PC | User Name: masu1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2018/09/06 18:25:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\masu1\Desktop\OTL.exe
PRC - [2018/08/03 09:45:19 | 000,663,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontdrvhost.exe
PRC - [2018/07/18 20:01:06 | 002,232,296 | ---- | M] (Plex, Inc.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
PRC - [2018/07/18 20:01:06 | 000,037,864 | ---- | M] (Python Software Foundation) -- C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
PRC - [2018/07/18 20:01:04 | 018,398,696 | ---- | M] (Plex, Inc.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
PRC - [2018/07/18 20:01:04 | 004,709,864 | ---- | M] (Plex, Inc.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Dlna Server.exe
PRC - [2018/07/18 20:01:04 | 002,357,736 | ---- | M] (Plex) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
PRC - [2018/05/30 17:16:10 | 000,048,784 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
PRC - [2018/05/30 17:14:50 | 000,153,296 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
PRC - [2018/05/28 18:42:00 | 001,146,048 | ---- | M] (Samsung Electronics Co. Ltd.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
PRC - [2017/11/08 21:16:00 | 000,109,024 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
PRC - [2017/01/06 07:53:13 | 001,290,744 | ---- | M] (Autodesk Inc.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
PRC - [2016/07/19 12:28:44 | 000,086,104 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
PRC - [2015/05/29 00:08:54 | 003,310,080 | ---- | M] () -- C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe
PRC - [2012/04/24 18:42:14 | 001,181,544 | ---- | M] () -- C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe


========== Modules (No Company Name) ==========

MOD - [2018/07/18 20:01:30 | 000,930,280 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
MOD - [2018/07/18 20:01:30 | 000,218,088 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
MOD - [2018/07/18 20:01:30 | 000,071,656 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
MOD - [2018/07/18 20:01:30 | 000,041,448 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
MOD - [2018/07/18 20:01:28 | 000,095,720 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
MOD - [2018/07/18 20:01:28 | 000,050,152 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
MOD - [2018/07/18 20:01:28 | 000,024,552 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
MOD - [2018/07/18 20:01:26 | 000,694,248 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
MOD - [2018/07/18 20:01:26 | 000,143,336 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
MOD - [2018/07/18 20:01:26 | 000,083,432 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
MOD - [2018/07/18 20:01:26 | 000,018,920 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
MOD - [2018/07/18 20:01:24 | 000,772,072 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
MOD - [2018/07/18 20:01:24 | 000,064,488 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll
MOD - [2018/07/18 20:01:22 | 000,115,688 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
MOD - [2018/07/18 20:01:22 | 000,059,880 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
MOD - [2018/07/18 20:01:20 | 001,962,984 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
MOD - [2018/07/18 20:01:20 | 001,741,288 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
MOD - [2018/07/18 20:01:20 | 001,083,368 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
MOD - [2018/07/18 20:01:20 | 000,190,952 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
MOD - [2018/07/18 20:01:20 | 000,025,576 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
MOD - [2018/07/18 20:01:18 | 001,549,104 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
MOD - [2018/07/18 20:01:18 | 000,203,240 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
MOD - [2018/07/18 20:01:18 | 000,127,136 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
MOD - [2018/07/18 20:01:18 | 000,074,728 | ---- | M] () -- C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
MOD - [2015/05/29 00:08:54 | 003,310,080 | ---- | M] () -- C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe


========== Services (SafeList) ==========

SRV:64bit: - [2018/08/27 22:57:22 | 000,506,744 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2018/08/09 11:11:33 | 001,364,992 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\bcastdvruserservice.dll -- (BcastDVRUserService)
SRV:64bit: - [2018/08/09 06:53:45 | 000,887,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:64bit: - [2018/08/09 06:28:28 | 003,395,072 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2018/08/09 06:25:14 | 000,392,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\WaaSMedicSvc.dll -- (WaaSMedicSvc)
SRV:64bit: - [2018/08/09 06:21:53 | 001,375,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:64bit: - [2018/08/03 05:41:01 | 000,061,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:64bit: - [2018/08/03 05:15:02 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:64bit: - [2018/08/03 05:09:14 | 001,395,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TokenBroker.dll -- (TokenBroker)
SRV:64bit: - [2018/07/17 20:26:43 | 006,520,832 | ---- | M] () [Auto | Running] -- C:\Program Files\Chaos Group\VRLService\OLS/vrol.exe -- (VRLService)
SRV:64bit: - [2018/07/14 06:23:08 | 000,760,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SecurityHealthService.exe -- (SecurityHealthService)
SRV:64bit: - [2018/07/14 05:54:10 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PushToInstall.dll -- (PushToInstall)
SRV:64bit: - [2018/07/14 05:53:02 | 000,681,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WFDSConMgrSvc.dll -- (WFDSConMgrSvc)
SRV:64bit: - [2018/07/14 05:52:39 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2018/07/14 05:50:54 | 001,359,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lpasvc.dll -- (wlpasvc)
SRV:64bit: - [2018/07/14 05:50:27 | 001,457,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:64bit: - [2018/07/14 05:50:19 | 000,949,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2018/07/06 08:58:32 | 000,091,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:64bit: - [2018/07/06 08:56:06 | 000,784,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:64bit: - [2018/06/15 06:41:49 | 000,235,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2018/06/15 06:41:36 | 000,266,752 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\CapabilityAccessManager.dll -- (camsvc)
SRV:64bit: - [2018/06/15 06:40:59 | 000,827,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:64bit: - [2018/06/15 06:40:51 | 001,487,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\InstallService.dll -- (InstallService)
SRV:64bit: - [2018/06/15 06:39:52 | 000,684,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2018/06/15 06:39:49 | 000,847,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2018/06/08 18:06:33 | 000,976,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Spectrum.exe -- (spectrum)
SRV:64bit: - [2018/06/08 11:29:32 | 004,970,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:64bit: - [2018/06/08 11:00:02 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:64bit: - [2018/06/08 10:59:09 | 000,673,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:64bit: - [2018/06/08 10:56:37 | 000,858,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:64bit: - [2018/06/08 10:55:25 | 002,248,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2018/06/08 10:55:04 | 000,667,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2018/05/20 13:31:30 | 001,456,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WpcDesktopMonSvc.dll -- (WpcMonSvc)
SRV:64bit: - [2018/05/20 13:25:35 | 000,835,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:64bit: - [2018/04/28 16:23:35 | 000,826,776 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\AppVClient.exe -- (AppVClient)
SRV:64bit: - [2018/04/28 05:58:16 | 003,086,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2018/04/12 18:24:14 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\CaptureService.dll -- (CaptureService)
SRV:64bit: - [2018/04/12 18:24:10 | 001,189,376 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\AgentService.exe -- (UevAgentService)
SRV:64bit: - [2018/04/12 18:24:09 | 000,604,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\assignedaccessmanagersvc.dll -- (AssignedAccessManagerSvc)
SRV:64bit: - [2018/04/12 18:24:07 | 000,197,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2018/04/12 01:35:21 | 000,681,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:64bit: - [2018/04/12 01:35:21 | 000,427,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:64bit: - [2018/04/12 01:35:21 | 000,400,896 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV:64bit: - [2018/04/12 01:34:43 | 000,824,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NaturalAuth.dll -- (NaturalAuthentication)
SRV:64bit: - [2018/04/12 01:34:43 | 000,590,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:64bit: - [2018/04/12 01:34:43 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2018/04/12 01:34:42 | 000,712,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SharedRealitySvc.dll -- (SharedRealitySvc)
SRV:64bit: - [2018/04/12 01:34:41 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2018/04/12 01:34:40 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2018/04/12 01:34:39 | 000,219,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvc.dll -- (diagsvc)
SRV:64bit: - [2018/04/12 01:34:38 | 000,671,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2018/04/12 01:34:37 | 000,303,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:64bit: - [2018/04/12 01:34:37 | 000,198,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2018/04/12 01:34:34 | 001,273,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:64bit: - [2018/04/12 01:34:33 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV:64bit: - [2018/04/12 01:34:33 | 000,153,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:64bit: - [2018/04/12 01:34:25 | 000,058,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2018/04/12 01:34:24 | 001,027,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:64bit: - [2018/04/12 01:34:24 | 000,081,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2018/04/12 01:34:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2018/04/12 01:34:23 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2018/04/12 01:34:22 | 000,773,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2018/04/12 01:34:22 | 000,335,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:64bit: - [2018/04/12 01:34:22 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (PrintWorkflowUserSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicesFlowUserSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicePickerUserSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (CaptureService_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BluetoothUserService_7495a7)
SRV:64bit: - [2018/04/12 01:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BcastDVRUserService_7495a7)
SRV:64bit: - [2018/04/12 01:34:19 | 000,750,080 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\DevicesFlowBroker.dll -- (DevicesFlowUserSvc)
SRV:64bit: - [2018/04/12 01:34:19 | 000,195,584 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:64bit: - [2018/04/12 01:34:14 | 000,712,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:64bit: - [2018/04/12 01:34:14 | 000,514,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BTAGService.dll -- (BTAGService)
SRV:64bit: - [2018/04/12 01:34:14 | 000,395,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthAvctpSvc.dll -- (BthAvctpSvc)
SRV:64bit: - [2018/04/12 01:34:14 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:64bit: - [2018/04/12 01:34:14 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2018/04/12 01:34:12 | 001,495,040 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 001,220,096 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,582,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,463,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2018/04/12 01:34:12 | 000,345,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,307,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,281,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2018/04/12 01:34:12 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:64bit: - [2018/04/12 01:34:12 | 000,241,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,176,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,096,768 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:64bit: - [2018/04/12 01:34:12 | 000,058,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xboxgipsvc.dll -- (XboxGipSvc)
SRV:64bit: - [2018/04/12 01:34:12 | 000,044,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:64bit: - [2018/04/12 01:34:10 | 001,248,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SEMgrSvc.dll -- (SEMgrSvc)
SRV:64bit: - [2018/04/12 01:34:10 | 000,376,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2018/04/12 01:34:10 | 000,048,640 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:64bit: - [2018/04/12 01:34:10 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:64bit: - [2018/04/12 01:34:08 | 001,308,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:64bit: - [2018/04/12 01:34:08 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:64bit: - [2018/04/12 01:34:08 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GraphicsPerfSvc.dll -- (GraphicsPerfSvc)
SRV:64bit: - [2018/04/12 01:34:08 | 000,059,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xbgmsvc.exe -- (xbgm)
SRV:64bit: - [2018/04/12 01:34:08 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.WARP.JITService.dll -- (WarpJITSvc)
SRV:64bit: - [2018/04/12 01:34:07 | 001,115,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:64bit: - [2018/04/12 01:34:07 | 000,092,160 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:64bit: - [2018/04/12 01:34:06 | 001,033,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:64bit: - [2018/04/12 01:34:06 | 000,632,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:64bit: - [2018/04/12 01:34:06 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:64bit: - [2018/04/12 01:34:06 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:64bit: - [2018/04/12 01:34:04 | 001,148,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:64bit: - [2018/04/12 01:34:04 | 000,411,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vac.dll -- (VacSvc)
SRV:64bit: - [2018/04/12 01:34:04 | 000,356,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dusmsvc.dll -- (DusmSvc)
SRV:64bit: - [2018/04/12 01:34:04 | 000,199,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LanguageOverlayServer.dll -- (LxpSvc)
SRV:64bit: - [2018/04/12 01:34:04 | 000,163,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SgrmBroker.exe -- (SgrmBroker)
SRV:64bit: - [2018/04/12 01:34:04 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:64bit: - [2018/04/12 01:34:02 | 000,464,384 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Microsoft.Bluetooth.UserService.dll -- (BluetoothUserService)
SRV:64bit: - [2018/04/12 01:34:02 | 000,063,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipxlatcfg.dll -- (IpxlatCfgSvc)
SRV:64bit: - [2018/04/12 01:33:54 | 002,197,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2018/04/12 01:33:54 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:64bit: - [2018/04/12 01:33:54 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2018/04/12 01:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2018/04/12 01:33:47 | 003,441,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2018/04/10 23:05:00 | 000,324,608 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:64bit: - [2018/03/10 20:20:00 | 000,495,616 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\OpenSSH\ssh-agent.exe -- (ssh-agent)
SRV:64bit: - [2017/11/09 18:33:10 | 000,028,768 | ---- | M] (Samsung Electronics Co., Ltd.) [Auto | Running] -- C:\Windows\SysNative\RAPID\SamsungRapidSvc.exe -- (SamsungRapidSvc)
SRV - [2018/08/27 22:57:22 | 000,506,744 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2018/08/09 06:29:38 | 000,567,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2018/08/03 05:06:01 | 001,000,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\TokenBroker.dll -- (TokenBroker)
SRV - [2018/07/18 20:01:06 | 002,232,296 | ---- | M] (Plex, Inc.) [Auto | Running] -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe -- (PlexUpdateService)
SRV - [2018/07/12 14:37:50 | 002,330,224 | ---- | M] (ESET) [On_Demand | Running] -- C:\Archivos de programa\ESET\ESET Security\ekrn.exe -- (ekrnEpfw)
SRV - [2018/07/12 14:37:50 | 002,330,224 | ---- | M] (ESET) [Auto | Running] -- C:\Archivos de programa\ESET\ESET Security\ekrn.exe -- (ekrn)
SRV - [2018/06/27 18:23:56 | 001,591,264 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Archivos de programa\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64)
SRV - [2018/06/20 16:19:28 | 003,606,632 | ---- | M] (Disc Soft Ltd) [On_Demand | Stopped] -- C:\Archivos de programa\DAEMON Tools Lite\DiscSoftBusServiceLite.exe -- (Disc Soft Lite Bus Service)
SRV - [2018/06/15 06:46:52 | 000,593,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2018/06/15 06:43:37 | 001,110,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\InstallService.dll -- (InstallService)
SRV - [2018/06/09 01:38:56 | 001,673,504 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2018/06/08 11:09:43 | 004,469,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2018/06/08 10:54:26 | 000,729,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\FlightSettings.dll -- (wisvc)
SRV - [2018/05/30 17:16:10 | 000,048,784 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe -- (PSUAService)
SRV - [2018/05/09 12:48:14 | 006,541,008 | ---- | M] (Malwarebytes) [On_Demand | Stopped] -- C:\Archivos de programa\Malwarebytes\Anti-Malware\MBAMService.exe -- (MBAMService)
SRV - [2018/04/12 01:35:22 | 000,312,832 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV - [2018/04/12 01:34:57 | 000,138,240 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV - [2018/04/12 01:34:45 | 000,965,632 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2018/04/12 01:34:45 | 000,072,192 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\tzautoupdate.dll -- (tzautoupdate)
SRV - [2018/04/12 01:34:45 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2018/04/12 01:33:47 | 003,441,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2017/11/20 01:58:12 | 000,320,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe -- (Panda VPN Service)
SRV - [2017/11/08 21:16:00 | 000,109,024 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe -- (NanoServiceMain)
SRV - [2017/01/06 07:53:13 | 001,290,744 | ---- | M] (Autodesk Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe -- (AdAppMgrSvc)
SRV - [2016/07/19 12:28:44 | 000,086,104 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe -- (PandaAgent)
SRV - [2012/04/24 18:42:14 | 001,181,544 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe -- (ETGMGlcsSrv)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2018/09/03 00:27:44 | 000,061,624 | ---- | M] (EnigmaSoft Limited) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\EnigmaFileMonDriver.sys -- (EnigmaFileMonDriver)
DRV:64bit: - [2018/08/27 22:57:24 | 046,812,024 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2018/08/27 22:57:24 | 000,589,176 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2018/08/09 06:55:57 | 000,077,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:64bit: - [2018/08/09 06:55:01 | 000,230,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2018/08/03 05:47:12 | 000,128,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:64bit: - [2018/08/03 05:40:48 | 000,228,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:64bit: - [2018/08/03 05:40:43 | 000,566,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2018/08/03 05:39:58 | 000,075,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2018/08/03 05:17:05 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:64bit: - [2018/07/14 05:55:22 | 000,414,720 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\cldflt.sys -- (CldFlt)
DRV:64bit: - [2018/07/14 05:55:16 | 000,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winnat.sys -- (WinNat)
DRV:64bit: - [2018/07/12 14:22:48 | 000,196,112 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2018/07/12 14:22:48 | 000,143,624 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2018/07/12 14:22:48 | 000,110,376 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2018/07/12 14:22:48 | 000,109,920 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\edevmon.sys -- (edevmon)
DRV:64bit: - [2018/07/12 14:22:48 | 000,082,816 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2018/07/12 14:22:48 | 000,050,144 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\ekbdflt.sys -- (ekbdflt)
DRV:64bit: - [2018/07/12 14:22:48 | 000,015,872 | ---- | M] (ESET) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\eelam.sys -- (eelam)
DRV:64bit: - [2018/06/21 18:38:13 | 000,047,672 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtliteusbbus.sys -- (dtliteusbbus)
DRV:64bit: - [2018/06/21 18:38:08 | 000,030,264 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtlitescsibus.sys -- (dtlitescsibus)
DRV:64bit: - [2018/06/15 09:11:00 | 000,611,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2018/06/15 09:10:52 | 000,048,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:64bit: - [2018/06/15 07:08:16 | 001,921,944 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2018/06/15 07:08:14 | 000,072,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:64bit: - [2018/06/15 07:08:05 | 000,945,568 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:64bit: - [2018/06/15 06:44:07 | 000,295,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:64bit: - [2018/06/08 12:31:08 | 000,029,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2018/06/08 11:29:39 | 000,164,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2018/06/08 10:58:46 | 000,781,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:64bit: - [2018/05/28 06:59:10 | 000,107,496 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWT6.sys -- (AtiHDAudioService)
DRV:64bit: - [2018/05/20 14:33:14 | 000,105,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2018/04/28 06:29:42 | 000,382,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2018/04/12 18:24:13 | 000,037,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2018/04/12 18:24:11 | 000,304,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mssecflt.sys -- (MsSecFlt)
DRV:64bit: - [2018/04/12 18:24:11 | 000,152,064 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\smbdirect.sys -- (smbdirect)
DRV:64bit: - [2018/04/12 18:24:10 | 000,040,344 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\UevAgentDriver.sys -- (UevAgentDriver)
DRV:64bit: - [2018/04/12 18:24:09 | 000,057,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpatialGraphFilter.sys -- (SpatialGraphFilter)
DRV:64bit: - [2018/04/12 18:24:07 | 000,030,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2018/04/12 18:24:06 | 000,162,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppvVemgr.sys -- (AppvVemgr)
DRV:64bit: - [2018/04/12 18:24:06 | 000,143,768 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppvVfs.sys -- (AppvVfs)
DRV:64bit: - [2018/04/12 18:24:06 | 000,127,384 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppVStrm.sys -- (AppvStrm)
DRV:64bit: - [2018/04/12 18:24:05 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2018/04/12 01:34:43 | 000,119,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda)
DRV:64bit: - [2018/04/12 01:34:40 | 000,091,544 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2018/04/12 01:34:40 | 000,060,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bam.sys -- (bam)
DRV:64bit: - [2018/04/12 01:34:32 | 000,128,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2018/04/12 01:34:32 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2018/04/12 01:34:32 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afunix.sys -- (afunix)
DRV:64bit: - [2018/04/12 01:34:32 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2018/04/12 01:34:28 | 000,254,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2018/04/12 01:34:25 | 000,088,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2018/04/12 01:34:22 | 000,175,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:64bit: - [2018/04/12 01:34:22 | 000,034,208 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2018/04/12 01:34:20 | 000,217,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2018/04/12 01:34:20 | 000,209,816 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2018/04/12 01:34:19 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:64bit: - [2018/04/12 01:34:15 | 000,021,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdmCompanionFilter.sys -- (WdmCompanionFilter)
DRV:64bit: - [2018/04/12 01:34:14 | 000,282,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:64bit: - [2018/04/12 01:34:14 | 000,154,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2018/04/12 01:34:14 | 000,152,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:64bit: - [2018/04/12 01:34:14 | 000,151,960 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:64bit: - [2018/04/12 01:34:14 | 000,128,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:64bit: - [2018/04/12 01:34:14 | 000,082,944 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:64bit: - [2018/04/12 01:34:14 | 000,075,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2018/04/12 01:34:14 | 000,067,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:64bit: - [2018/04/12 01:34:14 | 000,039,328 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:64bit: - [2018/04/12 01:34:14 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:64bit: - [2018/04/12 01:34:14 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshwnclx.sys -- (HwNClx0101)
DRV:64bit: - [2018/04/12 01:34:14 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2018/04/12 01:34:12 | 000,169,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2018/04/12 01:34:12 | 000,092,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bindflt.sys -- (bindflt)
DRV:64bit: - [2018/04/12 01:34:12 | 000,082,432 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:64bit: - [2018/04/12 01:34:12 | 000,082,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2018/04/12 01:34:12 | 000,055,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2018/04/12 01:34:04 | 000,128,000 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2018/04/12 01:34:04 | 000,063,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SgrmAgent.sys -- (SgrmAgent)
DRV:64bit: - [2018/04/12 01:34:04 | 000,058,272 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:64bit: - [2018/04/12 01:34:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:64bit: - [2018/04/12 01:34:04 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:64bit: - [2018/04/12 01:33:58 | 000,331,680 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2018/04/12 01:33:58 | 000,044,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2018/04/12 01:33:58 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2018/04/12 01:33:58 | 000,030,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2018/04/12 01:33:54 | 000,140,192 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2018/04/12 01:33:54 | 000,127,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2018/04/12 01:33:54 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2018/04/12 01:33:54 | 000,055,808 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:64bit: - [2018/04/12 01:33:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:64bit: - [2018/04/12 01:33:54 | 000,039,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ramdisk.sys -- (Ramdisk)
DRV:64bit: - [2018/04/12 01:33:54 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:64bit: - [2018/04/12 01:33:54 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipt.sys -- (IPT)
DRV:64bit: - [2018/04/12 01:33:52 | 000,434,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2018/04/12 01:33:52 | 000,287,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2018/04/12 01:33:52 | 000,097,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2018/04/12 01:33:52 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:64bit: - [2018/04/12 01:33:52 | 000,054,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2018/04/12 01:33:52 | 000,050,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2018/04/12 01:33:52 | 000,050,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:64bit: - [2018/04/12 01:33:52 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:64bit: - [2018/04/12 01:33:52 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:64bit: - [2018/04/12 01:33:52 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2018/04/12 01:33:52 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2018/04/12 01:33:52 | 000,018,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:64bit: - [2018/04/12 01:33:51 | 000,144,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:64bit: - [2018/04/12 01:33:51 | 000,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2018/04/12 01:33:51 | 000,098,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:64bit: - [2018/04/12 01:33:51 | 000,029,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:64bit: - [2018/04/12 01:33:51 | 000,028,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:64bit: - [2018/04/12 01:33:51 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:64bit: - [2018/04/12 01:33:49 | 001,836,952 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:64bit: - [2018/04/12 01:33:49 | 000,885,144 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAVC.sys -- (iaStorAVC)
DRV:64bit: - [2018/04/12 01:33:49 | 000,842,648 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:64bit: - [2018/04/12 01:33:49 | 000,604,160 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:64bit: - [2018/04/12 01:33:49 | 000,526,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:64bit: - [2018/04/12 01:33:49 | 000,505,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbhost.sys -- (mausbhost)
DRV:64bit: - [2018/04/12 01:33:49 | 000,321,432 | ---- | M] (Chelsio Communications) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:64bit: - [2018/04/12 01:33:49 | 000,305,560 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2018/04/12 01:33:49 | 000,197,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc.sys -- (netvsc)
DRV:64bit: - [2018/04/12 01:33:49 | 000,156,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2018/04/12 01:33:49 | 000,108,952 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:64bit: - [2018/04/12 01:33:49 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pmem.sys -- (pmem)
DRV:64bit: - [2018/04/12 01:33:49 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvdimm.sys -- (nvdimm)
DRV:64bit: - [2018/04/12 01:33:49 | 000,079,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2018/04/12 01:33:49 | 000,072,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2018/04/12 01:33:49 | 000,064,920 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:64bit: - [2018/04/12 01:33:49 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2018/04/12 01:33:49 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2018/04/12 01:33:49 | 000,061,848 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:64bit: - [2018/04/12 01:33:49 | 000,058,776 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:64bit: - [2018/04/12 01:33:49 | 000,056,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbip.sys -- (mausbip)
DRV:64bit: - [2018/04/12 01:33:49 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2018/04/12 01:33:49 | 000,038,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bttflt.sys -- (bttflt)
DRV:64bit: - [2018/04/12 01:33:49 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2018/04/12 01:33:49 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2018/04/12 01:33:49 | 000,033,184 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\hvcrash.sys -- (hvcrash)
DRV:64bit: - [2018/04/12 01:33:49 | 000,033,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SDFRd.sys -- (SDFRd)
DRV:64bit: - [2018/04/12 01:33:49 | 000,032,152 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:64bit: - [2018/04/12 01:33:49 | 000,031,128 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2018/04/12 01:33:49 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2018/04/12 01:33:49 | 000,018,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys -- (swenum)
DRV:64bit: - [2018/04/12 01:33:49 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2018/04/12 01:33:49 | 000,016,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:64bit: - [2018/04/12 01:33:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2018/04/12 01:33:49 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2018/04/12 01:33:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2018/04/12 01:33:48 | 003,419,032 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2018/04/12 01:33:48 | 002,224,128 | ---- | M] (MediaTek Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2018/04/12 01:33:48 | 001,135,520 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2018/04/12 01:33:48 | 000,533,912 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2018/04/12 01:33:48 | 000,259,480 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2018/04/12 01:33:48 | 000,177,192 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2018/04/12 01:33:48 | 000,145,816 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ItSas35i.sys -- (ItSas35i)
DRV:64bit: - [2018/04/12 01:33:48 | 000,128,408 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:64bit: - [2018/04/12 01:33:48 | 000,124,312 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:64bit: - [2018/04/12 01:33:48 | 000,123,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:64bit: - [2018/04/12 01:33:48 | 000,107,416 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2018/04/12 01:33:48 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rhproxy.sys -- (rhproxy)
DRV:64bit: - [2018/04/12 01:33:48 | 000,083,360 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2018/04/12 01:33:48 | 000,082,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2018/04/12 01:33:48 | 000,082,328 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\megasas35i.sys -- (megasas35i)
DRV:64bit: - [2018/04/12 01:33:48 | 000,075,160 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:64bit: - [2018/04/12 01:33:48 | 000,064,408 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2018/04/12 01:33:48 | 000,063,904 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2018/04/12 01:33:48 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2018/04/12 01:33:48 | 000,027,032 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2018/04/12 01:33:48 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:64bit: - [2018/04/12 01:33:48 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pnpmem.sys -- (PNPMEM)
DRV:64bit: - [2018/04/12 01:33:48 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2018/04/12 01:33:47 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2018/04/12 01:33:47 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2018/04/12 01:33:45 | 000,174,592 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_BXT_P.sys -- (iaLPSS2i_I2C_BXT_P)
DRV:64bit: - [2018/04/12 01:33:45 | 000,171,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:64bit: - [2018/04/12 01:33:45 | 000,118,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2018/04/12 01:33:45 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2018/04/12 01:33:45 | 000,091,648 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:64bit: - [2018/04/12 01:33:45 | 000,088,576 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_BXT_P.sys -- (iaLPSS2i_GPIO2_BXT_P)
DRV:64bit: - [2018/04/12 01:33:45 | 000,079,360 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
DRV:64bit: - [2018/04/12 01:33:45 | 000,060,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CAD.sys -- (CAD)
DRV:64bit: - [2018/04/12 01:33:45 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2018/04/12 01:33:45 | 000,036,864 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:64bit: - [2018/01/30 15:19:46 | 000,207,248 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\PSINKNC.sys -- (PSINKNC)
DRV:64bit: - [2018/01/23 02:59:12 | 000,153,992 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINFile.sys -- (PSINFile)
DRV:64bit: - [2017/11/16 23:17:44 | 000,119,424 | ---- | M] (Samsung Electronics Co., Ltd.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\SamsungRapidFSFltr.sys -- (SamsungRapidFSFltr)
DRV:64bit: - [2017/11/16 23:17:40 | 000,287,360 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SamsungRapidDiskFltr.sys -- (SamsungRapidDiskFltr)
DRV:64bit: - [2017/11/16 14:00:25 | 000,048,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aftap0901.sys -- (aftap0901)
DRV:64bit: - [2017/11/09 00:43:06 | 000,191,448 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINAflt.sys -- (PSINAflt)
DRV:64bit: - [2017/11/06 08:07:22 | 000,125,920 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnstlsc.sys -- (NNSTLSC)
DRV:64bit: - [2017/11/06 08:07:08 | 000,281,056 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsstrm.sys -- (NNSSTRM)
DRV:64bit: - [2017/11/06 08:06:58 | 000,123,360 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnssmtp.sys -- (NNSSMTP)
DRV:64bit: - [2017/11/06 08:06:52 | 000,249,312 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NNSPrv.sys -- (NNSPRV)
DRV:64bit: - [2017/11/06 08:06:48 | 000,336,352 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsprot.sys -- (NNSPROT)
DRV:64bit: - [2017/11/06 08:06:40 | 000,135,648 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnspop3.sys -- (NNSPOP3)
DRV:64bit: - [2017/11/06 08:02:16 | 000,091,616 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnspihsw.sys -- (NNSPIHSW)
DRV:64bit: - [2017/11/06 08:02:08 | 000,118,240 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnspicc.sys -- (NNSPICC)
DRV:64bit: - [2017/11/06 08:01:58 | 000,126,432 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsids.sys -- (NNSIDS)
DRV:64bit: - [2017/11/06 08:01:54 | 000,121,312 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnshttps.sys -- (NNSHTTPS)
DRV:64bit: - [2017/11/06 08:01:24 | 000,211,936 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnshttp.sys -- (NNSHTTP)
DRV:64bit: - [2017/11/06 08:01:10 | 000,108,000 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsalpc.sys -- (NNSALPC)
DRV:64bit: - [2017/10/17 03:31:36 | 000,129,504 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINReg.sys -- (PSINReg)
DRV:64bit: - [2017/10/17 03:31:30 | 000,159,200 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProt.sys -- (PSINProt)
DRV:64bit: - [2017/10/17 03:31:24 | 000,146,912 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProc.sys -- (PSINProc)
DRV:64bit: - [2017/09/26 07:51:04 | 000,099,512 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NNSNAHSL.sys -- (NNSNAHSL)
DRV:64bit: - [2017/05/22 07:01:12 | 000,072,648 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Unknown] -- C:\Windows\SysNative\drivers\PSKMAD.sys -- (PSKMAD)
DRV:64bit: - [2015/07/14 15:29:08 | 000,053,360 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2014/06/11 13:22:48 | 000,025,600 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbglcs1100302.sys -- (usbglcs1100302)
DRV - [2018/08/27 22:57:24 | 046,812,024 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atikmdag.sys -- (amdkmdag)
DRV - [2018/08/27 22:57:24 | 000,589,176 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\c0332601.inf_amd64_5beeaaa0c940e99c\B332635\atikmpag.sys -- (amdkmdap)
DRV - [2018/04/12 01:34:58 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\afunix.sys -- (afunix)
DRV - [2018/04/12 01:33:49 | 000,018,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys -- (swenum)
DRV - [2018/04/12 01:33:45 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys -- (CompositeBus)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Bing{searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Bing{searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 12 4C 6C 50 BE 13 D4 01  [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 19 00 00 00 4D E7 30 9C B4 28 9F AE 15 D7 8D 89 41 45 99 51 4E 0F 9E F7 05 6C 43 F9 8C 02 00 00 00 0E 00 00 00 71 46 64 6B 5A 58 63 45 4B 6F 38 25 33 64  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Bing{searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.181.2: C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2: C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)



========== Chrome  ==========

CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjnfcmkfdcoeckplikldabeggcohmbmj\2_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm\1.16.18_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.7_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo\5.0_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.4_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga\2.93_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\oogmkbpkoblajkomflhkkdmbfggdmefd\1.1.0_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco\2.76_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pheccebhjjlenlidbnddkjgpgfhokmio\2.1.12_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\
CHR - Extension: No name found = C:\Users\masu1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\7.4.6_0\

O1 HOSTS File: ([2018/04/12 01:36:39 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Security\ecmds.exe (ESET)
O4:64bit: - HKLM..\Run: [SamsungRapidApp] C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe (Samsung Electronics Co., Ltd.)
O4:64bit: - HKLM..\Run: [SecurityHealth] C:\Archivos de programa\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Autodesk Desktop App] C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (Autodesk, Inc.)
O4 - HKLM..\Run: [GXT155gmmouseRun] C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe ()
O4 - HKLM..\Run: [PSUAMain] C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security, S.L.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [Plex Media Server] C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\RunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableFullTrustStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUwpStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportFullTrustStartupTasks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportUwpStartupTasks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:  =
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{08a93d5a-193a-42a4-ba86-316ec1db6f85}: NameServer = 1.1.1.1,1.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{e1f9ddd3-1488-4598-8560-4943451c423a}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\mso-minsb.16 - No CLSID value found
O18:64bit: - Protocol\Handler\mso-minsb-roaming.16 - No CLSID value found
O18:64bit: - Protocol\Handler\osf.16 - No CLSID value found
O18:64bit: - Protocol\Handler\osf-roaming.16 - No CLSID value found
O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2018/06/27 18:16:24 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2018/09/06 18:26:24 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\masu1\Desktop\OTL.exe
[2018/09/05 20:51:22 | 000,000,000 | ---D | C] -- C:\Users\masu1\AppData\Roaming\Panda Security
[2018/09/05 20:51:21 | 000,072,648 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\PSKMAD.sys
[2018/09/05 20:51:18 | 000,191,448 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\PSINAflt.sys
[2018/09/05 20:51:17 | 000,159,200 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\PSINProt.sys
[2018/09/05 20:51:17 | 000,129,504 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\PSINReg.sys
[2018/09/05 20:51:17 | 000,123,360 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnssmtp.sys
[2018/09/05 20:51:16 | 000,211,936 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnshttp.sys
[2018/09/05 20:51:16 | 000,135,648 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnspop3.sys
[2018/09/05 20:51:16 | 000,121,312 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnshttps.sys
[2018/09/05 20:51:15 | 000,336,352 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnsprot.sys
[2018/09/05 20:51:15 | 000,126,432 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnsids.sys
[2018/09/05 20:51:15 | 000,118,240 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnspicc.sys
[2018/09/05 20:51:15 | 000,091,616 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnspihsw.sys
[2018/09/05 20:51:14 | 000,281,056 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnsstrm.sys
[2018/09/05 20:51:14 | 000,125,920 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnstlsc.sys
[2018/09/05 20:51:13 | 000,108,000 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\nnsalpc.sys
[2018/09/05 20:51:12 | 000,207,248 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\PSINKNC.sys
[2018/09/05 20:51:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
[2018/09/05 20:51:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
[2018/09/05 20:49:56 | 000,000,000 | ---D | C] -- C:\Users\masu1\AppData\Roaming\Macromedia
[2018/09/05 20:49:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2018/09/04 17:39:42 | 000,000,000 | ---D | C] -- C:\HijackThis
[2018/09/03 18:11:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2018/09/03 18:11:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2018/09/03 01:00:05 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2018/09/03 00:59:44 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2018/09/03 00:27:44 | 000,061,624 | ---- | C] (EnigmaSoft Limited) -- C:\Windows\SysNative\drivers\EnigmaFileMonDriver.sys
[2018/09/02 22:55:49 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2018/09/02 22:55:44 | 007,567,568 | ---- | C] (Malwarebytes) -- C:\Users\masu1\Desktop\adwcleaner_7.2.3.exe
[2018/09/02 22:43:55 | 000,000,000 | ---D | C] -- C:\Users\masu1\AppData\Roaming\6c234efdf19b88ef0a277d020d5237be
[2018/09/02 22:43:52 | 000,000,000 | -H-D | C] -- C:\MASU-PC
[2018/09/02 13:34:21 | 000,000,000 | ---D | C] -- C:\Users\masu1\Desktop\Nueva carpeta
[2018/09/01 10:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
[2018/08/31 11:04:21 | 007,519,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2018/08/31 11:04:21 | 006,567,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2018/08/31 11:04:19 | 025,847,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2018/08/31 11:04:14 | 022,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2018/08/31 11:04:13 | 009,092,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2018/08/31 11:04:12 | 007,577,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2018/08/31 11:04:12 | 001,617,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2018/08/31 11:04:12 | 001,538,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppVEntSubsystems32.dll
[2018/08/31 11:04:11 | 003,395,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2018/08/31 11:04:10 | 005,777,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2018/08/31 11:04:10 | 004,380,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeContent.dll
[2018/08/31 11:04:09 | 003,652,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2018/08/31 11:04:08 | 003,148,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2018/08/31 11:04:08 | 002,267,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystems64.dll
[2018/08/31 11:04:08 | 001,222,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2018/08/31 11:04:07 | 003,320,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2018/08/31 11:04:07 | 002,900,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2018/08/31 11:04:07 | 002,894,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2018/08/31 11:04:07 | 002,368,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebRuntimeManager.dll
[2018/08/31 11:04:07 | 001,375,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usocore.dll
[2018/08/31 11:04:07 | 001,035,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ApplyTrustOffline.exe
[2018/08/31 11:04:07 | 001,030,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2018/08/31 11:04:06 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2018/08/31 11:04:06 | 002,172,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2018/08/31 11:04:06 | 002,051,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsp_fs.dll
[2018/08/31 11:04:06 | 001,947,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2018/08/31 11:04:06 | 001,787,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsp_health.dll
[2018/08/31 11:04:06 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll
[2018/08/31 11:04:06 | 001,364,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvruserservice.dll
[2018/08/31 11:04:06 | 001,174,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2018/08/31 11:04:06 | 001,019,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2018/08/31 11:04:06 | 000,808,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeManager.dll
[2018/08/31 11:04:05 | 002,401,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AcGenral.dll
[2018/08/31 11:04:05 | 002,236,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2018/08/31 11:04:05 | 001,557,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2018/08/31 11:04:05 | 001,551,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2018/08/31 11:04:05 | 001,189,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll
[2018/08/31 11:04:05 | 001,097,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2018/08/31 11:04:05 | 000,932,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2018/08/31 11:04:05 | 000,916,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2018/08/31 11:04:05 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusUpdateHandlers.dll
[2018/08/31 11:04:05 | 000,894,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webplatstorageserver.dll
[2018/08/31 11:04:05 | 000,835,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2018/08/31 11:04:05 | 000,829,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2018/08/31 11:04:05 | 000,608,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EdgeManager.dll
[2018/08/31 11:04:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\updatehandlers.dll
[2018/08/31 11:04:05 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgeIso.dll
[2018/08/31 11:04:05 | 000,482,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase_enclave.dll
[2018/08/31 11:04:05 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AcGenral.dll
[2018/08/31 11:04:04 | 001,586,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2018/08/31 11:04:04 | 001,535,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2018/08/31 11:04:04 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2018/08/31 11:04:04 | 001,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsp_fs.dll
[2018/08/31 11:04:04 | 001,308,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsp_health.dll
[2018/08/31 11:04:04 | 001,129,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2018/08/31 11:04:04 | 001,004,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2018/08/31 11:04:04 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2018/08/31 11:04:04 | 000,836,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2018/08/31 11:04:04 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certca.dll
[2018/08/31 11:04:04 | 000,777,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pkeyhelper.dll
[2018/08/31 11:04:04 | 000,766,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicensingWinRT.dll
[2018/08/31 11:04:04 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2018/08/31 11:04:04 | 000,660,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicensingWinRT.dll
[2018/08/31 11:04:04 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\resutils.dll
[2018/08/31 11:04:04 | 000,581,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVideoDSP.dll
[2018/08/31 11:04:04 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.UX.EapRequestHandler.dll
[2018/08/31 11:04:04 | 000,568,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcblaunch.exe
[2018/08/31 11:04:04 | 000,521,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2018/08/31 11:04:04 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2018/08/31 11:04:04 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotification.exe
[2018/08/31 11:04:04 | 000,392,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WaaSMedicSvc.dll
[2018/08/31 11:04:04 | 000,356,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bcryptprimitives.dll
[2018/08/31 11:04:04 | 000,272,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave.dll
[2018/08/31 11:04:04 | 000,269,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave_secure.dll
[2018/08/31 11:04:04 | 000,230,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2018/08/31 11:04:04 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dinput8.dll
[2018/08/31 11:04:04 | 000,203,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll
[2018/08/31 11:04:04 | 000,077,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hvservice.sys
[2018/08/31 11:04:03 | 002,084,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2018/08/31 11:04:03 | 002,016,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2018/08/31 11:04:03 | 001,708,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSPhotography.dll
[2018/08/31 11:04:03 | 001,274,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2018/08/31 11:04:03 | 000,887,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2018/08/31 11:04:03 | 000,714,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSVideoDSP.dll
[2018/08/31 11:04:03 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2018/08/31 11:04:03 | 000,567,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2018/08/31 11:04:03 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certreq.exe
[2018/08/31 11:04:03 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2018/08/31 11:04:03 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgeIso.dll
[2018/08/31 11:04:03 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotificationUx.exe
[2018/08/31 11:04:03 | 000,253,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2018/08/31 11:04:03 | 000,236,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll
[2018/08/31 11:04:03 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2018/08/31 11:04:03 | 000,221,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EditionUpgradeManagerObj.dll
[2018/08/31 11:04:03 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dinput8.dll
[2018/08/31 11:04:03 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vertdll.dll
[2018/08/31 11:04:03 | 000,136,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.dll
[2018/08/31 11:04:03 | 000,125,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptxml.dll
[2018/08/31 11:04:03 | 000,099,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptxml.dll
[2018/08/31 11:04:02 | 001,008,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.MixedRealityCapture.dll
[2018/08/31 11:04:02 | 000,868,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.MixedRealityCapture.dll
[2018/08/31 11:04:02 | 000,775,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2018/08/31 11:04:02 | 000,652,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certca.dll
[2018/08/31 11:04:02 | 000,596,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TileDataRepository.dll
[2018/08/31 11:04:02 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2018/08/31 11:04:02 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DscCore.dll
[2018/08/31 11:04:02 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certreq.exe
[2018/08/31 11:04:02 | 000,326,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnrollUI.dll
[2018/08/31 11:04:02 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnrollUI.dll
[2018/08/31 11:04:02 | 000,238,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsAuth.dll
[2018/08/31 11:04:02 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TtlsAuth.dll
[2018/08/31 11:04:02 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\updatepolicy.dll
[2018/08/31 11:04:02 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eShims.dll
[2018/08/31 11:04:02 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2018/08/31 11:04:02 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PackageInspector.exe
[2018/08/31 11:04:01 | 001,361,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSPhotography.dll
[2018/08/31 11:04:01 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2018/08/31 11:04:01 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TileDataRepository.dll
[2018/08/31 11:04:01 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GlobCollationHost.dll
[2018/08/31 11:04:01 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msIso.dll
[2018/08/31 11:04:01 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsExt.dll
[2018/08/31 11:04:01 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsCfg.dll
[2018/08/31 11:04:01 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXApplicabilityBlob.dll
[2018/08/31 11:04:01 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GlobCollationHost.dll
[2018/08/31 11:04:01 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeHelper.dll
[2018/08/31 11:04:01 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dinput.dll
[2018/08/31 11:04:01 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TtlsCfg.dll
[2018/08/31 11:04:01 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2018/08/31 11:04:01 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2018/08/31 11:04:01 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dinput.dll
[2018/08/31 11:04:01 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2018/08/31 11:04:01 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\updatepolicy.dll
[2018/08/31 11:04:01 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2018/08/31 11:04:01 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iemigplugin.dll
[2018/08/31 11:04:01 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnrollCtrl.exe
[2018/08/31 11:04:01 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnrollCtrl.exe
[2018/08/30 20:23:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Daemon Tools Images
[2018/08/27 22:57:32 | 001,546,752 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_18.30.dll
[2018/08/27 22:57:32 | 000,019,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\detoured.dll
[2018/08/27 22:57:32 | 000,019,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\detoured.dll
[2018/08/27 22:57:20 | 001,194,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxx.dll
[2018/08/27 22:57:20 | 000,180,600 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2018/08/27 22:57:20 | 000,157,048 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2018/08/27 17:51:46 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
[2018/08/27 10:17:58 | 000,164,168 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\amdihk64.dll
[2018/08/27 10:17:58 | 000,135,328 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\amdihk32.dll
[2018/08/23 22:39:19 | 000,000,000 | ---D | C] -- C:\LORENA
[2018/08/23 19:27:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2018/08/23 19:27:30 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2018/08/23 19:10:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
[2018/08/23 19:10:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TNod
[2018/08/23 19:09:46 | 000,000,000 | ---D | C] -- C:\Users\masu1\AppData\Roaming\ESET
[2018/08/23 19:09:46 | 000,000,000 | ---D | C] -- C:\Users\masu1\AppData\Local\ESET
[2018/08/23 19:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2018/08/23 17:29:42 | 001,471,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2018/08/23 16:28:48 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2018/08/23 16:28:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2018/08/23 16:28:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2018/08/23 16:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2018/08/23 16:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2018/08/23 16:28:18 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll
[2018/08/23 16:28:18 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2018/08/23 16:28:18 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2018/08/23 16:28:14 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll
[2018/08/23 16:28:14 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2018/08/23 16:28:14 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2018/08/23 16:26:28 | 000,000,000 | ---D | C] -- C:\Users\masu1\Desktop\LV
[2018/08/20 22:54:39 | 023,862,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Hydrogen.dll
[2018/08/20 22:54:32 | 019,525,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HologramCompositor.dll
[2018/08/20 22:54:30 | 008,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2018/08/20 22:54:29 | 007,057,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mos.dll
[2018/08/20 22:54:29 | 006,043,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2018/08/20 22:54:28 | 004,867,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2018/08/20 22:54:28 | 004,708,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.pcshell.dll
[2018/08/20 22:54:28 | 002,371,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2018/08/20 22:54:28 | 002,331,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2018/08/20 22:54:27 | 006,587,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2018/08/20 22:54:27 | 003,392,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2018/08/20 22:54:27 | 002,697,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Controls.dll
[2018/08/20 22:54:27 | 001,144,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll
[2018/08/20 22:54:26 | 006,813,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2018/08/20 22:54:26 | 001,143,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll
[2018/08/20 22:54:25 | 006,527,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2018/08/20 22:54:25 | 005,657,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2018/08/20 22:54:25 | 003,376,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetworkMobileSettings.dll
[2018/08/20 22:54:25 | 002,738,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2018/08/20 22:54:24 | 006,661,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2018/08/20 22:54:24 | 005,883,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mos.dll
[2018/08/20 22:54:24 | 004,770,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2018/08/20 22:54:24 | 004,559,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2018/08/20 22:54:24 | 001,825,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.CloudStore.dll
[2018/08/20 22:54:23 | 009,084,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BingMaps.dll
[2018/08/20 22:54:23 | 002,700,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2018/08/20 22:54:22 | 008,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2018/08/20 22:54:22 | 001,668,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdprt.dll
[2018/08/20 22:54:22 | 001,523,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2018/08/20 22:54:22 | 001,395,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TokenBroker.dll
[2018/08/20 22:54:21 | 004,331,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2018/08/20 22:54:21 | 002,258,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2018/08/20 22:54:21 | 001,627,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\enterprisecsps.dll
[2018/08/20 22:54:21 | 000,981,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2018/08/20 22:54:21 | 000,943,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BingOnlineServices.dll
[2018/08/20 22:54:21 | 000,681,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgrSvc.dll
[2018/08/20 22:54:21 | 000,613,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TextInputFramework.dll
[2018/08/20 22:54:20 | 003,381,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapRouter.dll
[2018/08/20 22:54:20 | 002,825,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapGeocoder.dll
[2018/08/20 22:54:20 | 002,563,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2018/08/20 22:54:20 | 002,535,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2018/08/20 22:54:20 | 001,946,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2018/08/20 22:54:20 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpasvc.dll
[2018/08/20 22:54:20 | 001,180,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2018/08/20 22:54:20 | 000,949,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll
[2018/08/20 22:54:20 | 000,916,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.Web.Core.dll
[2018/08/20 22:54:20 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TextInputFramework.dll
[2018/08/20 22:54:19 | 006,647,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BingMaps.dll
[2018/08/20 22:54:19 | 003,553,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2018/08/20 22:54:19 | 001,932,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgeangle.dll
[2018/08/20 22:54:19 | 001,559,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2018/08/20 22:54:19 | 001,304,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Vpn.dll
[2018/08/20 22:54:19 | 000,884,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NMAA.dll
[2018/08/20 22:54:19 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2018/08/20 22:54:19 | 000,760,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecurityHealthService.exe
[2018/08/20 22:54:19 | 000,566,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\daxexec.dll
[2018/08/20 22:54:18 | 007,987,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2018/08/20 22:54:18 | 004,049,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2018/08/20 22:54:18 | 001,469,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2018/08/20 22:54:18 | 001,457,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2018/08/20 22:54:18 | 001,225,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsStore.dll
[2018/08/20 22:54:18 | 001,127,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nettrace.dll
[2018/08/20 22:54:18 | 001,000,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TokenBroker.dll
[2018/08/20 22:54:18 | 000,884,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapControlCore.dll
[2018/08/20 22:54:18 | 000,713,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BingOnlineServices.dll
[2018/08/20 22:54:18 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2018/08/20 22:54:18 | 000,510,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\policymanager.dll
[2018/08/20 22:54:17 | 002,449,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapRouter.dll
[2018/08/20 22:54:17 | 001,773,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncProvider.dll
[2018/08/20 22:54:17 | 001,661,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2018/08/20 22:54:17 | 001,258,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2018/08/20 22:54:17 | 001,140,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2018/08/20 22:54:17 | 000,983,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2018/08/20 22:54:17 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PCPKsp.dll
[2018/08/20 22:54:17 | 000,743,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2018/08/20 22:54:17 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2018/08/20 22:54:17 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2018/08/20 22:54:17 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll
[2018/08/20 22:54:17 | 000,458,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cloudAP.dll
[2018/08/20 22:54:17 | 000,443,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\policymanager.dll
[2018/08/20 22:54:17 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provengine.dll
[2018/08/20 22:54:17 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provops.dll
[2018/08/20 22:54:16 | 001,986,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapGeocoder.dll
[2018/08/20 22:54:16 | 001,747,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpserverbase.dll
[2018/08/20 22:54:16 | 001,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpserverbase.dll
[2018/08/20 22:54:16 | 001,537,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActiveSyncProvider.dll
[2018/08/20 22:54:16 | 001,307,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSVPXENC.dll
[2018/08/20 22:54:16 | 000,993,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Vpn.dll
[2018/08/20 22:54:16 | 000,790,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontdrvhost.exe
[2018/08/20 22:54:16 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NMAA.dll
[2018/08/20 22:54:16 | 000,663,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontdrvhost.exe
[2018/08/20 22:54:16 | 000,621,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2018/08/20 22:54:16 | 000,561,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2018/08/20 22:54:16 | 000,530,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapConfiguration.dll
[2018/08/20 22:54:16 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\daxexec.dll
[2018/08/20 22:54:16 | 000,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WiFiDisplay.dll
[2018/08/20 22:54:16 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PushToInstall.dll
[2018/08/20 22:54:16 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.XamlHost.dll
[2018/08/20 22:54:15 | 001,295,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVPXENC.dll
[2018/08/20 22:54:15 | 001,124,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdprt.dll
[2018/08/20 22:54:15 | 000,796,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2018/08/20 22:54:15 | 000,761,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2018/08/20 22:54:15 | 000,755,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Core.TextInput.dll
[2018/08/20 22:54:15 | 000,636,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2018/08/20 22:54:15 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmenrollengine.dll
[2018/08/20 22:54:15 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2018/08/20 22:54:15 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmenrollengine.dll
[2018/08/20 22:54:15 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2018/08/20 22:54:15 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2018/08/20 22:54:15 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2018/08/20 22:54:15 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RasMediaManager.dll
[2018/08/20 22:54:15 | 000,228,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Ucx01000.sys
[2018/08/20 22:54:15 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.XamlHost.dll
[2018/08/20 22:54:15 | 000,115,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdnet.dll
[2018/08/20 22:54:15 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProvSysprep.dll
[2018/08/20 22:54:14 | 001,703,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Controls.dll
[2018/08/20 22:54:14 | 000,735,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2018/08/20 22:54:14 | 000,705,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapControlCore.dll
[2018/08/20 22:54:14 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cldflt.sys
[2018/08/20 22:54:14 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Search.ProtocolHandler.MAPI2.dll
[2018/08/20 22:54:14 | 000,392,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapConfiguration.dll
[2018/08/20 22:54:14 | 000,257,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WiFiDisplay.dll
[2018/08/20 22:54:14 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdmregistration.dll
[2018/08/20 22:54:14 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provisioningcsp.dll
[2018/08/20 22:54:14 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2018/08/20 22:54:14 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2018/08/20 22:54:14 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTimeUtil.dll
[2018/08/20 22:54:14 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2018/08/20 22:54:14 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WaaSAssessment.dll
[2018/08/20 22:54:14 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hlink.dll
[2018/08/20 22:54:14 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2018/08/20 22:54:14 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTimeUtil.dll
[2018/08/20 22:54:14 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EASPolicyManagerBrokerHost.exe
[2018/08/20 22:54:14 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EasPolicyManagerBrokerPS.dll
[2018/08/20 22:54:13 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2018/08/20 22:54:13 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Core.TextInput.dll
[2018/08/20 22:54:13 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpshell.exe
[2018/08/20 22:54:13 | 000,401,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2018/08/20 22:54:13 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpinit.exe
[2018/08/20 22:54:13 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Search.ProtocolHandler.MAPI2.dll
[2018/08/20 22:54:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\enrollmentapi.dll
[2018/08/20 22:54:13 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mdmregistration.dll
[2018/08/20 22:54:13 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2018/08/20 22:54:13 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\enrollmentapi.dll
[2018/08/20 22:54:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll
[2018/08/20 22:54:13 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2018/08/20 22:54:13 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgr.dll
[2018/08/20 22:54:13 | 000,046,592 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2018/08/20 22:54:13 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winshfhc.dll
[2018/08/20 22:54:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winshfhc.dll
[2018/08/19 22:00:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2018/08/19 21:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
[2018/08/19 21:52:30 | 007,436,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2018/08/19 21:52:21 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dosvc.dll
[2018/08/19 21:52:14 | 001,605,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2018/08/19 21:52:14 | 000,765,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2018/08/19 21:52:14 | 000,722,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2018/08/19 21:52:14 | 000,692,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2018/08/19 21:52:14 | 000,604,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\securekernel.exe
[2018/08/19 21:52:13 | 001,064,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2018/08/19 21:52:13 | 000,566,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2018/08/19 21:52:13 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\datamarketsvc.dll
[2018/08/19 21:52:13 | 000,072,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wldp.dll
[2018/08/19 21:52:12 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2018/08/19 21:52:12 | 000,128,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scmbus.sys
[2018/08/19 21:52:12 | 000,061,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvhostsvc.dll
[2018/08/19 21:52:12 | 000,061,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wldp.dll
[2018/08/19 21:52:11 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PCPKsp.dll
[2018/08/19 21:52:11 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhext.dll
[2018/08/19 21:52:11 | 000,183,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mavinject.exe
[2018/08/19 21:52:11 | 000,148,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mavinject.exe
[2018/08/19 21:52:11 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2018/08/19 21:52:11 | 000,094,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2018/08/19 21:52:11 | 000,075,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vpci.sys
[2018/08/19 21:52:11 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\winhvr.sys
[2018/08/19 21:52:11 | 000,031,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\winhv.sys
[2018/08/19 21:52:09 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OneCoreCommonProxyStub.dll
[2018/08/19 21:52:09 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\winnat.sys
[2018/08/19 21:52:08 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OneCoreCommonProxyStub.dll
[2018/08/19 21:52:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vmgid.sys
[2018/08/19 21:43:03 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[15 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2018/09/06 18:25:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\masu1\Desktop\OTL.exe
[2018/09/06 18:22:51 | 3434,872,832 | -HS- | M] () -- C:\hiberfil.sys
[2018/09/06 18:22:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2018/09/05 22:31:18 | 001,768,608 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2018/09/05 22:31:18 | 000,786,502 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
[2018/09/05 22:31:18 | 000,699,762 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2018/09/05 22:31:18 | 000,155,134 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
[2018/09/05 22:31:18 | 000,132,702 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2018/09/05 22:25:17 | 000,553,400 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2018/09/05 22:25:12 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2018/09/05 22:24:50 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\spu_storage.bin
[2018/09/05 20:52:08 | 000,002,281 | ---- | M] () -- C:\Users\Public\Desktop\Panda Dome.lnk
[2018/09/04 20:22:27 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job
[2018/09/04 17:45:25 | 000,000,085 | ---- | M] () -- C:\Windows\wininit.ini
[2018/09/03 00:27:44 | 000,061,624 | ---- | M] (EnigmaSoft Limited) -- C:\Windows\SysNative\drivers\EnigmaFileMonDriver.sys
[2018/09/02 22:55:26 | 007,567,568 | ---- | M] (Malwarebytes) -- C:\Users\masu1\Desktop\adwcleaner_7.2.3.exe
[2018/09/01 09:36:01 | 000,000,060 | ---- | M] () -- C:\ProgramData\SoftwareUpdateTemp.xml
[2018/08/27 22:57:32 | 001,546,752 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst_18.30.dll
[2018/08/27 22:57:32 | 000,570,880 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\Rapidfire64.dll
[2018/08/27 22:57:32 | 000,489,960 | ---- | M] () -- C:\Windows\SysNative\dgtrayicon.exe
[2018/08/27 22:57:32 | 000,481,768 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\Rapidfire.dll
[2018/08/27 22:57:32 | 000,477,160 | ---- | M] () -- C:\Windows\SysNative\GameManager64.dll
[2018/08/27 22:57:32 | 000,382,952 | ---- | M] () -- C:\Windows\SysWow64\GameManager32.dll
[2018/08/27 22:57:32 | 000,340,456 | ---- | M] () -- C:\Windows\SysNative\clinfo.exe
[2018/08/27 22:57:32 | 000,185,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\mantle64.dll
[2018/08/27 22:57:32 | 000,163,304 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\mantleaxl64.dll
[2018/08/27 22:57:32 | 000,154,112 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\mantle32.dll
[2018/08/27 22:57:32 | 000,139,240 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\mantleaxl32.dll
[2018/08/27 22:57:32 | 000,046,056 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\RapidFireServer64.dll
[2018/08/27 22:57:32 | 000,042,984 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\RapidFireServer.dll
[2018/08/27 22:57:32 | 000,019,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\detoured.dll
[2018/08/27 22:57:32 | 000,019,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\detoured.dll
[2018/08/27 22:57:28 | 003,471,376 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2018/08/27 22:57:26 | 003,437,632 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2018/08/27 22:57:24 | 000,161,144 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atisamu64.dll
[2018/08/27 22:57:24 | 000,138,888 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2018/08/27 22:57:24 | 000,138,104 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atisamu32.dll
[2018/08/27 22:57:24 | 000,126,328 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2018/08/27 22:57:24 | 000,115,488 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2018/08/27 22:57:22 | 000,752,504 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2018/08/27 22:57:22 | 000,434,032 | ---- | M] () -- C:\Windows\SysNative\atieah64.exe
[2018/08/27 22:57:22 | 000,352,120 | ---- | M] () -- C:\Windows\SysWow64\atieah32.exe
[2018/08/27 22:57:22 | 000,251,256 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2018/08/27 22:57:22 | 000,220,536 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2018/08/27 22:57:22 | 000,134,008 | ---- | M] () -- C:\Windows\SysNative\atidxx64.dll
[2018/08/27 22:57:22 | 000,114,040 | ---- | M] () -- C:\Windows\SysWow64\atidxx32.dll
[2018/08/27 22:57:20 | 003,722,104 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\amfrt64.dll
[2018/08/27 22:57:20 | 003,349,880 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\amfrt32.dll
[2018/08/27 22:57:20 | 001,630,584 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2018/08/27 22:57:20 | 001,194,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2018/08/27 22:57:20 | 001,194,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxx.dll
[2018/08/27 22:57:20 | 000,901,056 | ---- | M] () -- C:\Windows\SysWow64\atiapfxx.blb
[2018/08/27 22:57:20 | 000,901,056 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb
[2018/08/27 22:57:20 | 000,469,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atidemgy.dll
[2018/08/27 22:57:20 | 000,180,600 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2018/08/27 22:57:20 | 000,171,072 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2018/08/27 22:57:20 | 000,157,048 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2018/08/27 22:57:20 | 000,150,960 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2018/08/27 22:57:20 | 000,129,912 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdxc64.dll
[2018/08/27 22:57:20 | 000,110,968 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdxc32.dll
[2018/08/27 22:57:20 | 000,071,032 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ati2erec.dll
[2018/08/27 22:57:18 | 000,137,536 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2018/08/27 22:57:18 | 000,114,136 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2018/08/27 22:57:14 | 000,921,464 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\amdlvr64.dll
[2018/08/27 22:57:14 | 000,751,992 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\amdlvr32.dll
[2018/08/27 22:57:14 | 000,554,360 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdmcl64.dll
[2018/08/27 22:57:14 | 000,546,296 | ---- | M] () -- C:\Windows\SysNative\amdmiracast.dll
[2018/08/27 22:57:14 | 000,384,376 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdmcl32.dll
[2018/08/27 22:57:12 | 000,467,824 | ---- | M] () -- C:\Windows\SysNative\amdgfxinfo64.dll
[2018/08/27 22:57:12 | 000,381,304 | ---- | M] () -- C:\Windows\SysWow64\amdgfxinfo32.dll
[2018/08/27 22:57:12 | 000,199,304 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\amdhcp64.dll
[2018/08/27 22:57:12 | 000,173,856 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\amdhcp32.dll
[2018/08/27 22:57:12 | 000,144,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdave64.dll
[2018/08/27 22:57:12 | 000,125,520 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdave32.dll
[2018/08/27 10:17:58 | 000,164,168 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\amdihk64.dll
[2018/08/27 10:17:58 | 000,135,328 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\amdihk32.dll
[2018/08/20 23:22:33 | 000,000,638 | ---- | M] () -- C:\Windows\tasks\TrackerAutoUpdate.job
[2018/08/09 23:22:41 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2018/08/09 11:37:52 | 002,267,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystems64.dll
[2018/08/09 11:31:48 | 001,617,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2018/08/09 11:31:45 | 000,236,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll
[2018/08/09 11:31:31 | 000,253,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2018/08/09 11:31:28 | 000,766,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LicensingWinRT.dll
[2018/08/09 11:17:04 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iemigplugin.dll
[2018/08/09 11:14:32 | 000,326,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnrollUI.dll
[2018/08/09 11:14:23 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2018/08/09 11:14:09 | 000,466,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DscCore.dll
[2018/08/09 11:13:57 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsExt.dll
[2018/08/09 11:13:19 | 000,340,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AcGenral.dll
[2018/08/09 11:13:15 | 000,521,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2018/08/09 11:13:06 | 000,517,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certreq.exe
[2018/08/09 11:12:29 | 002,084,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2018/08/09 11:12:18 | 001,787,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wsp_health.dll
[2018/08/09 11:12:16 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2018/08/09 11:11:51 | 003,652,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2018/08/09 11:11:38 | 002,051,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wsp_fs.dll
[2018/08/09 11:11:33 | 001,364,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvruserservice.dll
[2018/08/09 11:11:15 | 000,615,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\resutils.dll
[2018/08/09 11:11:09 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeHelper.dll
[2018/08/09 11:11:07 | 001,004,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2018/08/09 11:10:53 | 000,836,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2018/08/09 11:10:51 | 001,557,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2018/08/09 11:10:13 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2018/08/09 11:09:48 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dinput8.dll
[2018/08/09 11:09:47 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dinput.dll
[2018/08/09 11:09:41 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PackageInspector.exe
[2018/08/09 11:09:37 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2018/08/09 10:38:20 | 001,538,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppVEntSubsystems32.dll
[2018/08/09 10:36:07 | 000,660,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\LicensingWinRT.dll
[2018/08/09 10:36:07 | 000,221,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\EditionUpgradeManagerObj.dll
[2018/08/09 10:24:16 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2018/08/09 10:23:32 | 000,291,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnrollUI.dll
[2018/08/09 10:23:06 | 001,308,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wsp_health.dll
[2018/08/09 10:22:50 | 000,429,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certreq.exe
[2018/08/09 10:22:31 | 001,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wsp_fs.dll
[2018/08/09 10:22:21 | 000,485,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2018/08/09 10:21:30 | 000,775,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2018/08/09 10:21:23 | 002,894,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2018/08/09 10:21:21 | 001,274,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2018/08/09 10:21:13 | 002,016,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2018/08/09 10:20:24 | 002,401,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AcGenral.dll
[2018/08/09 10:20:09 | 000,178,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dinput8.dll
[2018/08/09 10:20:07 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dinput.dll
[2018/08/09 10:19:55 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2018/08/09 08:34:48 | 001,008,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.MixedRealityCapture.dll
[2018/08/09 07:44:25 | 000,868,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.MixedRealityCapture.dll
[2018/08/09 07:02:08 | 001,035,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ApplyTrustOffline.exe
[2018/08/09 07:01:47 | 000,777,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pkeyhelper.dll
[2018/08/09 07:01:35 | 000,269,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave_secure.dll
[2018/08/09 07:01:25 | 000,272,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave.dll
[2018/08/09 06:55:57 | 000,077,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hvservice.sys
[2018/08/09 06:55:54 | 001,030,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2018/08/09 06:55:52 | 001,222,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2018/08/09 06:55:50 | 000,136,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.dll
[2018/08/09 06:55:43 | 000,568,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tcblaunch.exe
[2018/08/09 06:55:01 | 000,230,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2018/08/09 06:54:39 | 000,203,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll
[2018/08/09 06:54:11 | 001,019,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2018/08/09 06:54:04 | 007,519,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2018/08/09 06:53:57 | 009,092,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2018/08/09 06:53:51 | 001,097,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2018/08/09 06:53:50 | 001,947,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2018/08/09 06:53:50 | 000,714,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSVideoDSP.dll
[2018/08/09 06:53:49 | 000,932,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2018/08/09 06:53:46 | 000,125,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptxml.dll
[2018/08/09 06:53:45 | 000,887,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2018/08/09 06:53:39 | 000,482,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase_enclave.dll
[2018/08/09 06:53:39 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vertdll.dll
[2018/08/09 06:37:55 | 025,847,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2018/08/09 06:30:02 | 000,829,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2018/08/09 06:29:58 | 000,356,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\bcryptprimitives.dll
[2018/08/09 06:29:55 | 006,567,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2018/08/09 06:29:52 | 001,129,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2018/08/09 06:29:50 | 000,581,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVideoDSP.dll
[2018/08/09 06:29:39 | 000,099,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptxml.dll
[2018/08/09 06:29:38 | 000,567,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2018/08/09 06:29:37 | 001,174,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2018/08/09 06:28:56 | 001,589,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll
[2018/08/09 06:28:28 | 003,395,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2018/08/09 06:27:35 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\eShims.dll
[2018/08/09 06:27:08 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnrollCtrl.exe
[2018/08/09 06:27:00 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotification.exe
[2018/08/09 06:26:58 | 000,209,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXApplicabilityBlob.dll
[2018/08/09 06:26:24 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsCfg.dll
[2018/08/09 06:26:18 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotificationUx.exe
[2018/08/09 06:26:11 | 000,238,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TtlsAuth.dll
[2018/08/09 06:26:08 | 007,577,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2018/08/09 06:26:08 | 000,572,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.UX.EapRequestHandler.dll
[2018/08/09 06:26:01 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2018/08/09 06:25:58 | 004,380,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeContent.dll
[2018/08/09 06:25:45 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certca.dll
[2018/08/09 06:25:44 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\updatepolicy.dll
[2018/08/09 06:25:36 | 000,898,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MusUpdateHandlers.dll
[2018/08/09 06:25:27 | 000,894,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\webplatstorageserver.dll
[2018/08/09 06:25:26 | 003,320,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2018/08/09 06:25:15 | 000,460,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2018/08/09 06:25:14 | 000,392,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WaaSMedicSvc.dll
[2018/08/09 06:25:04 | 000,596,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TileDataRepository.dll
[2018/08/09 06:25:00 | 000,898,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2018/08/09 06:24:53 | 000,808,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeManager.dll
[2018/08/09 06:24:48 | 002,368,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WebRuntimeManager.dll
[2018/08/09 06:24:07 | 001,708,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSPhotography.dll
[2018/08/09 06:24:03 | 001,535,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2018/08/09 06:23:31 | 003,148,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2018/08/09 06:23:11 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2018/08/09 06:23:09 | 002,172,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2018/08/09 06:22:58 | 001,551,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2018/08/09 06:22:51 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\GlobCollationHost.dll
[2018/08/09 06:22:50 | 022,007,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2018/08/09 06:22:02 | 002,236,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2018/08/09 06:22:02 | 001,586,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2018/08/09 06:22:02 | 000,600,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\updatehandlers.dll
[2018/08/09 06:21:53 | 001,375,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\usocore.dll
[2018/08/09 06:21:34 | 000,505,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgeIso.dll
[2018/08/09 06:13:48 | 001,189,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll
[2018/08/09 06:13:21 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnrollCtrl.exe
[2018/08/09 06:13:11 | 000,608,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\EdgeManager.dll
[2018/08/09 06:12:38 | 001,361,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSPhotography.dll
[2018/08/09 06:12:21 | 000,652,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certca.dll
[2018/08/09 06:11:57 | 002,900,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2018/08/09 06:11:56 | 000,331,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgeIso.dll
[2018/08/09 06:11:51 | 005,777,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2018/08/09 06:11:39 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\updatepolicy.dll
[2018/08/09 06:11:37 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TileDataRepository.dll
[2018/08/09 06:11:30 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TtlsAuth.dll
[2018/08/09 06:11:11 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TtlsCfg.dll
[2018/08/09 06:11:09 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2018/08/09 06:11:03 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2018/08/09 06:10:46 | 000,835,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2018/08/09 06:10:27 | 002,893,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2018/08/09 06:10:17 | 000,251,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msIso.dll
[2018/08/09 06:10:15 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2018/08/09 06:09:39 | 001,466,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2018/08/09 06:08:22 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\GlobCollationHost.dll
[2018/08/09 05:08:27 | 000,001,314 | ---- | M] () -- C:\Windows\SysNative\tcbres.wim
[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[15 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2018/09/05 20:51:09 | 000,002,298 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
[2018/09/05 20:51:09 | 000,002,281 | ---- | C] () -- C:\Users\Public\Desktop\Panda Dome.lnk
[2018/09/04 17:45:21 | 000,000,085 | ---- | C] () -- C:\Windows\wininit.ini
[2018/09/03 18:32:46 | 000,000,214 | ---- | C] () -- C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job
[2018/08/31 11:04:01 | 000,001,314 | ---- | C] () -- C:\Windows\SysNative\tcbres.wim
[2018/08/23 19:01:13 | 001,874,938 | ---- | C] () -- C:\Users\masu1\Desktop\TNod-1.6.4-final-setup.rar
[2018/08/23 19:01:05 | 095,140,864 | R--- | C] () -- C:\Users\masu1\Desktop\00b-esetx64es.msi
[2018/08/19 21:59:56 | 000,002,443 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
[2018/08/09 23:22:41 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2018/07/19 17:47:19 | 000,000,060 | ---- | C] () -- C:\ProgramData\SoftwareUpdateTemp.xml
[2018/07/06 15:42:19 | 000,000,033 | ---- | C] () -- C:\Users\masu1\AppData\Roaming\AdobeWLCMCache.dat
[2018/06/21 17:38:35 | 002,841,312 | ---- | C] () -- C:\Windows\SysWow64\Windows.Mirage.dll
[2018/06/21 17:38:20 | 000,018,716 | ---- | C] () -- C:\Windows\SysWow64\srms-apr.dat
[2018/06/20 22:02:24 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2018/06/20 21:58:22 | 000,232,248 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-999-0-0-0.exe
[2018/06/20 21:58:22 | 000,232,248 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2018/06/20 21:58:08 | 000,833,848 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-999-0-0-0.dll
[2018/06/20 21:58:08 | 000,833,848 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1.dll
[2018/04/12 01:38:34 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2018/04/12 01:38:34 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2018/04/12 01:35:13 | 000,034,304 | ---- | C] () -- C:\Windows\SysWow64\vmstaging.dll
[2018/04/12 01:34:55 | 000,518,144 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2018/04/12 01:34:50 | 000,054,272 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2018/04/12 01:34:49 | 000,002,404 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2018/04/12 01:34:47 | 000,364,200 | ---- | C] () -- C:\Windows\SysWow64\InputHost.dll
[2018/04/12 01:34:46 | 003,575,808 | ---- | C] () -- C:\Windows\SysWow64\Windows.UI.Input.Inking.Analysis.dll
[2018/04/12 01:34:46 | 000,025,600 | ---- | C] () -- C:\Windows\SysWow64\Windows.WARP.JITService.exe
[2018/04/12 01:34:45 | 000,329,216 | ---- | C] () -- C:\Windows\SysWow64\ssdm.dll
[2018/04/12 01:34:45 | 000,223,232 | ---- | C] () -- C:\Windows\SysWow64\HeatCore.dll
[2018/04/12 01:34:45 | 000,167,640 | ---- | C] () -- C:\Windows\SysWow64\chs_singlechar_pinyin.dat
[2018/04/12 01:34:45 | 000,111,616 | ---- | C] () -- C:\Windows\SysWow64\WindowsDefaultHeatProcessor.dll
[2018/04/12 01:34:45 | 000,055,808 | ---- | C] () -- C:\Windows\SysWow64\xboxgipsynthetic.dll
[2018/04/12 01:34:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2018/04/12 01:34:30 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2018/03/02 04:04:08 | 000,828,216 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-1-1-70-0.dll
[2018/03/02 04:03:58 | 000,575,800 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-1-1-70-0.exe
[2017/10/13 10:24:22 | 000,250,784 | ---- | C] () -- C:\Windows\SysWow64\hsa-thunk.dll
[2017/10/13 10:24:14 | 000,382,952 | ---- | C] () -- C:\Windows\SysWow64\GameManager32.dll
[2017/10/13 10:23:06 | 000,352,120 | ---- | C] () -- C:\Windows\SysWow64\atieah32.exe
[2017/10/13 10:23:02 | 000,114,040 | ---- | C] () -- C:\Windows\SysWow64\atidxx32.dll
[2017/10/13 10:21:02 | 000,381,304 | ---- | C] () -- C:\Windows\SysWow64\amdgfxinfo32.dll
[2017/04/25 00:55:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2017/04/25 00:55:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2018/08/03 05:39:13 | 007,436,120 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2018/08/03 05:26:02 | 006,043,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2018/04/12 01:34:40 | 000,973,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2018/04/12 01:34:55 | 000,785,408 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2018/04/12 01:34:40 | 000,524,288 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >
 

jbex

El que peca y reza empata
Administrador
Échale un ojo a esta carpeta C:\MASU-PC
No veo nada malo (apenas veo ya), mañana si tengo otro rato repaso, pero ya te digo no veo nada malo.
Un saludo
 

jbex

El que peca y reza empata
Administrador
Deja una sola suit de seguridad Eset o Panda, las dos a la vez te van a dar mas problemas que soluciones. Podrías tener las dos siempre que una este desactivada e inicie bajo demanda.
Por lo demás no veo nada raro, si el equipo te va bien coméntalo para poder por solucionado el tema.
Un saludo
 
Estado
Cerrado para nuevas respuestas
Arriba Pie