Muy buenas a ver como podria explicarme bien sin aburrir ni dejar un “quijote”… Empezare por el principio, a pesar de la alerta del antivirus ejecute un exe infectado, y para colmo no se decir que troyano me infecto, a partir de ahi, comenzo una odisea que aun no ha terminado, tengo dos ssds, uno de 500G para el SO y otro de 250G para almacenar musica ya que me apasiona mezclar musica de los 90… Evidentemente he formateado el disco dedicado al SO, primero hice un pendrive con la herramienta windows media creation tool, con lo que se descarga la ultima version de W10, uso una licencia generica, y recien formtateado tengo 30 dias para probarlo. Cuando empiezo a investigar en el visor de eventos y en las tareas programadas, y tb en los archivos ocultos, tengo serias razones para creer que no me he desecho del maldito troyano, virus, malware o lo que narices sea…

Ejemplos…quizas ya sea todo paranoias mias:

El visor de eventos registra eventos antes de terminar la instalacion, es decir nada mas terminar la instalacion limpia voy al visor de eventos y ya tengo un monton de registros, muchos muy sospechosos, como que unos programas modifican a otros o crean procesos y cierran o inhabilitan otros, EL programador de tareas tb tiene muchas entradas que me resultan sospechosas, del tipo El usuario “NT AUTHORITY\System” eliminó la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” del Programador de tareas y le sigue esta: El usuario “WORKGROUP\DESKTOP-L8CQ3VO$” registró la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” en el Programador de tareas y esta: El usuario “WORKGROUP\DESKTOP-L8CQ3VO$” actualizó la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” del Programador de tareas

El usuario “NT AUTHORITY\System” eliminó la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” del Programador de tareas

El usuario “WORKGROUP\DESKTOP-L8CQ3VO$” registró la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” en el Programador de tareas El usuario “WORKGROUP\DESKTOP-L8CQ3VO$” actualizó la tarea “\Microsoft\Windows\Windows Defender\Windows Defender Verification” del Programador de tareas

Y eso solo en el Wdefender, que si me pongo con temas de certificados y credenciales me vuelvo loco, es decir tareas contradictorias en la verificacion de credenciales y certificados, del tipo, esta tarea anulo esta otra y creo una nueva. Con el firewall hay entradas que no se si corresponden, y ademas de quitar todo todo lo que he podido relacionado con la asistencia remota y carpetas de trabajo y relacionadas con comopartir…(me refiero a servicios, aplicaciones y programas ) siguen saliendo un monton de habilitaciones en el firewall para permitir asistencia remota y compartir archivos, incluso de vez en cuando veo al abrir el explorador de archivos, en cualquier carpeta en el marco en la parte de abajo un icono con dos personitas y dice estado:compartido… Esto es parte de lo que me hace pensar en la conspiracion maxima…no se si ni siquiera exixtira algun virus malware o maldita cosa que pudiera modificar todo el sistema operativo desde el mismo comienzo de la instalacion, o inmediatamente despues de finalizarla(pero antes de darla como operativa para mi) y consiguiera que cualquier cosa que quiera instalar bien sean antivirus, o incluso navegadores esten modificados para provecho de un tercero…por ejemplo aunque se que el navegador brave se basa en chrome no recuerdo que dentro dela carpeta de brave haya una que ponga chrome…y tampoco que al brave se instale tanto en archivos de programa, como en archivos de programa(x86) Por supuesto he pasado varios antivirus tanto en modo normal como en modo seguro con funciones de red y nunca da nada positivo, tampoco encuentro relentizado mi ordenador, pero estoy muy preocupado por todos los inidcios que veo… Agradeceria cualquier aporte y si alguien quiere conectar conmigo y hacemos una comparacion de archivos y registros con un w10 recien instalado estoy dispuesto a volver a formatear… Por cierto que pensando que el malware pudiera haberse metido en el pendrive que prepare para windows, queme un dvd intentado evitar un posible modificacion del soft en medio fisico…los dos los hice desde otro ordenador para evitar la infeccion…

En fin no se que mas contar ahora mismo pero aqui estoy para que me masacreis a preguntas peticiones de detalles, logs…o lo que sea…he hecho hasta un formateo de bajo nivel…ya no se que hacer de verdad… Muchas gracias!!! Edito: Viendo las diferecias entre las caracteristicas de las distintas versiones de windows(yo tengo puesto el W10 pro) veo que muchas funcionalidades que no quiero se deben al tener la version pro, asi que por lo pronto me voy a pasar a la version home, que para un usuario normal como yo creo que deberia ser suficiente…si quereis aconsejarme en este sentido tardare un ratito en volver a formatear, y pasar a la version home, decir que soy usuario normal, aunque trasteo muchisimo a la par que aprendo, no soy informatico ni programo ni nada de esas cosas… Gracias de nuevo

Buenas de nuevo, he instalado W10 home y he pasado la herramienta dism primero y despues sfc, y el resultado ha sido correcto ya que dism dice haber reparado los errores pero al ejecutar despues sfc sale una lista interminable de erores …aunque siempre parecen reparados…pero me da que no…no se si puedo poner los logs aqui a ver si encuentro info sobre eso, creo que lei algo en las nmormas pero ahora no recuerdo exactamente la condicion, si lo tenia que pedir un colaborador o podia aportarlo por mi cuenta… Lo que si creo que puedo poner es lo acontecido en la ventana de cmd y es que parece que se soluciona todos los errores, ya que al ejecutar un segundo escaneo con sfc dice que no encuentra errores…

(c) Microsoft Corporation. Todos los derechos reservados.

C:\Windows\system32>DISM.exe /Online /Cleanup-image /Restorehealth

Herramienta Administración y mantenimiento de imágenes de implementación
Versión: 10.0.19041.844

Versión de imagen: 10.0.19043.1202

[==========================100.0%==========================] La operación de restauración finalizó correctamente.
La operación se completó correctamente.

C:\Windows\system32>sfc /scannow

Iniciando examen en el sistema. Este proceso tardará algún tiempo.

Iniciando la fase de comprobación del examen del sistema.
Se completó la comprobación de 100%.

Protección de recursos de Windows encontró archivos dañados y los reparó correctamente.
Para las reparaciones en línea, los detalles se encuentran en el archivo de registro de CBS ubicado en
windir\Logs\CBS\CBS.log. Por ejemplo, C:\Windows\Logs\CBS\CBS.log. Para las reparaciones
sin conexión, los detalles se encuentran en el archivo de registro que proporciona la marca /OFFLOGFILE.

C:\Windows\system32>sfc /scannow

Iniciando examen en el sistema. Este proceso tardará algún tiempo.

Iniciando la fase de comprobación del examen del sistema.
Se completó la comprobación de 100%.

Protección de recursos de Windows no encontró ninguna infracción
de integridad.

C:\Windows\system32````

Nadie me puede ayudar?? aunque sea para decirme que soy un paranoico…saludos!!

Hola @GuilleWylly y bienvenido al foro Te dejo algunos temas de interés y utilidad:

• ¡Bienvenidos! Primeros pasos en el Foro de InfoSpyware
• Preguntas frecuentes de cómo utilizar el foro
• Reglas del Foro
• ¿Como Pegar Reportes en el Foro?

Comentarte quete has auto respondido, al hacer tu tema podría pasar desapercibido ya que la gente pensará que estas siendo ayudado. Además que debemos tener paciencia a la hora de publicar ya que este es un foro de ayuda voluntaria y los que ayudamos aquí es en tiempo libre y no como trabajo.

En el visor de eventos siempre vas a encontrar registradas muchas cosas pero usualmente estas se quedan por detrás y cuando surge un problema es donde podemos consultar para resolver un problema. No es conveniente hacerlo al revés. Adicional a que difícilmente encontrarás rastros de actividades de malware , los únicos escenarios sería que la infección este funcionando mal y deje errores que no prevee o que no sea capaz de borrar; en caso de presentar errores también sería común encontrar mensajes de error.

Por lo demás nada de lo que has mencionado me da indicios de infección.

De haber algo que intentase hacer eso estarías recibiendo una cantidad enorme de errores y pantallazos azules.

Si algo así pasara el antivirus mismo te lo informaría o de igual forma no arrancaría y estaría plagado de errores al intentar hacerlo.

Sería dudoso, lo más que podemos pensar es que la instalación tuviese algo pero eso sería solo si la descargaste de un sitio poco seguro. Me imagino que usaste la imagen de Windows oficial, por lo que es algo descartable.

Ahora de las comprobaciones sería dificil opinar a grandes rasgos ya que al hacer el segundo SC scannnow, el primero donde encontro infracciones queda borrado. Pero igual no le haria mucho caso. Estas reparaciones son de un rango muy grande y pueden incluso ser de modificaciones de algún software o diferencias entre versiones (la diferencia entre la versión que tienes instalada en contraste de las actualizaciones).

Para que realmente podamos considerar un problema es que debes de tener síntomas. Que no necesariamente serán causados por malware.

Por otro lado si sigues trastocando demasiado un sistema que no pretendas formatear lo único que terminarás haciendo es dañandolo y orillando a que tengas que formatear.

Saludos

Muchisimas Gracias por todas y cada una de las respuestas, Habia leido los post que comentas al principio, antes de postear y creo haberlo hecho bien, si he fallado en algo concreto te rogaria me lo hicieses saber…

Me quedo mucho mas tranaquilo y andare con mas cuidado para no reinfectarme, lo de pasar a Whome de momento ha sifdo un acierto ya que tiene menos cosas y aunque no tengo un hardware que no pudiese con el W10 pro…ahora veo menos procesos(pocos) pero veo menos cosas que me puedan confundir,

Pase la herremienta de windows para eliminar malware, no recuerdo ahora el nombre MST…o algo asi Me detecto un malware llamadao:

VirTool:Win32/DefenderTamperingRestore

El tema es que aunque se supone que lo elimina vuelve a aparecer al poco tiempo en el escaneo, no en el mismo dia o sesion pero siempre vuelve…seria preocupante??? No he encontrado mucha info respecto a este malware…Al abrir el informe me manda a la web de microsoft, dice que se trata de una subconfiguracion que puede hacer que el defender no funcione correctamente, de hecho defender no lo detecta…y es un poco extraño pero no pone nada mas, las pestañas de “que hacer ahora” “informacion tecnica” y “sintomas” no se despliegan al clicar en la web de microsoft…me tiene un poco mosca que vuelva como el turron…pero antes de navidad… Gracias

Hola nuevamente,

Para ver más a detalle habría que ver el reporte, el reporte de Malicious Software Removal Tool (MRT.exe) debería guardarse en la siguiente ruta (puedes copiar y pegar en el explorador de Windows o desde notepad en la parte de abrir):

%WinDir%\Debug\mrt.log

Aunque si en principio fue eliminada y no re-aparece igual no habría que preocuparse y menos sin síntomas. En general para un escenario sin síntomas aparentes, sería más preocupante que te muestren un ejecutable desconocido o que re-aparezca.

Saludos

Buenas de nuevo, estaba haciendo un escaneo profundo y detecto 11 infecciones, hasta ahora solo salia una, lo he tenido que abortar…para poder darte un log, he hecho un scan rapido y te lo pongo a continuacion, tb te pongo un reportre anterior, lo que yo veo es que solo borra claves de registro, no encentra archivos como tal,

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.536.0)
Started On Wed Sep 15 22:04:50 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Quick Scan Results:
-------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
  Action: Remove, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Wed Sep 15 22:11:20 2021


Return code: 6 (0x6)

Un segundo reporte algo mas extenso…

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.439.0)
Started On Fri Sep 10 01:09:35 2021

Engine: 1.1.18500.10
Signatures: 1.349.439.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Results Summary:
----------------
No infection found.
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Fri Sep 10 01:11:12 2021


Return code: 0 (0x0)
d 1.349.439.0)
Started On Fri Sep 10 01:10:46 2021

Engine: 1.1.18500.10
Signatures: 1.349.439.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Full Scan Results:
------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
  Action: Remove, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Fri Sep 10 01:51:33 2021


Return code: 6 (0x6)

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.536.0)
Started On Sat Sep 11 14:36:51 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Quick Scan Results:
-------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
  Action: Remove, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Sat Sep 11 14:54:34 2021


Return code: 6 (0x6)
ner v1.349, (build 1.349.536.0)
Started On Sat Sep 11 14:54:11 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Results Summary:
----------------
No infection found.
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Sat Sep 11 15:42:22 2021


Return code: 0 (0x0)

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.536.0)
Started On Mon Sep 13 18:42:47 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Quick Scan Results:
-------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
  Action: Remove, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Mon Sep 13 18:52:40 2021


Return code: 6 (0x6)

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.536.0)
Started On Tue Sep 14 15:53:22 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Quick Scan Results:
-------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
  Action: Remove, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Tue Sep 14 16:01:01 2021


Return code: 6 (0x6)

---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.349, (build 1.349.536.0)
Started On Wed Sep 15 20:51:31 2021

Engine: 1.1.18500.10
Signatures: 1.349.536.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Full Scan Results:
------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore, not removed.
  Action: NoAction, Result: 0x00000000
    regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
        SigSeq: 0x0000055555C57273

Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore, not removed.
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Wed Sep 15 22:03:45 2021


Return code: 7 (0x7)

Fui al registro de windows y busque la ruta

reg1406×648 136 KB

de ahi acudi a la carpeta de epplmanifest, y al abrir el archivo me encontre esto que no se si servira de algo,

$       5<ßqàRŒqàRŒqàRŒe‹­ŒpàRŒe‹PpàRŒRichqàRŒPE  d† u®’¥        ð "                     €         
   
   
        0    Òý  `                                                        	           "             8                                                                           .rdata  °                        @  @.rsrc    	      
                @  @    u®’¥    
   T   8  8      u®’¥       $   Œ  Œ         8   .rdata  8  x   .rdata$zzzdbg       à  .rsrc$01    à3  Àõ
 .rsrc$02        ¡yéQwÜQßswòªTs¥!éAgmH`æTc;u®’¥                                                                                                                                                                                                                                                                                                                                                              Ð €@  €È €X  €À €˜  €   ¸  €   X €   ¸ €                  Ð €               È   è €É     €Ò    €Ó   0 €Ô   H €Õ   ` €               Ða  x €Ña   €              R    ¨ €   À €   Ø €   ð €    €     €a   8 €   P €	   h €
   € €   ˜ €   ° €
   È €   à €   ø €    €   ( €   @ €   X €   p €   ˆ €     €   ¸ €   Ð €   è €    a €e   a €   0a €   Ha €   `a €   xa €    a €!   ¨a €"   Àa €#   Øa €$   ða €%    €&     €'   8 €(   P €)   h €*   € €+   ˜ €,   ° €-   È €.   à €/   ø €0   	 €1   (	 €2   @	 €3   X	 €4   p	 €5   ˆ	 €6    	 €7   ¸	 €8   Ð	 €9   è	 €:    
 €;   
 €<   0
 €=   H
 €>   `
 €?   x
 €@   
 €A   ¨
 €B   À
 €C   Ø
 €D   ð
 €E    €F     €G   8 €H   P €I   h €J   € €K   ˜ €L   ° €M   È €N   à €O   ø €P    €Q   ( €R   @ €              
 d   X €e   p €f   ˆ €g     €o   ¸ €p   Ð €q   è €r    
 €s   
 €t   0
 €                  H
 €               	  `
                 	  p
                 	  €
                 	  
                 	   
                 	  °
                 	  À
                 	  Ð
                 	  à
                 	  ð
                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °                 	  À                 	  Ð                 	  à                 	  ð                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °                 	  À                 	  Ð                 	  à                 	  ð                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °                 	  À                 	  Ð                 	  à                 	  ð                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °                 	  À                 	  Ð                 	  à                 	  ð                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °                 	  À                 	  Ð                 	  à                 	  ð                 	                    	                   	                    	  0                 	  @                 	  P                 	  `                 	  p                 	  €                 	                   	                    	  °  À( à           Øê
 Ã           á
 Ö	          €ü
 Ž           î
 à
          ð É           à          °7  {M          0…  :          p¤  
          €ª  ¨p          (e èN          j (2          8œ ¨          ภ(          Í ¨          °Ù Ha          øà (           æ h           ê 7          X𠨔           … èg          èì (B          / ¨%          ¸T h           o ¨          È ˆ	          P‰ ¸           h          • 7          @  ¨”          è4 èg          Ðœ (B          øÞ ¨%            h           ¨          °/ ˆ	          89 ¸          ð? h          ðD ¼a          °L ¨”          Xá èg          @I (B          h‹ ¨%          ± h          xË ¨           Ü ˆ	          ¨å ¸          `ì h          `ñ h          Èõ ¸          €ü ˆ	          a ¨          °a h          1a ¨%          ÀVa (B          P™a h          ¸a ¸          p¤a ˆ	          ø­a ¨           ¾a h          Ùa ¨%          °þa (B          @A (B          hƒ h          Ї ¸          ˆŽ ˆ	          ˜ ¨          ¸¨ h           à ¨%          0é h          ˜í ¸          Pô ˆ	          Øý ¨          €	 h          è(	 ¨%          N	 (B           ‘	 h          ˆ•	 ¸          @œ	 ˆ	          È¥	 ¨          p¶	 h          ØÐ	 ¨%          €ö	 (B          9
 h          x=
 ¸          0D
 ˆ	          ¸M
 ¨          `^
 h          Èx
 ¨%          pž
 (B          ˆé ’           p” ’           XD ’           Èð ’           è˜a h           Ø@ h           Èè h           ¸	 h           ¨8
 h           ˜à
 h           à3  Ì           X M L  P N G  M U I         Ì4   V S _ V E R S I O N _ I N F O     ½ïþ      @sa   @sa?                        ,   S t r i n g F i l e I n f o      0 4 0 9 0 4 B 0   L   C o m p a n y N a m e     M i c r o s o f t   C o r p o r a t i o n   ‚ -  F i l e D e s c r i p t i o n     U s e r   I n t e r f a c e   C u s t o m i z a t i o n   R e s o u r c e   M o d u l e     n '  F i l e V e r s i o n     4 . 1 8 . 1 9 0 7 . 1 6 3 8 4   ( W i n B u i l d . 1 6 0 1 0 1 . 0 8 0 0 )     8   I n t e r n a l N a m e   E p p M a n i f e s t   € .  L e g a l C o p y r i g h t   ©   M i c r o s o f t   C o r p o r a t i o n .   A l l   r i g h t s   r e s e r v e d .   H   O r i g i n a l F i l e n a m e   E p p M a n i f e s t . d l l   j %  P r o d u c t N a m e     M i c r o s o f t ®   W i n d o w s ®   O p e r a t i n g   S y s t e m     D   P r o d u c t V e r s i o n   4 . 1 8 . 1 9 0 7 . 1 6 3 8 4   D    V a r F i l e I n f o     $    T r a n s l a t i o n     	°    <?xml version="1.0" encoding="utf-8"?>
<root xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="..\..\XMLFile.xsd">
    <Features>
        <Feature name="WGA"                                 value="0" />
        <Feature name="DefaultSqmOptIn"                     value="0" />
        <Feature name="DefaultEnableFirewall"               value="0" />
        <Feature name="ShowSetupAutoSampleSubmitOptIn"      value="0" />
        <Feature name="AutomaticUpdateAction"               value="1" />
        <Feature name="CallistoSupported"                   value="1" />
        <Feature name="EnableManagement"                    value="0" />
        <Feature name="EnableFirewallManagement"            value="0" />
        <Feature name="EnableSetupOnWin8WithDefender"       value="1" />
        <Feature name="EnableRtfHelp"                       value="0" />
        <Feature name="EnableViewLicense"                   value="1" />
        <Feature name="EnableOOBEWizard"                    value="0" />
        <Feature name="ExitOnCloseUI"                       value="1" />

        <!-- Config* flags below are used to allow/prevent the configuration of 
             certain AM configuration values. If set to 1, the default value 
             will be used. If set to 0, *no* registry configuration will be 
             added for the parameter. -->
        <Feature name="ConfigSpyNetOptIn"                   value="1" />
        <Feature name="ConfigSpyNetOptInOnInstall"          value="0" />
        <Feature name="ConfigScanScheduleDay"               value="1" />

        <!--Help Menu items-->
        <Feature name="EnableMenuCommunity"                 value="1" />
        <Feature name="EnableMenuWhatsNew"                  value="1" />
        <Feature name="EnableMenuOffLineHelp"               value="0" />
        <Feature name="EnableMenuSampleSubmission"          value="1" />
        <Feature name="EnableMenuViewPrivacy"               value="0" />
        <Feature name="EnableMenuViewLicense"               value="0" />
        <Feature name="EnableMenuTelemetrySettings"         value="0" />
        <Feature name="EnableMenuCheckUpdate"               value="0" />

        <!--About Dialog-->
        <Feature name="EnableAboutViewMoreInfo"             value="1"/>
        <Feature name="EnableAboutViewLicense"              value="0"/>

        <!--Setting host pannel-->
        <Feature name="ShowSettingsTab"                     value="0" />
        <Feature name="EnableSettingScheduleScan"           value="0" />
        <Feature name="EnableSettingDefaultAction"          value="0" />
        <Feature name="EnableSettingRTP"                    value="0" />
        <Feature name="EnableSettingExcludeFiles"           value="0" />
        <Feature name="EnableSettingExcludeType"            value="0" />
        <Feature name="EnableSettingExcludeProcess"         value="0" />
        <Feature name="EnableSettingAdvance"                value="0" />
        <Feature name="EnableSettingSpyNet"                 value="0" />
        <Feature name="EnableSettingAdmin"                  value="0" />

        <!--RTP settings pannel-->
        <Feature name="ShowRTPOptions"                      value="0" />

        <!--Advanced settings panel-->
        <Feature name="ShowAutoSubmitSamples"               value="1" />

        <!--Status pannel-->
        <Feature name="ShowScanSchedule"                    value="0" />
        <Feature name="ShowRtpStatus"                       value="1" />
        <Feature name="ShowRedOnRtpOff"                     value="1" />

        <!--MpWinMain-->
        <Feature name="GetLanguageFromRegistry"             value="0" />

        <!--Scan progress-->
        <Feature name="ShowScanItemPath"                    value="0" />

        <!--Systray icon and toasts-->
        <Feature name="ShowSysTrayIcon"                     value="1" />
        <Feature name="ShowNotificationToast"               value="1" />
        <Feature name="ShowAccountCompromiseMalwareToast"   value="1" />
    </Features>

    <BrandedValues>
        <BrandedValue name="SignatureUpdateFrequency"       value="24" />
        <BrandedValue name="TelemetryReportRate"            value="100" />
        <BrandedValue name="EvaluationPeriod"               value="0" />
        <BrandedValue name="BrandId"                        value="1" />
        <!--the following time 
in seconds-->
        <BrandedValue name="NotifierThrottlingInterval"     value="1200" />
    </BrandedValues>

    <BrandedStrings>
        <BrandedString name="BrandName"                     value="Microsoft Defender" />
        <BrandedString name="ShortBrandName"                value="Microsoft Defender" />
        <BrandedString name="InternalBrandName"             value="Microsoft Defender" />
        <BrandedString name="PrivacyLink"                   value="https://go.microsoft.com/fwlink/?LinkId=190175"/>
        <BrandedString name="ThresholdPlusPrivacyLink"      value="https://go.microsoft.com/fwlink/?LinkId=521839"/>
        <BrandedString name="AMSignatureDownloadGUID"       value="6b9e8b26-8f50-44b9-94c6-7846084383ec"/>
        <BrandedString name="AMSKUID"                       value="WGA"/>
        <BrandedString name="SignatureUpdateFallbackOrder"  value="MicrosoftUpdateServer|MMPC"/>
        <BrandedString name="UIInstanceGuid"                value="77BDAF73-B396-481F-9042-AD358843EC24"/>
        <BrandedString name="URL_About"                     value="https://go.microsoft.com/fwlink/?LinkId=52661"/>
        <BrandedString name="URL_SampleSubmission"          value="https://go.microsoft.com/fwlink/?linkid=144006"/>
        <BrandedString name="URL_Community"                 value="https://go.microsoft.com/fwlink/?LinkId=532389"/>
        <BrandedString name="URL_WhatsNew"                  value="https://go.microsoft.com/fwlink/?LinkId=787621"/>
        <BrandedString name="URL_ValidateGenuine"           value="https://go.microsoft.com/fwlink/?linkid=62022"/>
        <BrandedString name="URL_GetGenuine"                value="https://go.microsoft.com/fwlink/?LinkId=33171"/>
        <BrandedString name="URL_TrheatInfo"                value="https://go.microsoft.com/fwlink/?linkid=142185"/>
        <BrandedString name="URL_OnlineHelp"                value="https://go.microsoft.com/fwlink/?LinkId=532389"/>
        <BrandedString name="URL_OnlineHelp_Error"          value="https://go.microsoft.com/fwlink/?LinkId=532389"/>
        <BrandedString name="URL_OnlineHelp_RTP"            value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_OnlineHelp_AlertLevel"     value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_Callisto_Download"         value="https://go.microsoft.com/fwlink/?LinkId=517253"/>
        <BrandedString name="URL_SqmOptInInfo"              value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_GenericMoreHelp"           value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_DownloadCenterSP"          value="https://go.microsoft.com/fwlink/?linkid=195295"/>
        <BrandedString name="URL_DownloadCenterKB"          value="https://go.microsoft.com/fwlink/?linkid=195293"/>
        <BrandedString name="URL_RemoveAvHelp"              value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_WrongBinaryType"           value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_Installer"                 value="https://go.microsoft.com/fwlink/?linkid=195294"/>
        <BrandedString name="URL_WrongLang"                 value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_SupportedOsList"           value="https://go.microsoft.com/fwlink/?LinkId=55273"/>
        <BrandedString name="URL_UpgradeProduct"            value="https://go.microsoft.com/fwlink/?LinkID=201218"/>
        <BrandedString name="URL_OsExpiring"                value="https://go.microsoft.com/fwlink/?LinkID=389313"/>
        <BrandedString name="URL_OsExpired"                 value="https://go.microsoft.com/fwlink/?LinkID=389315"/>
        <BrandedString name="URL_ProtectionExpired"         value="https://go.microsoft.com/fwlink/?LinkID=389316"/>
        <BrandedString name="URL_AccountCompromise"         value="https://go.microsoft.com/fwlink/?LinkId=390638"/>
        <BrandedString name="URL_OpenWebPageOnClose"        value=""/>
        <BrandedString name="URL_Windows8_Defender"         value=""/>

        <!--SupportedLCID - values delemeter is "," e.g. : en-us,de-de,pt-pt. comment out so during market selection will not be filtered-->
        <!-- <BrandedString name="SupportedLCID"                 value=""/> -->
    </BrandedStrings>

    <BrandedColors>
        <BrandedColor name="CUSTOM_COLOR_ITEM_TEXT"                         r="52"  g="52"  b="52"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_ITEM_BKG"                     r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_TASK_BKG"                     r="239" g="243" b="254"/>
        <BrandedColor name="CUSTOM_COLOR_TASK_LINK"                         r="230" g="240" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_TASK_BKG"                          r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_ITEM_LINE"                         r="0"   g="0"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_TEXT"                       r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_HELP_TEXT"                  r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_LIGHT_BLUE_TEXT"            r="17"  g="112" b="171"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_OOBE_LIGHT_BLUE_TEXT"       r="0"   g="51"  b="153"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_HEAD"                       r="7"   g="63"  b="110"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_CENTER"                     r="7"   g="63"  b="110"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_TAIL"                       r="20"  g="120" b="153"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_TEXT"                  r="52"  g="52"  b="52"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BORDER_RED"            r="172" g="1"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BACKGROUND_RED"        r="250" g="231" b="224"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BORDER_YELLOW"         r="242" g="177" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BACKGROUND_YELLOW"     r="255" g="255" b="199"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BORDER_GREEN"          r="22"  g="118" b="20"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BACKGROUND_GREEN"      r="227" g="254" b="199"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BORDER_BLUE"           r="7"   g="63"  b="110"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_BACKGROUND_BLUE"       r="220" g="236" b="249"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_RED_DARK"     r="172" g="1"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_RED_LIGHT"    r="222" g="1"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_GREEN_DARK"   r="22"  g="118" b="20"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_GREEN_LIGHT"  r="66"  g="179" b="62"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_YELLOW_DARK"  r="242" g="177" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_YELLOW_LIGHT" r="255" g="206" b="73"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_BLUE_DARK"    r="7"   g="63"  b="110"/>
        <BrandedColor name="CUSTOM_COLOR_THREAT_ITEM_GRADIENT_BLUE_LIGHT"   r="20"  g="120" b="153"/>
        <BrandedColor name="CUSTOM_COLOR_BORDER"                            r="210" g="210" b="210"/>
        <BrandedColor name="CUSTOM_COLOR_LINE_GREY"                         r="153" g="153" b="153"/>
        <BrandedColor name="CUSTOM_COLOR_LINE_LIGHT_GREY"                   r="207" g="207" b="207"/>
        <BrandedColor name="CUSTOM_COLOR_LINE_WHITE"                        r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_DIALOG_BOTTOM_BANNER_GREY"         r="204" g="204" b="204"/>
        <BrandedColor name="CUSTOM_COLOR_POTENTIAL_THREAT_BACKGROUND"       r="220" g="220" b="220"/>
        <BrandedColor name="CUSTOM_COLOR_LIGHT_GREY_TEXT"                   r="110" g="110" b="110"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_DARK_YELLOW"                r="242" g="177" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_YELLOW"                     r="255" g="206" b="73"/>
        <BrandedColor name="CUSTOM_COLOR_PANEL_GRADIENT_GREY_DARK"          r="133" g="143" b="157"/>
        <BrandedColor name="CUSTOM_COLOR_PANEL_GRADIENT_GREY_LIGHT"         r="166" g="172" b="179"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_RED_DARK"                   r="172" g="1"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_RED_LIGHT"                  r="222" g="1"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_GREEN_DARK"                 r="19"  g="102" b="17"/>
        <BrandedColor name="CUSTOM_COLOR_BANNER_GREEN_LIGHT"                r="2"   g="128" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_CHART_BLUE"                        r="0"   g="102" b="204"/>
        <BrandedColor name="CUSTOM_COLOR_CHART_RED"                         r="249" g="5"   b="28"/>
        <BrandedColor name="CUSTOM_COLOR_DIALOG_BOTTOM_BANNER_LIGHT_GREY"   r="227" g="227" b="227"/>
        <BrandedColor name="CUSTOM_COLOR_CALLISTO_BRANDING_YELLOW"          r="250" g="240" b="150"/>
        <BrandedColor name="CUSTOM_COLOR_TOPBAR_TAIL"                       r="188" g="231" b="250"/>
        <BrandedColor name="CUSTOM_COLOR_TOPBAR_BOTTOM_LINE"                r="129" g="199" b="233"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_BKG_TOP_RIHGT_CORNER"         r="10"  g="44"  b="116"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_BKG"                          r="96"  g="133" b="182"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_BKG_BOTTOM"                   r="60"  g="106" b="163"/>
        <BrandedColor name="CUSTOM_COLOR_TOPBAR_TOP_LINE"                   r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_SCAN_PANEL_BACKGROUND"             r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_TEXT_GREEN"                        r="21"  g="112" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TEXT_YELLOW"                       r="99"  g="40"  b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TEXT_RED"                          r="191" g="0"   b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TEXT_BLUE"                         r="0"   g="0"   b="191"/>
        <BrandedColor name="CUSTOM_COLOR_STATUS_SHADOW_BEGIN"               r="92"  g="116" b="150"/>
        <BrandedColor name="CUSTOM_COLOR_STATUS_SHADOW_END"                 r="117" g="149" b="190"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_TEXT"                 r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_RED_START"            r="133" g="35"  b="32"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_RED_MIDDLE_TOP"       r="156" g="40"  b="39"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_RED_MIDDLE_SOLID"     r="153" g="19"  b="18"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_RED_MIDDLE_BOTTOM"    r="163" g="4"   b="8"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_RED_END"              r="224" g="1"   b="25"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_YELLOW_START"         r="146" g="60"  b="11"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_YELLOW_MIDDLE_TOP"    r="165" g="63"  b="5"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_YELLOW_MIDDLE_SOLID"  r="166" g="61"  b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_YELLOW_MIDDLE_BOTTOM" r="181" g="77"  b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_YELLOW_END"           r="234" g="139" b="0"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_GREEN_START"          r="32"  g="105" b="40"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_GREEN_MIDDLE_TOP"     r="38"  g="122" b="47"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_GREEN_MIDDLE_SOLID"   r="0"   g="100" b="10"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_GREEN_MIDDLE_BOTTOM"  r="0"   g="108" b="13"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_GREEN_END"            r="0"   g="194" b="47"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_BLUE_START"           r="31"  g="67"  b="121"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_BLUE_MIDDLE_TOP"      r="36"  g="78"  b="141"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_BLUE_MIDDLE_SOLID"    r="12"  g="67"  b="138"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_BLUE_MIDDLE_BOTTOM"   r="16"  g="76"  b="145"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_BLUE_END"             r="47"  g="154" b="211"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_SHADOW_START"         r="139" g="139" b="139"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BANNER_SHADOW_END"           r="242" g="242" b="242"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_BACKGROUND"                  r="247" g="247" b="247"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_LINE_FOOTER"                 r="216" g="216" b="216"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_FOOTER_TOP"                  r="217" g="217" b="217"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_FOOTER_BOTTOM"               r="195" g="195" b="195"/>
        <BrandedColor name="CUSTOM_COLOR_TOAST_FOOTER_SEPARATOR"            r="141" g="141" b="141"/>
        <BrandedColor name="CUSTOM_COLOR_DIALOG_BANNER_TOP"                 r="71"  g="71"  b="71"/>
        <BrandedColor name="CUSTOM_COLOR_DIALOG_BANNER_BOTTOM"              r="49"  g="49"  b="49"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_DIALOG_BANNER_TOP"            r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_MAIN_DIALOG_BANNER_BOTTOM"         r="181" g="181" b="181"/>
        <BrandedColor name="CUSTOM_COLOR_ABOUT_TEXT"                        r="52"  g="52"  b="52"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_OUTSIDE_LINE_BORDER"           r="255" g="255" b="255"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_INSIDE_LINE_BORDER"            r="109" g="142" b="185"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_BKG_TOP"                       r="73"  g="73"  b="73"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_BKG_MIDDLE"                    r="64"  g="97"  b="151"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_BKG_BOTTOM_TOP"                r="58"  g="89"  b="143"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_BKG_BOTTOM_BOTTOM"             r="48"  g="75"  b="118"/>
        <BrandedColor name="CUSTOM_COLOR_LINK"                              r="4"   g="15"  b="232"/>
        <BrandedColor name="CUSTOM_COLOR_LINK_HOVER"                        r="4"   g="111" b="232"/>
        <BrandedColor name="CUSTOM_COLOR_TAB_SELECTED_TEXT"                 r="52"  g="52"  b="52"/>
        <BrandedColor name="CUSTOM_COLOR_MORRO_TEXT_07"                     r="109" g="109" b="109"/>
    </BrandedColors>
</root>
     <?xml version="1.0" encoding="utf-8"?>
<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:x="urn:cmpnamespace" elementFormDefault="qualified" attributeFormDefault="unqualified">
  <xs:simpleType name="InstallationType">
    <xs:restriction base="xs:string">
      <xs:enumeration value="msi"/>
      <xs:enumeration value="exe"/>
    </xs:restriction>
  </xs:simpleType>
  <xs:simpleType name="FeatureBoolean">
    <xs:restriction base="xs:byte">
      <xs:enumeration value="1"/>
      <xs:enumeration value="0"/>
    </xs:restriction>
  </xs:simpleType>
  <xs:element name="root">
    <xs:complexType>
      <xs:sequence>
        <xs:element name="Features">
          <xs:complexType>
            <xs:sequence>
              <xs:element name="Feature" maxOccurs="unbounded">
                <xs:complexType>
                  <xs:attribute name="name" type="xs:string" use="required" />
                  <xs:attribute name="value" use="required">
                    <xs:simpleType>
                      <xs:list itemType="FeatureBoolean"/>
                    </xs:simpleType>
                  </xs:attribute>
                </xs:complexType>
              </xs:element>
            </xs:sequence>
          </xs:complexType>
        </xs:element>
        <xs:element name="BrandedValues">
          <xs:complexType>
            <xs:sequence>
              <xs:element name="BrandedValue" maxOccurs="unbounded">
                <xs:complexType>
                    <xs:attribute name="name" type="xs:string" use="required" />
                    <xs:attribute name="value" type="xs:integer" use="required" />
                </xs:complexType>
            </xs:element>
            </xs:sequence>
          </xs:complexType>
        </xs:element>
        <xs:element name="BrandedStrings">
          <xs:complexType>
            <xs:sequence>
              <xs:element name="BrandedString" maxOccurs="unbounded">
                <xs:complexType>
                  <xs:attribute name="name" type="xs:string" use="required" />
                  <xs:attribute name="value" type="xs:string" use="required" />
                </xs:complexType>
              </xs:element>
            </xs:sequence>
          </xs:complexType>
        </xs:element>
        <xs:element name="BrandedColors">
          <xs:complexType>
            <xs:sequence>
              <xs:element name="BrandedColor" maxOccurs="unbounded">
                <xs:complexType>
                    <xs:attribute name="name" type="xs:string" use="required" />
                    <xs:attribute name="r" type="xs:integer" use="required" />
                    <xs:attribute name="g" type="xs:integer" use="required" />
                    <xs:attribute name="b" type="xs:integer" use="required" />
                </xs:complexType>
            </xs:element>
            </xs:sequence>
          </xs:complexType>
        </xs:element>
        <xs:element name="Deployment" minOccurs="0">
          <xs:complexType>
            <xs:sequence>
              <xs:element name="Packages">
                <xs:complexType>
                  <xs:sequence>
                    <xs:element name="Package" maxOccurs="unbounded">
                      <xs:complexType>
                        <xs:sequence>
                          <xs:element name="FullName" type="xs:string"/>
                          <xs:element name="InstallArgs" type="xs:string" minOccurs="0"/>
                          <xs:element name="MinorUpgrdArgs" type="xs:string" minOccurs="0"/>
                          <xs:element name="InstallLogPath" type="xs:string" minOccurs="0"/>
                        </xs:sequence>
                        <xs:attribute name="id" type="xs:string" use="required" />
                        <xs:attribute name="file" type="xs:string" use="required" />
                        <xs:attribute name="type" use="required">
                          <xs:simpleType>
                            <xs:list itemType="InstallationType"/>
                          </xs:simpleType>
                        </xs:attribute>
                      </xs:complexType>
                    </xs:element>
                  </xs:sequence>
                </xs:complexType>
              </xs:element>
              <xs:element name="InstallSequence">
                <xs:complexType>
                  <xs:sequence>
                    <xs:element name="PackageRef" maxOccurs="unbounded">
                      <xs:complexType>
                        <xs:attribute name="id" type="xs:string" use="required" />
                      </xs:complexType>
                    </xs:element>
                  </xs:sequence>
                </xs:complexType>
              </xs:element>
              <xs:element name="UninstallSequence">
                <xs:complexType>
                  <xs:sequence>
                    <xs:element name="PackageRef" maxOccurs="unbounded">
                      <xs:complexType>
                        <xs:attribute name="id" type="xs:string" use="required" />
                      </xs:complexType>
                    </xs:element>
                  </xs:sequence>
                </xs:complexType>
              </xs:element>
              <xs:element name="UpgradeSequence">
                <xs:complexType>
                  <xs:sequence>
                    <xs:element name="PackageRef" maxOccurs="unbounded">
                      <xs:complexType>
                        <xs:attribute name="id" type="xs:string" use="required" />
                      </xs:complexType>
                    </xs:element>
                  </xs:sequence>
                </xs:complexType>
              </xs:element>
              <xs:element name="ServiceConfigurations" minOccurs="0">
                <xs:complexType>
                  <xs:sequence>
                    <xs:element name="Configuration" maxOccurs="unbounded">
                      <xs:complexType>
                        <xs:attribute name="id" type="xs:string" use="required" />
                        <xs:attribute name="Key" type="xs:string" use="required" />
                        <xs:attribute name="ValueName" type="xs:string" use="required" />
                        <xs:attribute name="ValueData" type="xs:string" use="required" />
                        <xs:attribute name="ValueType" type="xs:string" use="required" />
                      </xs:complexType>
                    </xs:element>
                    <xs:element name="ServiceConfigurationInstallFlat">
                      <xs:complexType>
                        <xs:sequence>
                          <xs:element name="ConfigRef" maxOccurs="unbounded">
                            <xs:complexType>
                              <xs:attribute name="id" type="xs:string" use="required" />
                            </xs:complexType>
                          </xs:element>
                        </xs:sequence>
                      </xs:complexType>
                    </xs:element>
                    <xs:element name="ServiceConfigurationInstallOBC">
                      <xs:complexType>
                        <xs:sequence>
                          <xs:element name="ConfigRef" maxOccurs="unbounded">
                            <xs:complexType>
                              <xs:attribute name="id" type="xs:string" use="required" />
                            </xs:complexType>
                          </xs:element>
                        </xs:sequence>
                      </xs:complexType>
                    </xs:element>
                  </xs:sequence>
                </xs:complexType>
              </xs:element>
            </xs:sequence>
          </xs:complexType>
        </xs:element>
      </xs:sequence>
    </xs:complexType>
  </xs:element>
</xs:schema>
      ‰PNG

   
IHDR   €   €   L\öœ  ÑIDATxœíÏOYÀŸ²Æ	Ñ 
Ù„m³Z½l؃“öh“N£Ç&¥€)^ö*=¹{OeO[<ÒÆ#&Å„£&˜”#ËîE@ÒîÄÆ,ó¢™B`÷0»Æ¨Û*ïÇ÷
|?' ðfæ}æýþ¾a„üøeAà…>aa ƒ€AÀ  `P 0(  
  ƒ€AÀ  `P 0( ˜¯ Oà¶5Ÿþ͸1ãÿ÷Eºyå…¾-ÿѶœn¡f»/@Îó®¨. 4fü±ï'¦‚cŸÿæÓ‡þ§ý„µB©˜íBÍΔhÙt$œgß(* ¨ùOBñǁ/æûÿ1Ÿ‹Œ¯Ì‡Ž­N¦Dß¼o©Y&”àfýÚB˜W‚SÁ±µ…pbþÞ›âŸ
jP«ŽE'e«³sÿ‚€6º¶n¬ÎÆ¢“ÜgAAÍ—[zðné~@xJmôÝÒýÜÒƒ æw”;/ ¨ù’‹áÆêì‹è„œ#¾ˆN4Vg“‹a4@¶nuŸ˜¿'ô®¿·FR¡a€ G´Ä“P,:)?ë/s¡!S¢PV©ôˆfÌøãs‘q™Çý<mte>´2ª˜íL‰j¶LÂèÍÁ3þ¾;õr˜‹ŒÿòükBȱÕ)ÔlwD-Z« wbàò'ÆŒŸ¢G´éИRwúí™
Ž½zxõ(à¾=¨ÛÖ_=×D¡f_þæ•·}п€¿þŽñØ^Ááp;iî<ÇuF~ú½¿ÄỡC
  ƒ€AÀ  `P 0(  
  ƒ€AÀ  `P 0(  
  ƒ€AÀ  `P 0(  
  Ó¿ êô8ž‡§aÉŠþ(¾ÿV&,Y1‚OÎ…Û `P 0(  
 †i“^r1,â¹·áúž,¨=këû§É½Ó¾ÎTr¿ž³ü|0`Ì&eÓòñ0uzŒRÖ6 W=cLÁÓ°_>³€á®…Ø/ŸC	8¶:Œ‰x”c«_!™eOÄ‹p¹pÐ?ªh´:[‡Cç`ë6Zê^>#á!,¼.™€BÍ>¨³>¸ÅCÔmöaÕ¸p›bŽ{ŽËMÀðŽ·?á;eÏšSS¾—ÉS@£ÕI[TT±Å¥ósçõ€äÞé OÏQ§Ç½©ã,Àrº\ų&÷G¼ò_ËUÏv«8C·[=1õ+dI2ž5a¬"¢NOPÉ"Àrº±í"R†"¶ýAÐó¥E-ÊjöÀôˆRÅÇŽÿFE$ò'³-.}9TÌv"".}±a)FºééÆ€:½ë×ı,§ë]anî‹þkáYeÓZ„Å‘ÈŸHÁ——)Ñ反ΖwL9‹’B3%ê¡NQªØ’¶Ä$/64‘?ñÄÊåÖ!•YgJ
΍gMÅlRÉsY²££Uv ?÷	Hxºš@rŸ@íˆgÍõ}…֐×÷O¡fÑÁ6h$÷Né›.;d2%úrû#à8™:½—Ûaƒš€·(åªgFº	Þ{luŒt<¼~XÙtôTCò¼iÅl멆
›ýáB,§«oÖ¥u¶©¾YW䟝•àÏšË;b×2©Ó[Þ1•
ePH !$S¢Fº)¨:ª˜m#ÝT-ŽX-„²éé&÷™»T±¥oÖU¨ô¯ œ Bˆåtù“goù¬äP§÷ìmSÙ5	¸jöôÆcˆÑnõ|zãHÜ’:;ê
 ÿ…·ô7XsaYâÂIx¡´ —\õlzãèN­BªØšÞ8dÝ —Z…/v*fÛ­ñ¿ñ/ð† —BÍÖ7ë¯óŸn¬‘¨Ó{ÿ¤oÖU®ñ¯ãÉgÆ5ßõeüÆÕÇK%à‚e3Ú‹¹O<*`@À  `P 0(  
  ƒ€AÀ  `P 0(  
  ó¿P‡©³ÀÙš    IEND®B`‚      (   `   À                             ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x ×x                                           
Microsoft Corporation1)0'U Microsoft Operations Puerto Rico1'0%UnCipher NTS ESN:4DE9-0C5E-3E091+0)U"Microsoft Time Source Master Clock0
     

No se si hubiera sido conveniente quitar todo lo que no es legible, pero por si acaso tb lo deje, Al irme a dormir dejare haciendo un escaneo en modo a prueba de errores a la herramienta de windows a ver si asi lo elimina definitivamente… Muchas gracias por la atencion y dedicacion Saludos!

Buenas de nuevo, creo que esta vez si traigo evidencias de una buena infeccion, espero ahora si podamos empezar a tomas medidas… los antivirus no detectan nada en los escaneos y e dice que la amenaza podria seguir activa… Rn configuracion redes…la pestaña vpn me esta vetada le doy y no hace nada no se abre… En el programa soulseek, mi bandera de localizacion es UCRANIANA… sin contar mas cosas como la immensidad de eventos que acumulo y que en ellos se puede llegar a ver la secuencia de como nada mas instalar algo se ejecuta un actuzlizador que modifica lo recien instalado… Voy a poner todas las pruebas que pueda pero no se si podre poner todo lo que he comentado:

netstat solo con esta web abierta…nada mas…

C:\Windows\system32>netstat -ano

Conexiones activas

  Proto  Dirección local          Dirección remota        Estado           PID
  TCP    0.0.0.0:135            0.0.0.0:0              LISTENING       484
  TCP    0.0.0.0:445            0.0.0.0:0              LISTENING       4
  TCP    0.0.0.0:5040           0.0.0.0:0              LISTENING       4632
  TCP    0.0.0.0:49664          0.0.0.0:0              LISTENING       844
  TCP    0.0.0.0:49665          0.0.0.0:0              LISTENING       740
  TCP    0.0.0.0:49666          0.0.0.0:0              LISTENING       1392
  TCP    0.0.0.0:49667          0.0.0.0:0              LISTENING       1428
  TCP    0.0.0.0:49669          0.0.0.0:0              LISTENING       812
  TCP    127.0.0.1:49681        127.0.0.1:49682        ESTABLISHED     2144
  TCP    127.0.0.1:49682        127.0.0.1:49681        ESTABLISHED     2144
  TCP    127.0.0.1:49683        127.0.0.1:49684        ESTABLISHED     7596
  TCP    127.0.0.1:49684        127.0.0.1:49683        ESTABLISHED     7596
  TCP    127.0.0.1:49685        127.0.0.1:49686        ESTABLISHED     5788
  TCP    127.0.0.1:49686        127.0.0.1:49685        ESTABLISHED     5788
  TCP    127.0.0.1:49687        127.0.0.1:49688        ESTABLISHED     7708
  TCP    127.0.0.1:49688        127.0.0.1:49687        ESTABLISHED     7708
  TCP    192.168.1.2:139        0.0.0.0:0              LISTENING       4
  TCP    192.168.1.2:49700      52.41.140.15:443       ESTABLISHED     2144
  TCP    192.168.1.2:49718      40.83.247.108:443      ESTABLISHED     3660
  TCP    192.168.1.2:49823      40.83.247.108:443      ESTABLISHED     3660
  TCP    192.168.1.2:50302      104.26.6.97:443        ESTABLISHED     2144
  TCP    192.168.1.2:50308      20.50.80.210:443       ESTABLISHED     2144
  TCP    192.168.1.2:50309      20.50.80.210:443       ESTABLISHED     2144
  TCP    192.168.1.2:50310      142.250.184.164:443    ESTABLISHED     2144
  TCP    [::]:135               [::]:0                 LISTENING       484
  TCP    [::]:445               [::]:0                 LISTENING       4
  TCP    [::]:49664             [::]:0                 LISTENING       844
  TCP    [::]:49665             [::]:0                 LISTENING       740
  TCP    [::]:49666             [::]:0                 LISTENING       1392
  TCP    [::]:49667             [::]:0                 LISTENING       1428
  TCP    [::]:49669             [::]:0                 LISTENING       812
  UDP    0.0.0.0:500            *:*                                    3448
  UDP    0.0.0.0:4500           *:*                                    3448
  UDP    0.0.0.0:5050           *:*                                    4632
  UDP    0.0.0.0:5353           *:*                                    2540
  UDP    0.0.0.0:5355           *:*                                    2540
  UDP    0.0.0.0:59034          *:*                                    2144
  UDP    127.0.0.1:49664        *:*                                    3468
  UDP    192.168.1.2:137        *:*                                    4
  UDP    192.168.1.2:138        *:*                                    4
  UDP    [::]:500               *:*                                    3448
  UDP    [::]:4500              *:*                                    3448
  UDP    [::]:5353              *:*                                    2540
  UDP    [::]:5355              *:*                                    2540

Seguimos con los logs de fabar por cierto al bajarlo me redirige a una web como esta que no recuerdo antes… www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

fabar

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 20-09-2021
Ejecutado por Guille (administrador) sobre DESKTOP-88F78NK (Gigabyte Technology Co., Ltd. Z270-HD3P) (22-09-2021 04:49:28)
Ejecutado desde C:\Users\Guille\Desktop
Perfiles cargados: Guille
Platform: Windows 10 Home Single Language Versión 21H1 19043.1237 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_167a1a0325242e3d\aesm_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ac8244143fa54fc4\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342856 2021-09-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\93.1.29.81\Installer\chrmstp.exe [2021-09-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{5EF9A232-5B5B-4768-95F2-3F601FB184E3}] -> C:\Windows\system32\AutoGreenCP.dll [2021-09-13] () [Archivo no firmado]

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {035F24F3-51DF-4576-82E8-1842640960C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {072272B1-7AC2-4872-A642-352C56BA9E73} - \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB -> Ningún archivo <==== ATENCIÓN
Task: {3132BF3C-E759-45B4-9FE5-89813135A5CD} - \OneDrive Standalone Update Task-S-1-5-21-333854507-3505949864-680918485-1002 -> Ningún archivo <==== ATENCIÓN
Task: {33513F9D-F7DB-4F0E-9095-8F43DEF23AAA} - \BraveSoftwareUpdateTaskMachineUA -> Ningún archivo <==== ATENCIÓN
Task: {5022C8E2-60B7-4F45-96CE-24425AC1AC5D} - \BraveSoftwareUpdateTaskMachineCore -> Ningún archivo <==== ATENCIÓN
Task: {8DB27523-093D-4B93-A00B-68F6317DFAE1} - \Microsoft\Windows\SharedPC\Account Cleanup -> Ningún archivo <==== ATENCIÓN
Task: {A0C1D686-7D68-4647-86DE-C5EAEE6CC598} - \MicrosoftEdgeUpdateTaskMachineCore -> Ningún archivo <==== ATENCIÓN
Task: {B0DF0939-1ADE-4F68-8409-08A41C6D7BBC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C55AE391-A87F-4CF0-8E9F-92ED5EBE979F} - \MicrosoftEdgeUpdateTaskMachineUA -> Ningún archivo <==== ATENCIÓN
Task: {CC4F585B-EBBB-4AA6-9BDF-B28C489A9125} - \Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask -> Ningún archivo <==== ATENCIÓN
Task: {DFC86246-6B62-4555-8DD7-F9F5BA932EF2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FE8FB8D2-0A8A-407B-A9B7-A6B10A9D745C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{975db9eb-5229-482b-aff7-fa02006db3da}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Profile: C:\Users\Guille\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Guille\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 0b5ic0zb.default
FF ProfilePath: C:\Users\Guille\AppData\Roaming\Mozilla\Firefox\Profiles\0b5ic0zb.default [2021-09-16]
FF ProfilePath: C:\Users\Guille\AppData\Roaming\Mozilla\Firefox\Profiles\p652jr4p.default-release [2021-09-22]
FF NetworkProxy: Mozilla\Firefox\Profiles\p652jr4p.default-release -> type", 0
FF Extension: (Al traductor de Google) - C:\Users\Guille\AppData\Roaming\Mozilla\Firefox\Profiles\p652jr4p.default-release\Extensions\[email protected] [2021-09-21]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Brave: 
=======
BRA Profile: C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-09-22]
BRA DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=brz-brave
BRA DefaultSearchKeyword: Default -> :q
BRA DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
BRA Extension: (Traductor de Google) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-09-09]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-09-09]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\alkblaadjjijngaehljijdimckobegga [2021-09-21]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-09-21]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-09-15]
BRA Extension: (Brave Ads Resources) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\elecgkckipdmnkkgndidemmdhdcdfhnp [2021-09-15]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-09-14]
BRA Extension: (Crypto Wallets) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2021-09-15]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-09-14]
BRA Extension: (Brave Ad Block Updater (EasyList Spanish)) - C:\Users\Guille\AppData\Local\BraveSoftware\Brave-Browser\User Data\pdecoifadfkklajdlmndjpkhabpklldh [2021-09-21]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-09] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-09] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 GbtAudioJackService; C:\Program Files (x86)\GIGABYTE\AudioJackService\GbtAudioJackService.exe [15792 2017-04-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7789240 2021-09-17] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 SetupARService; "C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe" [X]
S2 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 gdrv; C:\Windows\gdrv.sys [26192 2021-09-14] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2021-09-13] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-22] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl2e795c39; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{ABCEF16A-23DD-4924-8170-AE550395E1D8}\MpKslDrv.sys [130296 2021-09-22] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [94576 2021-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

continuacion

==================== Un mes (creado) (Todos) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-09-22 04:49 - 2021-09-22 04:49 - 000012887 _____ C:\Users\Guille\Desktop\FRST.txt
2021-09-22 04:44 - 2021-09-22 04:44 - 002304512 _____ (Farbar) C:\Users\Guille\Desktop\F.exe
2021-09-22 02:25 - 2021-09-22 02:28 - 000000591 _____ C:\Users\Guille\Downloads\SearchReg.txt
2021-09-22 02:21 - 2021-09-22 02:23 - 000000000 ____D C:\Users\Guille\Desktop\losfabar
2021-09-22 01:59 - 2021-09-22 02:16 - 000039292 _____ C:\Users\Guille\Downloads\Shortcut.txt
2021-09-22 01:58 - 2021-09-22 02:16 - 000028441 _____ C:\Users\Guille\Downloads\Addition.txt
2021-09-22 01:57 - 2021-09-22 02:16 - 000065114 _____ C:\Users\Guille\Downloads\FRST.txt
2021-09-22 01:56 - 2021-09-22 04:49 - 000000000 ____D C:\FRST
2021-09-22 00:37 - 2021-09-22 00:37 - 000000000 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (10).txt
2021-09-21 05:00 - 2021-09-21 05:00 - 008553680 _____ (Malwarebytes) C:\Users\Guille\Desktop\ad0.exe
2021-09-21 01:15 - 2021-09-21 01:15 - 000000000 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (9).txt
2021-09-21 00:51 - 2021-09-21 00:51 - 002985616 _____ (Bolide Software ) C:\Users\Guille\Downloads\ac_setup(1).exe
2021-09-19 01:50 - 2021-09-19 01:50 - 000000000 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (8).txt
2021-09-18 19:08 - 2021-09-18 19:08 - 490738706 _____ C:\Users\Guille\Desktop\mb_driver_lan_intel_v22.10.zip
2021-09-18 16:50 - 2021-09-18 16:50 - 000004742 _____ C:\Users\Public\Desktop\mbst-fix-results.txt
2021-09-18 16:45 - 2021-09-18 16:45 - 000000000 ____D C:\Windows\ERUNT
2021-09-18 16:44 - 2021-09-18 16:44 - 002304000 _____ (Farbar) C:\Users\Guille\Downloads\FRSTEnglish.exe
2021-09-18 16:43 - 2021-09-18 16:43 - 013471344 _____ C:\Users\Guille\Downloads\MB-SupportTool.exe
2021-09-18 10:36 - 2021-09-18 10:36 - 000000000 ___HD C:\$WinREAgent
2021-09-18 05:28 - 2021-09-18 07:54 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Kodi
2021-09-18 05:27 - 2021-09-18 05:27 - 063102319 _____ (XBMC Foundation) C:\Users\Guille\Desktop\kodi-18.9-Leia-x64.exe
2021-09-18 05:27 - 2021-09-18 05:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2021-09-18 05:27 - 2021-09-18 05:27 - 000000000 ____D C:\Program Files\Kodi
2021-09-18 02:35 - 2021-09-18 02:35 - 006734873 _____ C:\Users\Guille\Desktop\ed.txt
2021-09-17 19:40 - 2021-09-17 19:40 - 000000000 ____D C:\Users\Guille\Downloads\RootkitRevealer
2021-09-17 19:39 - 2021-09-17 19:39 - 000231390 _____ C:\Users\Guille\Downloads\RootkitRevealer.zip
2021-09-17 19:32 - 2021-09-17 19:35 - 000000000 ____D C:\Users\Guille\AppData\Local\Sysinternals
2021-09-17 19:32 - 2021-09-17 19:32 - 000000000 ____D C:\Users\Guille\Downloads\TCPView
2021-09-17 19:31 - 2021-09-17 19:31 - 001851417 _____ C:\Users\Guille\Downloads\TCPView.zip
2021-09-17 03:13 - 2021-09-17 03:13 - 000000000 ____D C:\Users\Guille\Desktop\Traktor
2021-09-17 02:56 - 2021-09-17 02:56 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-09-17 02:35 - 2021-09-17 02:35 - 000000000 ____D C:\Users\Guille\Downloads\PDJR.6.5.1.x64.ZDescargas.org
2021-09-17 02:18 - 2021-09-22 02:47 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-09-16 21:55 - 2021-09-22 04:13 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-16 21:55 - 2021-09-22 04:12 - 000000000 ____D C:\Users\Guille\AppData\LocalLow\Mozilla
2021-09-16 21:55 - 2021-09-22 01:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-16 21:55 - 2021-09-16 21:55 - 000333008 _____ (Mozilla) C:\Users\Guille\Desktop\Firefox Installer.exe
2021-09-16 21:55 - 2021-09-16 21:55 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-16 21:55 - 2021-09-16 21:55 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-09-16 21:55 - 2021-09-16 21:55 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Mozilla
2021-09-16 21:55 - 2021-09-16 21:55 - 000000000 ____D C:\Users\Guille\AppData\Local\Mozilla
2021-09-16 21:55 - 2021-09-16 21:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-16 21:33 - 2021-09-16 21:33 - 007464840 _____ C:\Users\Guille\Documents\psiphon3.exe
2021-09-16 21:33 - 2021-09-16 21:33 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Psiphon3
2021-09-16 18:28 - 2021-09-16 18:28 - 000002447 _____ C:\Users\Guille\Desktop\SetupDiag.exe.config
2021-09-16 18:25 - 2021-09-16 18:14 - 000677792 _____ C:\Users\Guille\Desktop\Setupdiag.exe
2021-09-16 18:14 - 2021-09-16 18:14 - 000677792 _____ C:\Users\Guille\Documents\Setuag.exe
2021-09-16 18:14 - 2021-09-16 18:14 - 000002447 _____ C:\Users\Guille\Documents\SetupDiag.exe.config
2021-09-16 17:00 - 2021-09-16 17:00 - 000026911 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (7).txt
2021-09-16 16:57 - 2021-09-16 16:57 - 000000000 ____D C:\Users\Guille\AppData\Local\vbtocs
2021-09-16 02:26 - 2021-09-16 02:27 - 000000000 ____D C:\AdwCleaner
2021-09-16 02:26 - 2021-09-16 02:26 - 008553680 _____ (Malwarebytes) C:\Users\Guille\Downloads\AdwCleaner.exe
2021-09-16 02:17 - 2021-09-16 02:17 - 001493761 _____ C:\Users\Guille\Desktop\setup_anycpu.zip
2021-09-16 01:31 - 2021-09-16 01:31 - 000002031 _____ C:\Users\Guille\Documents\debug.search-ms
2021-09-16 01:02 - 2021-09-19 07:03 - 000000598 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (6).txt
2021-09-16 00:27 - 2021-09-16 00:27 - 000000000 ___HD C:\$GetCurrent
2021-09-15 23:48 - 2021-09-15 23:48 - 000000000 ____D C:\Users\Guille\.msvscode.azuredatalake
2021-09-15 23:00 - 2021-09-16 18:10 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Code
2021-09-15 23:00 - 2021-09-15 23:00 - 000000000 ____D C:\Users\Guille\.vscode
2021-09-15 22:55 - 2021-09-15 22:55 - 000000376 _____ C:\Users\Guille\Downloads\0 (1)
2021-09-15 22:54 - 2021-09-15 22:54 - 000000376 _____ C:\Users\Guille\Downloads\0
2021-09-15 22:40 - 2021-09-15 22:40 - 000022278 _____ C:\Users\Guille\Desktop\{7393FCB8-F120-492C-9F48-9C4C53CC75CC}.txt
2021-09-15 21:17 - 2021-09-15 21:18 - 935308617 _____ C:\Users\Guille\Documents\MT.dmp
2021-09-15 20:41 - 2021-09-15 20:41 - 001642496 _____ (Microsoft Corporation) C:\Windows\system32\WebManagement.exe
2021-09-15 20:41 - 2021-09-15 20:41 - 001036288 _____ (Microsoft Corporation) C:\Windows\system32\wdp.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdp.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000536376 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftWebDriver.exe
2021-09-15 20:41 - 2021-09-15 20:41 - 000395600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftWebDriver.exe
2021-09-15 20:41 - 2021-09-15 20:41 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\PerceptionSimulationREST.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\SshdBroker.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperToolsMgr.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000153600 _____ (Microsoft Corporation) C:\Windows\system32\WindowsDevicePortal.SpatialMapManager.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperSetupCSP.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\debugregsvc.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\DeployUtil.exe
2021-09-15 20:41 - 2021-09-15 20:41 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\debugregsvcapi.dll
2021-09-15 20:41 - 2021-09-15 20:41 - 000000000 __RSD C:\Windows\SysWOW64\WindowsDevicePortal
2021-09-15 20:41 - 2021-09-15 20:41 - 000000000 __RSD C:\Windows\system32\WindowsDevicePortal
2021-09-15 20:41 - 2021-09-15 20:41 - 000000000 ___RD C:\Windows\WebManagement
2021-09-15 20:41 - 2019-12-06 16:36 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperTools.ProxyStub.dll
2021-09-15 20:41 - 2019-12-06 16:35 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\SshdPinAuthLsa.dll
2021-09-15 20:41 - 2019-12-06 16:34 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\DevToolsLauncher.exe
2021-09-15 20:41 - 2019-12-06 16:34 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperToolsSvc.exe
2021-09-15 20:29 - 2021-09-15 20:30 - 000001908 _____ C:\Windows\diagwrn.xml
2021-09-15 20:29 - 2021-09-15 20:30 - 000001908 _____ C:\Windows\diagerr.xml
2021-09-15 19:43 - 2021-09-22 02:55 - 000001575 _____ C:\Windows\system32\config\VSMIDK
2021-09-15 19:40 - 2021-09-15 19:40 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS
2021-09-15 19:40 - 2021-09-15 19:40 - 000000000 ____D C:\Windows\system32\0C0A
2021-09-15 16:57 - 2021-09-15 16:57 - 000002769 _____ C:\Users\Guille\Desktop\YouTube.lnk
2021-09-15 16:57 - 2021-09-15 16:57 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Brave
2021-09-15 16:20 - 2021-09-15 16:20 - 024272384 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 023448576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 018082304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 010846544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 010343136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 008889968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 007648256 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 006444544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 004807144 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 004687256 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 004466160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 003817984 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 003589120 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 003402240 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 003298816 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 002893824 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 002663424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 002653696 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 002527824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 002428752 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 002250240 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001980760 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001865528 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001696696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001678848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001618744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001570640 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 001452880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001352256 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001273344 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001268048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 001165392 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE
2021-09-15 16:20 - 2021-09-15 16:20 - 001152512 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 001149704 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000992768 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000928256 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000916336 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000888832 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000823296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000806216 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000803840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000766440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000765952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000725504 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000655176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000582656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-09-15 16:20 - 2021-09-15 16:20 - 000539648 _____ (Microsoft Corporation) C:\Windows\system32\IESettingSync.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000530976 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000520192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000469496 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000456008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-09-15 16:20 - 2021-09-15 16:20 - 000407368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000383248 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000377344 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000366672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000366592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000362672 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\wlancfg.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000289192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000265016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000250368 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlancfg.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000220472 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000204288 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.OneCore.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\L2SecHC.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.OneCore.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2021-09-15 16:20 - 2021-09-15 16:20 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000136192 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000132744 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2021-09-15 16:20 - 2021-09-15 16:20 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000117584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2021-09-15 16:20 - 2021-09-15 16:20 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000092960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000081408 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000070968 _____ (Microsoft Corporation) C:\Windows\system32\GameInput.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000064016 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000061768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\wowreg32.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dispex.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2021-09-15 16:20 - 2021-09-15 16:20 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wowreg32.exe
2021-09-15 16:20 - 2021-09-15 16:20 - 000011355 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-09-15 16:17 - 2021-08-10 05:44 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2021-09-15 16:17 - 2021-08-10 05:36 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2021-09-15 00:27 - 2021-09-15 00:27 - 110903157 _____ C:\Users\Guille\Desktop\sihost.dmp
2021-09-14 20:54 - 2021-09-14 20:54 - 000000000 ____D C:\Users\Guille\AppData\Local\Apps\2.0
2021-09-14 19:05 - 2021-09-18 15:37 - 000094576 ____H (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCMON24.SYS
2021-09-14 19:05 - 2021-09-17 21:09 - 000036208 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2021-09-14 19:04 - 2021-09-18 16:04 - 000000000 ____D C:\Users\Guille\Desktop\ProcessMonitor
2021-09-14 19:04 - 2021-09-14 19:04 - 000000000 ____D C:\Users\Guille\Desktop\ProcessExplorer
2021-09-14 18:48 - 2021-09-14 18:48 - 003142907 _____ C:\Users\Guille\Desktop\ProcessMonitor.zip
2021-09-14 18:48 - 2021-09-14 18:48 - 002650810 _____ C:\Users\Guille\Desktop\ProcessExplorer.zip
2021-09-14 17:05 - 2021-09-14 17:11 - 000000000 ____D C:\Users\Guille\AppData\Local\SoulseekQt
2021-09-14 16:09 - 2021-09-19 11:25 - 000000000 ____D C:\Users\Guille\Documents\Soulseek Downloads
2021-09-14 16:04 - 2021-09-14 16:04 - 000001100 _____ C:\Users\Public\Desktop\SoulseekQt.lnk
2021-09-14 16:04 - 2021-09-14 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2021-09-14 16:04 - 2021-09-14 16:04 - 000000000 ____D C:\Program Files (x86)\SoulseekQt
2021-09-14 03:08 - 2021-09-15 23:56 - 000000000 ____D C:\Users\Guille\AppData\Local\PlaceholderTileLogoFolder
2021-09-14 02:41 - 2021-09-14 02:41 - 000000000 ____D C:\Users\Guille\Desktop\DriverStoreExplorer.v0.11.72
2021-09-14 02:41 - 2021-09-14 02:41 - 000000000 ____D C:\Users\Guille\AppData\Local\Rapr
2021-09-14 02:39 - 2021-09-14 02:39 - 000963129 _____ C:\Users\Guille\Desktop\DriverStoreExplorer.v0.11.72.zip
2021-09-14 02:32 - 2021-09-14 02:32 - 049421263 _____ C:\Users\Guille\Desktop\Unofficial-Realtek-UAD-generic-6.0.9231.1.zip
2021-09-14 02:32 - 2021-09-14 02:32 - 000000000 ____D C:\Users\Guille\Desktop\Unofficial-Realtek-UAD-generic-6.0.9231.1
2021-09-14 02:32 - 2019-10-29 23:18 - 006849832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-09-14 02:02 - 2021-09-18 15:14 - 000000815 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (5).txt
2021-09-14 00:41 - 2021-09-14 00:41 - 000000000 ____D C:\Users\Guille\AppData\Local\NVIDIA
2021-09-14 00:32 - 2018-03-14 04:17 - 000000021 _____ C:\autoexec.bat
2021-09-14 00:32 - 2018-03-09 07:08 - 008388608 _____ C:\Z270HD3P.F9d
2021-09-14 00:32 - 2017-01-24 11:54 - 000081976 ____R C:\Efiflash.exe
2021-09-14 00:24 - 2021-09-14 00:24 - 000000000 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (4).txt
2021-09-14 00:14 - 2021-09-14 00:14 - 008388608 _____ C:\bios.bin
2021-09-13 23:47 - 2021-09-13 23:47 - 000000000 ____D C:\Users\Guille\Documents\EasyTune
2021-09-13 23:40 - 2021-09-13 23:40 - 000000960 _____ C:\Users\Public\Desktop\CPUID CPU-Z Aorus.lnk
2021-09-13 23:40 - 2021-09-13 23:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-09-13 23:40 - 2021-09-13 23:40 - 000000000 ____D C:\Program Files\CPUID
2021-09-13 23:39 - 2021-09-13 23:39 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-09-13 23:39 - 2021-09-13 23:39 - 000000000 ____D C:\Program Files\ENE
2021-09-13 23:39 - 2021-09-13 23:39 - 000000000 ____D C:\Program Files (x86)\ENE
2021-09-13 23:39 - 2020-05-12 01:28 - 000020992 _____ C:\Windows\system32\Drivers\ene.sys
2021-09-13 23:39 - 2013-10-28 10:02 - 000022240 _____ C:\Windows\system32\Drivers\AppleCharger.sys
2021-09-13 23:39 - 2013-10-24 17:29 - 000022240 _____ C:\Windows\system32\Drivers\UsbCharger.sys
2021-09-13 23:39 - 2010-04-06 16:30 - 000031272 _____ C:\Windows\system32\AppleChargerSrv.exe
2021-09-13 23:37 - 2020-09-24 05:42 - 000449968 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2021-09-13 23:37 - 2020-09-24 05:42 - 000002291 ____N C:\Windows\system32\SetupBD.din
2021-09-13 23:36 - 2021-09-13 23:36 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-09-13 23:35 - 2021-01-15 04:51 - 002965904 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-09-13 23:35 - 2021-01-15 04:51 - 001477008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-09-13 23:35 - 2021-01-15 04:51 - 000219536 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-09-13 23:35 - 2021-01-15 04:51 - 000119664 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-09-13 23:35 - 2021-01-15 04:51 - 000073104 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-09-13 23:35 - 2021-01-15 04:51 - 000027536 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-09-13 23:35 - 2021-01-15 04:51 - 000023440 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-09-13 23:34 - 2021-09-13 23:34 - 000000000 ____D C:\ProgramData\Dell
2021-09-13 23:34 - 2021-09-13 23:34 - 000000000 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (3).txt
2021-09-13 23:33 - 2021-09-13 23:33 - 000000000 ____D C:\Users\Guille\Intel
2021-09-13 23:29 - 2021-09-13 23:29 - 010047488 _____ () C:\Windows\system32\BT_Socket.dll
2021-09-13 23:29 - 2021-09-13 23:29 - 000389632 _____ C:\Windows\system32\AutoGreenCP.dll
2021-09-13 23:28 - 2021-09-14 02:22 - 000030001 _____ C:\Windows\cFosSpeed_Setup_Log.txt
2021-09-13 23:27 - 2021-09-14 01:52 - 000026192 ____N (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2021-09-13 23:27 - 2021-09-13 23:27 - 000031152 _____ C:\Windows\system32\Drivers\pmxdrv.sys
2021-09-13 23:25 - 2021-09-13 23:37 - 000000000 ____D C:\Program Files\Intel
2021-09-13 23:24 - 2021-09-14 02:20 - 000000000 ____D C:\Program Files\Gigabyte
2021-09-13 23:22 - 2021-09-14 02:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2021-09-13 23:22 - 2021-09-14 02:22 - 000000000 ____D C:\Program Files (x86)\Intel
2021-09-13 23:22 - 2021-09-13 23:22 - 000000000 ____D C:\Program Files\Microsoft Synchronization Services
2021-09-13 23:22 - 2021-09-13 23:22 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2021-09-13 23:22 - 2021-09-13 23:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2021-09-13 23:22 - 2021-09-13 23:22 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2021-09-13 23:22 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2021-09-13 23:22 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2021-09-13 23:22 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2021-09-13 23:22 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2021-09-13 23:18 - 2021-09-13 23:18 - 000032600 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\gdrv2.sys
2021-09-13 23:17 - 2021-09-18 05:28 - 000000000 ____D C:\ProgramData\Package Cache
2021-09-13 23:17 - 2021-09-13 23:39 - 000000000 ____D C:\Users\Guille\AppData\Local\Downloaded Installations
2021-09-13 23:17 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\acpimof_ocpanel.dll
2021-09-13 23:09 - 2021-09-18 01:27 - 000000000 ____D C:\Windows\Minidump
2021-09-13 22:46 - 2021-09-14 03:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-09-13 22:09 - 2021-09-14 00:58 - 000000000 ____D C:\Users\Guille\Downloads\GIGABYTE DRIVERS Y UTILES
2021-09-13 21:46 - 2021-09-14 00:41 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2021-09-13 21:46 - 2021-09-14 00:41 - 000000000 ____D C:\Windows\system32\RTCOM
2021-09-13 21:46 - 2021-09-13 21:46 - 000000000 ____D C:\Program Files\Realtek
2021-09-13 21:44 - 2021-09-13 21:44 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-09-13 21:32 - 2021-09-22 02:42 - 001001438 _____ C:\Windows\ntbtlog.txt
2021-09-13 21:32 - 2021-09-22 01:13 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-09-13 21:25 - 2021-09-14 02:21 - 000000000 ____D C:\Program Files (x86)\GIGABYTE
2021-09-13 21:07 - 2021-09-13 21:07 - 000001122 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2021-09-13 21:07 - 2021-09-13 21:07 - 000000000 ____D C:\Users\Guille\AppData\Local\VS Revo Group
2021-09-13 21:07 - 2021-09-13 21:07 - 000000000 ____D C:\ProgramData\VS Revo Group
2021-09-13 21:07 - 2021-09-13 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2021-09-13 21:07 - 2021-09-13 21:07 - 000000000 ____D C:\Program Files\VS Revo Group
2021-09-13 21:07 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2021-09-13 21:06 - 2021-09-13 21:06 - 000000000 ____D C:\Users\Guille\Desktop\Revo Uninstaller Pro + Crack 2019
2021-09-13 20:59 - 2021-09-13 20:59 - 000000000 ____D C:\Users\Guille\Desktop\8703_Audio
2021-09-13 20:46 - 2019-04-15 14:13 - 002856624 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2021-09-13 20:38 - 2021-09-14 02:12 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-09-13 18:46 - 2021-09-21 23:37 - 000000000 ____D C:\Users\Guille\AppData\Roaming\vlc
2021-09-13 18:45 - 2021-09-13 18:45 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-09-13 18:45 - 2021-09-13 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-09-13 18:45 - 2021-09-13 18:45 - 000000000 ____D C:\Program Files\VideoLAN
2021-09-13 18:44 - 2021-09-13 18:44 - 042762464 _____ C:\Users\Guille\Desktop\vlc-3.0.16-win64.exe
2021-09-11 15:32 - 2021-09-11 15:33 - 119226800 _____ (Microsoft Corporation) C:\Users\Guille\Desktop\mpam-fe.exe
2021-09-11 14:36 - 2021-09-11 14:36 - 130052544 _____ (Microsoft Corporation) C:\Users\Guille\Desktop\MT.exe
2021-09-11 13:02 - 2021-08-10 19:42 - 000000768 _____ C:\Users\Guille\Desktop\a.bat
2021-09-11 13:00 - 2021-09-15 18:54 - 000000184 _____ C:\Users\Guille\Desktop\Nuevo documento de texto (2).txt
2021-09-11 12:58 - 2021-09-13 21:13 - 000000305 _____ C:\Users\Guille\Desktop\Nuevo documento de texto.txt
2021-09-11 12:58 - 2021-09-11 13:04 - 000000062 _____ C:\Users\Guille\Desktop\archivos modificados.bat
2021-09-11 03:58 - 2021-09-11 03:58 - 000000000 ____D C:\Users\Guille\AppData\LocalLow\Intel
2021-09-11 03:55 - 2021-09-13 23:49 - 000000000 ____D C:\ProgramData\Intel
2021-09-11 03:51 - 2021-09-14 03:02 - 000000000 ____D C:\Users\Guille\AppData\Local\Intel
2021-09-11 03:51 - 2021-09-14 01:18 - 000000000 __SHD C:\Users\Guille\IntelGraphicsProfiles
2021-09-11 03:51 - 2021-09-14 01:18 - 000000000 ____D C:\Intel
2021-09-11 03:51 - 2021-09-11 03:51 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
2021-09-11 03:51 - 2020-09-24 02:00 - 024297496 _____ (Intel Corporation) C:\Windows\system32\libmfxhw64.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 026651456 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 023003296 _____ (Intel Corporation) C:\Windows\SysWOW64\libmfxhw32.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 000437568 _____ C:\Windows\system32\ze_loader.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 000163600 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 000143168 _____ C:\Windows\system32\ze_validation_layer.dll
2021-09-11 03:51 - 2020-09-24 01:59 - 000138344 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll
2021-09-11 03:51 - 2020-09-24 01:58 - 013498176 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll
2021-09-11 03:51 - 2020-09-24 01:58 - 000128320 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-09-11 03:51 - 2020-09-24 01:58 - 000112960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-09-11 03:49 - 2021-09-11 03:49 - 000000000 ____D C:\Windows\SysWOW64\NV
2021-09-11 03:49 - 2021-09-11 03:49 - 000000000 ____D C:\Windows\system32\NV
2021-09-11 03:44 - 2021-09-22 03:15 - 000000000 ____D C:\ProgramData\NVIDIA

continuacion

2021-09-11 03:31 - 2021-09-14 01:54 - 000000000 ____D C:\Users\Guille\AppData\Local\ElevatedDiagnostics
2021-09-10 22:55 - 2021-09-09 22:21 - 004895346 _____ C:\Users\Guille\Desktop\CbsPersist_20210909203415.cab
2021-09-10 22:33 - 2021-09-09 22:05 - 000153088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthHfEnum.sys
2021-09-10 21:43 - 2021-09-19 17:36 - 000000000 ____D C:\Users\Guille\Documents\VirtualDJ
2021-09-10 21:43 - 2021-09-10 21:43 - 000000000 ____D C:\Users\Guille\Desktop\VirtualDJ
2021-09-10 20:24 - 2021-09-10 20:24 - 000002714 _____ C:\Users\Guille\Desktop\FSsssS.txt
2021-09-10 20:03 - 2021-09-22 01:55 - 000004055 _____ C:\Users\Guille\Desktop\FSS.txt
2021-09-10 20:02 - 2021-09-10 20:03 - 000909824 _____ (Farbar) C:\Users\Guille\Desktop\fiber.exe
2021-09-10 18:07 - 2021-09-10 18:07 - 000000000 ____D C:\Users\Guille\Desktop\Atomix.Virtual.DJ.Contents (Include Plugins, Sound Effects, Samples and Skins)
2021-09-10 01:54 - 2021-09-19 17:34 - 000000000 ____D C:\Program Files\VirtualDJ
2021-09-10 01:54 - 2021-09-10 18:20 - 000000000 ____D C:\Users\Guille\Documents\VirtualDJ0
2021-09-10 01:54 - 2021-09-10 01:54 - 000000000 ____D C:\Users\Guille\AppData\Roaming\NVIDIA
2021-09-10 01:54 - 2021-09-10 01:54 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2021-09-10 01:54 - 2021-09-10 01:54 - 000000000 ____D C:\Users\Guille\AppData\Local\VirtualDJ
2021-09-10 01:52 - 2021-09-10 01:52 - 000000000 ____D C:\Users\Guille\Desktop\VRTDJ2K21.8.5.AP.ZNT
2021-09-10 01:52 - 2021-09-10 01:52 - 000000000 ____D C:\Users\Guille\Desktop\8.5.6613-PVP
2021-09-10 01:51 - 2021-09-10 01:52 - 748601742 _____ C:\Users\Guille\Desktop\VRTDJ2K21.8.5.AP.ZNT.rar
2021-09-10 01:51 - 2021-09-10 01:51 - 000000000 ____D C:\Users\Guille\AppData\Roaming\WinRAR
2021-09-10 01:51 - 2021-09-10 01:51 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-09-10 01:51 - 2021-09-10 01:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-09-10 01:51 - 2021-09-10 01:51 - 000000000 ____D C:\Program Files\WinRAR
2021-09-10 01:48 - 2021-09-10 01:48 - 750760254 _____ C:\Users\Guille\Desktop\8.5.6613-PVP.rar
2021-09-10 01:46 - 2021-09-10 01:46 - 078841167 _____ C:\Users\Guille\Desktop\Atomix.Virtual.DJ.Contents (Include Plugins, Sound Effects, Samples and Skins).rar
2021-09-10 01:10 - 2021-09-10 01:10 - 128627136 _____ (Microsoft Corporation) C:\Users\Guille\Desktop\jjjjuyyy.exe
2021-09-10 01:09 - 2021-09-10 01:09 - 128627136 _____ (Microsoft Corporation) C:\Users\Guille\Downloads\MSERT.exe
2021-09-09 23:04 - 2021-09-09 22:13 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
2021-09-09 23:02 - 2021-09-21 04:50 - 000007650 _____ C:\Users\Guille\AppData\Local\Resmon.ResmonCfg
2021-09-09 22:50 - 2021-09-17 20:00 - 000000000 ____D C:\Users\Guille\AppData\Local\CrashDumps
2021-09-09 22:49 - 2021-09-09 22:49 - 000000000 ____D C:\Users\Guille\AppData\Local\cache
2021-09-09 22:45 - 2021-09-09 22:45 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-09-09 22:45 - 2021-09-09 22:45 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-09-09 22:45 - 2021-09-09 22:45 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-09 22:45 - 2021-09-09 22:45 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-09-09 22:45 - 2021-09-09 22:45 - 000000000 ____D C:\Users\Guille\AppData\Local\mbam
2021-09-09 22:45 - 2021-09-09 22:45 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-09-09 22:44 - 2021-09-09 22:44 - 002101944 _____ (Malwarebytes) C:\Users\Guille\Downloads\MBSetup.exe
2021-09-09 22:44 - 2021-09-09 22:44 - 000000000 ____D C:\Program Files\Malwarebytes
2021-09-09 22:41 - 2021-09-15 19:40 - 000000000 ____D C:\inetpub
2021-09-09 22:41 - 2021-09-09 22:41 - 001996816 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Windows\SysWOW64\BestPractices
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Windows\system32\BestPractices
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Program Files\MSBuild
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-09-09 22:41 - 2021-09-09 22:41 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-09-09 22:40 - 2019-12-03 14:04 - 000781384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2021-09-09 22:40 - 2019-12-03 14:04 - 000105544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2021-09-09 22:40 - 2019-12-03 14:04 - 000037864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2021-09-09 22:40 - 2019-11-08 14:44 - 001168968 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2021-09-09 22:40 - 2019-11-08 14:44 - 000127056 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2021-09-09 22:40 - 2019-11-08 14:44 - 000038072 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2021-09-09 22:25 - 2021-09-15 22:55 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-09-09 22:25 - 2021-09-15 22:55 - 000002393 _____ C:\Users\Public\Desktop\Brave.lnk
2021-09-09 22:25 - 2021-09-09 22:25 - 000000000 ____D C:\Program Files\BraveSoftware
2021-09-09 22:24 - 2021-09-15 20:30 - 000000000 ____D C:\Windows\Panther
2021-09-09 22:24 - 2021-09-09 22:25 - 000000000 ____D C:\Users\Guille\AppData\Local\BraveSoftware
2021-09-09 22:24 - 2021-09-09 22:24 - 001243560 _____ (BraveSoftware Inc.) C:\Users\Guille\Downloads\BraveBrowserSetup.exe
2021-09-09 22:24 - 2021-09-09 22:24 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-09-09 22:14 - 2021-09-09 22:14 - 019866112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 018767872 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 008238592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 007776768 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 007632792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 007111168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 006920704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 006360648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 006001232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 005016064 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 004783616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 004629312 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 004493312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 004419688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 004315136 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 003824712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 003664384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 003567928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002991944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 002923944 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002844672 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002637704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002453384 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2021-09-09 22:14 - 2021-09-09 22:14 - 002433024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002348544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002345424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002183256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002137248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2021-09-09 22:14 - 2021-09-09 22:14 - 002122848 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001982264 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001963712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001956552 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001951744 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001887776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001826880 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001770576 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001751424 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001721168 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001696760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001660928 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001633104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001506632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001475072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001468928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12Core.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001335656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001315144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001313608 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-09-09 22:14 - 2021-09-09 22:14 - 001301592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001296384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001148928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001133056 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001127424 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001126488 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001125888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001100800 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001097216 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001073664 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001066040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001029632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001019904 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001014896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001013352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 001005568 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000988672 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000980328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000978944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000977920 _____ (Microsoft Corporation) C:\Windows\system32\PayloadRestrictions.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000971776 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000969032 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000964776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000926560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000921600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000902656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000896096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000896000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000894976 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000861696 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000858880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000853504 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000836096 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000820224 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000790344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000787968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000762704 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000761856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000753592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000714752 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000710656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PayloadRestrictions.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000708096 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000707536 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000678200 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000676864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000672768 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\NgcIsoCtnr.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000649736 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000646472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000640800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000615424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000615424 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000608768 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000603984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000601088 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000586752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000577872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000572928 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000570368 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-09-09 22:14 - 2021-09-09 22:14 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000547328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000542864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000535584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000529968 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000509256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000502600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2021-09-09 22:14 - 2021-09-09 22:14 - 000482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000475448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000468992 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrGidsHandler.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000452480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppResolver.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000452096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-09-09 22:14 - 2021-09-09 22:14 - 000436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000422912 _____ (Microsoft Corporation) C:\Windows\system32\FrameServerClient.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000416880 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000413680 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000413256 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000388096 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000383784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000360960 _____ (Microsoft Corporation) C:\Windows\system32\GameBarPresenceWriter.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000353264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsensorgroup.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FrameServerClient.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadauthhelper.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\dmenterprisediagnostics.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000322560 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000307512 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000304344 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000289792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.FileExplorer.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000250368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameBarPresenceWriter.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\devicengccredprov.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000232784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NetAdapterCx.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32

continnuacion

\Robocopy.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000177152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devicengccredprov.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngckeyenum.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000152392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbrand.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000142136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000140976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\pcwutl.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000132936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcl.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000118072 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000101312 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000095056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000093128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2021-09-09 22:14 - 2021-09-09 22:14 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\klist.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\ngclocal.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\KeyCredMgr.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditBufferTestHook.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\edpnotify.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngclocal.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KeyCredMgr.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mskeyprotect.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edpnotify.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000046392 _____ (Microsoft Corporation) C:\Windows\system32\wininitext.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000037688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininitext.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\bdeui.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WordBreakers.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemEventsBrokerClient.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000021328 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsregtask.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\pcwrun.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\GameBarPresenceWriter.proxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameBarPresenceWriter.proxy.dll
2021-09-09 22:14 - 2021-09-09 22:14 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2021-09-09 22:14 - 2021-09-09 22:14 - 000003584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCertResources.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 017539584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 008016600 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 007964480 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 006413312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 006191616 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 005754856 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 004850432 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 004732928 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003919872 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003826688 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003814216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 003750400 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003507504 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003232056 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 003182080 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 003143168 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002851656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 002826240 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002594640 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002503520 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002466816 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002308096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002077696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002024728 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002007368 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 002004808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 001862016 _____ (Microsoft Corporation) C:\Windows\system32\D3D12Core.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001829192 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001823304 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-09-09 22:13 - 2021-09-09 22:13 - 001780736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001708056 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001655296 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001638400 _____ (Microsoft Corporation) C:\Windows\system32\MoUsoCoreWorker.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001580544 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001571840 _____ (Microsoft Corporation) C:\Windows\system32\ConstraintIndex.Search.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001563136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 001556192 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001523200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001427456 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001413632 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001394008 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001393480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-09-09 22:13 - 2021-09-09 22:13 - 001383144 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001366528 _____ (Microsoft Corporation) C:\Windows\system32\tsf3gip.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001340416 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001327416 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001298992 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001223576 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001214264 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001213232 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001208832 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001197744 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001147904 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001118208 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001101824 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001096192 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001092424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001032704 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 001015944 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 001012736 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000935424 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000902984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000892928 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000876344 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000867328 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000856336 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000852280 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000813568 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000804864 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000786744 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000778752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000770144 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000764728 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000758272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000755712 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000746912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000715088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000713728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000677888 _____ (Microsoft Corporation) C:\Windows\system32\WFDSConMgrSvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000672056 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000668672 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000664064 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000648016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2021-09-09 22:13 - 2021-09-09 22:13 - 000645112 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000635840 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000629248 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000602424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000598344 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000598016 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000582088 _____ (Microsoft Corporation) C:\Windows\system32\AppResolver.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000581944 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000569856 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000569344 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000543232 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000522064 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000490808 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000490496 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000488960 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000479544 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000475976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\aadauthhelper.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000454992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000432856 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000423760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\BthAvctpSvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\AppLockerCSP.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000382696 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManager.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000382464 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000382464 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000268616 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000266056 _____ (Microsoft Corporation) C:\Windows\system32\WinREAgent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\ngcrecovery.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000251904 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\ManageCI.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000214840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000214016 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000210944 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000204560 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000204288 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\cimfs.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000180024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\NgcProCsp.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000166312 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000164864 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000160056 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000156488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000152912 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000143360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000134992 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000124752 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\dmclient.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000118096 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2021-09-09 22:13 - 2021-09-09 22:13 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000102712 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000089600 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000069744 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\mskeyprotect.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000057656 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\diagnosticdataquery.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2021-09-09 22:13 - 2021-09-09 22:13 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000039760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\dsregtask.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\sbservicetrigger.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\CSystemEventsBrokerClient.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000022864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000020280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\applockerfltr.sys
2021-09-09 22:13 - 2021-09-09 22:13 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32

continua

\wsmplpxy.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2021-09-09 22:13 - 2021-09-09 22:13 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2021-09-09 22:13 - 2021-09-09 22:13 - 000003584 _____ (Microsoft Corporation) C:\Windows\system32\TpmCertResources.dll
2021-09-09 22:09 - 2021-09-09 22:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-09 22:09 - 2021-08-17 01:22 - 000740168 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2021-09-09 22:09 - 2021-08-17 01:22 - 000486728 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 032608744 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 031595328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 007546576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 005351440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 004824576 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 004283904 _____ (Microsoft Corporation) C:\Windows\system32\DHolographicDisplay.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 004273152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 003867136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 003378936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 002523624 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 002254544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001669632 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001537096 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001431040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001351168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001264128 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001182248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001146880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 001096704 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000995328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000922112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\opengl32.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000844800 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000800056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2021-09-09 22:07 - 2021-09-09 22:07 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\quickassist.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000645120 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000612352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000592896 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000580608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000573272 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000538120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000527872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quickassist.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000477184 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000425472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000423240 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000394240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000338432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000266976 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000264432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000263920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glu32.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000240696 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000240200 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AnalogShell.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000211968 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000203536 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000176632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2021-09-09 22:07 - 2021-09-09 22:07 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\raserver.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000129112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raserver.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcXtrnal.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvvmtransport.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcWinRT.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-09-09 22:07 - 2021-09-09 22:07 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\signdrv.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\MSHEIF.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSHEIF.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2021-09-09 22:07 - 2021-09-09 22:07 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2021-09-09 22:07 - 2021-09-09 22:07 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb
2021-09-09 22:07 - 2021-09-09 22:07 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2021-09-09 22:07 - 2021-09-09 22:07 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rendezvousSession.tlb
2021-09-09 22:07 - 2021-09-09 22:07 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\rendezvousSession.tlb
2021-09-09 22:06 - 2021-09-09 22:07 - 005827584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 026269184 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 014755840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 009037312 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 006725120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 006030336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 004901376 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 004373688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 004025344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Controls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 004008960 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003949056 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003859968 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003762688 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003493888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003329536 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003301376 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003177808 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003093504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 003068416 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002970624 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002908160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002809272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-09-09 22:06 - 2021-09-09 22:06 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-09-09 22:06 - 2021-09-09 22:06 - 002753536 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002602496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002586112 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002573824 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002542592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002495288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002473072 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002438144 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002378752 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 002371072 _____ C:\Windows\system32\rdpnano.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002309120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002269488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002203136 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002177024 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002118184 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002117632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002100112 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002084352 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002036224 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 002007552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001968640 _____ (Microsoft Corporation) C:\Windows\system32\DeviceFlows.DataModel.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001951384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001891408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001886720 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001872384 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001867264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001843712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001843712 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001831424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001824768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001785856 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001784480 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001768784 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001765376 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001721856 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001719296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001646592 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001576272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 001566608 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001522688 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001510296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001494016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001488720 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001487360 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001478960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 001459712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001440256 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001434112 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001387520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001372672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001360384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001343488 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001332536 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001326592 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001318720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001277440 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 001268224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001260544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001258256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001240576 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_IME.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001236792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001234944 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001229624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001225016 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001217024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001215368 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001177624 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 001139512 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001128536 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 001126400 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001118240 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001076368 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001075864 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001075712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Signals.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001062400 _____ (Microsoft Corporation) C:\Windows\system32\opengl32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001056760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001051136 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2021-09-09 22:06 - 2021-09-09 22:06 - 001048888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001044992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001042256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001041920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001036800 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001019904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001018488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001003048 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 001000944 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000995840 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000986032 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000985600 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000984416 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000973824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000964096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000956928 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000944640 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000943432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000939472 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000935424 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000931328 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000931328 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000930304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000921400 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000913712 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000901120 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000897128 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000895040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000892928 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000887296 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2021-09-09 22:06 - 2021-09-09 22:06 - 000885248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000884744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000877568 _____ (Microsoft Corporation) C:\Windows\system32\Spectrum.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000867328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000863232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000851968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000831544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000831488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000830520 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000828416 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000827944 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000827696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000821248 _____ (Microsoft Corporation) 

sigue

C:\Windows\system32\msfeeds.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000820016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000816536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\PerceptionSimulationManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000803840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devmgr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000797696 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000797696 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000797496 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000791808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000787624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000786080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000785408 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000781432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000780288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000773728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000771584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000765400 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000758176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000755200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000753664 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000752024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000751616 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000744880 _____ (Microsoft Corporation) C:\Windows\system32\BioIso.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000743936 _____ (Microsoft Corporation) C:\Windows\system32\d3d9on12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000716608 _____ (Microsoft Corporation) C:\Windows\system32\upshared.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000715264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000714240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000711760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000708608 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000704496 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000702792 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000697856 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000692224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntime.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000689552 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\LockController.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000680696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000669184 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\SmsRouterSvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntimewindows.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000628736 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000628224 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000624976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000622592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000610304 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000606888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000603448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000600064 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000600064 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000598016 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000595504 _____ (Microsoft Corporation) C:\Windows\system32\d3d11on12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000587224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000585216 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000568632 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000568144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000567112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000565248 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000561152 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000560640 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000556544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9on12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000551424 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000550912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000548528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\DMPushRouterCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000536912 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000529416 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000524800 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000521104 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000518584 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000515072 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2021-09-09 22:06 - 2021-09-09 22:06 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000489656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000488608 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000487936 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000482640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2021-09-09 22:06 - 2021-09-09 22:06 - 000462784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11on12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000456192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000453120 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000449856 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000442168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000441344 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000441344 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000436424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000436224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000435712 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000435000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000421496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000421376 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000420440 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000419328 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000412984 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000410088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000403456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000401720 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000400384 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000391488 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000388608 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000385848 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000385024 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000382976 _____ (Microsoft Corporation) C:\Windows\system32\DispBroker.Desktop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000382792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000382464 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000379904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000377856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.FileExplorer.Common.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000374488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\DispBroker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000362496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AarSvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000352816 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000348080 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HrtfApo.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000343040 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000342416 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2021-09-09 22:06 - 2021-09-09 22:06 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000336896 _____ (Microsoft Corporation) C:\Windows\system32\WpcApi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000336896 _____ (Microsoft Corporation) C:\Windows\system32\pnputil.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Authentication.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000331128 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000330056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000321720 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000317952 _____ (Microsoft Corporation) C:\Windows\system32\windows.internal.shellcommon.shareexperience.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000306176 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000305664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000305264 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000302080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000298000 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000296240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000295440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000289608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000287688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000287232 _____ C:\Windows\system32\CoreMas.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000286720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000282112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.FileExplorer.Common.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\MTFServer.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000275968 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000275968 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000275808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DispBroker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000272384 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\DesktopSwitcherDataModel.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\ngctasks.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000260096 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000253024 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000250976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000247296 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ManagePhone.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000246784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000244736 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000239416 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000238080 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000236536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Region.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2021-09-09 22:06 - 2021-09-09 22:06 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\ApproveChildRequest.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000230736 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.Desktop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\SpatializerApo.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000228680 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\EapTeapAuth.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000215920 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000212328 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldpc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000207080 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000202984 _____ (Microsoft Corporation) C:\Windows\system32\devobj.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000202568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000201552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000195776 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Troubleshoot.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000195744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.ShellCommon.Broker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000195696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000192312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2021-09-09 22:06 - 2021-09-09 22:06 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\EapTeapConfig.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000188240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000186488 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000185680 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000184888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\OneSettingsClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000182584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatializerApo.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\umpoext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000180024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ContentDeliveryManager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000177968 _____ (Microsoft Corporation) C:\Windows\system32\aadWamExtension.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\WPTaskScheduler.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000171592 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\wslapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000169408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000168376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000166304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\glu32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000159056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000157048 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000157016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\dssenh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000155976 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\joinutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\updatecsp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\SettingsExtensibilityHandlers.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000149832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ulib.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000148816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Storage.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000146248 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneSettingsClient.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\joinutil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000137016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadWamExtension.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EapTeapConfig.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000134280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssenh.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000133760 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000133432 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000131152 _____ (Microsoft Corporation) C:\Windows\system32\PickerHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000126552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\cldapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000118592 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000117208 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\spfileq.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\pnppolicy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\wsl.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\fingerprintcredential.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000106312 _____ (Microsoft Corporation) C:\Windows\system32\cmifw.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticInvoker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\bindfltapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\winhttpcom.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cldapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\fwmdmcsp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\aadjcsp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000100168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000098120 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessHandlers.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000097096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000096032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000095032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\EhStorClass.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\AtBroker.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spfileq.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\efslsaext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\DmApiSetExtImplDesktop.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000090928 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\wiashext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000089600 _____ (Microsoft Corporation) C:\Windows\system32\rdvvmtransport.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000086840 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fingerprintcredential.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000086344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmifw.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000086320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CEA.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\DiskSnapshot.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-09-09 22:06 - 2021-09-09 22:06 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000083152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttpcom.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\EventAggregation.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DiagnosticInvoker.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000077504 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManagerForUser.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\efsext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000073328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\edptask.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AtBroker.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\AcWinRT.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiashext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\bidispl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\dwmghost.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\devrtl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000057144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\condrv.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PlatformExtension.MiracastBannerExperience.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\PCShellCommonProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\signdrv.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bidispl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\dmocx.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnosticsTool.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\wifidatacapabilityhandler.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmocx.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afunix.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000040272 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkPS.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acwow64.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\ProductEnumerator.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000036176 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\CIDiag.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\fsutilext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000033080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCShellCommonProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Drivers\afunix.sys
2021-09-09 22:06 - 2021-09-09 22:06 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dmpushproxy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\cmdext.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000027464 _____ (Microsoft Corporation) C:\Windows\system32\kdstub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll

sigue

2021-09-09 22:06 - 2021-09-09 22:06 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\wci.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscisvif.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmpushproxy.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000017200 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\AcXtrnal.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscproxystub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000012080 _____ (Microsoft Corporation) C:\Windows\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\wscadminui.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscadminui.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2021-09-09 22:06 - 2021-09-09 22:06 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAppsRes.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2021-09-09 22:06 - 2021-09-09 22:06 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\DMAppsRes.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 001521152 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000934912 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000889856 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000809288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000678736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000644424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000608568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2021-09-09 22:05 - 2021-09-09 22:05 - 000493568 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreCommonProxyStub.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000487936 _____ (Microsoft Corporation) C:\Windows\system32\MitigationClient.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000475136 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\HrtfApo.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000421696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MbbCx.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000293176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000287232 _____ (Microsoft Corporation) C:\Windows\system32\wosc.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.System.UserProfile.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000224080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000215864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000186184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000181248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000160080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000136504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2021-09-09 22:05 - 2021-09-09 22:05 - 000118096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000117584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000080072 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000079160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\uaspstor.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000061256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000057168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000056632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000054080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000030024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000029440 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000019784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2021-09-09 22:05 - 2021-09-09 22:05 - 000016696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2021-09-09 22:05 - 2021-09-09 22:05 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-09-09 22:01 - 2021-09-10 00:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-09-09 22:01 - 2021-09-09 22:01 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2021-09-09 22:01 - 2021-09-09 22:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-09-09 22:00 - 2020-10-07 13:36 - 001769688 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-09-09 22:00 - 2020-10-07 13:36 - 001769688 _____ C:\Windows\system32\vulkaninfo.exe
2021-09-09 22:00 - 2020-10-07 13:36 - 001370328 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-09-09 22:00 - 2020-10-07 13:36 - 001370328 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-09-09 22:00 - 2020-10-07 13:36 - 001054936 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-09-09 22:00 - 2020-10-07 13:36 - 001054936 _____ C:\Windows\system32\vulkan-1.dll
2021-09-09 22:00 - 2020-10-07 13:36 - 000917720 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-09-09 22:00 - 2020-10-07 13:36 - 000917720 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 001023216 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 000816368 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 000673520 _____ C:\Windows\system32\nvofapi64.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 000670616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 000555248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-09-09 22:00 - 2020-10-07 13:34 - 000543128 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 007707544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 006860184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 004174064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 002508528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 002098072 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 001585560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 001507224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 001161112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 000813464 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 000657304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-09-09 22:00 - 2020-10-07 13:33 - 000589208 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-09-09 22:00 - 2020-10-07 13:33 - 000445848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-09-09 22:00 - 2020-10-07 13:32 - 005519600 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-09-09 22:00 - 2020-10-07 13:32 - 000849648 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-09-09 22:00 - 2020-10-07 13:29 - 007001536 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-09-09 22:00 - 2020-10-07 13:29 - 005972824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-09-09 22:00 - 2020-10-07 13:11 - 000080930 _____ C:\Windows\system32\nvinfo.pb
2021-09-09 21:59 - 2021-09-15 16:17 - 000000000 ____D C:\Windows\system32\MRT
2021-09-09 21:59 - 2021-09-15 16:15 - 135637312 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-09-09 21:59 - 2021-09-09 21:58 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-09-09 21:50 - 2021-09-09 23:50 - 000000008 _____ C:\Users\Guille\Desktop\7HNRX-D7KGG-3K4RQ-4WPJ4-YTDFH.txt
2021-09-09 21:31 - 2021-09-22 02:59 - 002094314 _____ C:\Windows\system32\PerfStringBackup.INI
2021-09-09 21:30 - 2021-09-09 21:30 - 000000000 ___RD C:\Users\Guille\OneDrive
2021-09-09 21:30 - 2021-09-09 21:30 - 000000000 ____D C:\Users\Guille\AppData\Local\Comms
2021-09-09 21:29 - 2021-09-19 20:42 - 000000000 ____D C:\Users\Guille\AppData\Local\D3DSCache
2021-09-09 21:29 - 2021-09-09 21:29 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-09-09 21:28 - 2021-04-09 15:55 - 002877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-09-09 21:27 - 2021-09-19 07:19 - 000000000 ____D C:\Users\Guille\AppData\Local\Packages
2021-09-09 21:27 - 2021-09-18 20:06 - 000000000 ____D C:\Users\Guille\AppData\Local\ConnectedDevicesPlatform
2021-09-09 21:27 - 2021-09-18 16:54 - 000000000 ____D C:\Users\Guille
2021-09-09 21:27 - 2021-09-15 01:19 - 000000000 ____D C:\ProgramData\Packages
2021-09-09 21:27 - 2021-09-14 22:45 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-09-09 21:27 - 2021-09-11 03:51 - 000000000 ____D C:\Users\Guille\AppData\Local\Publishers
2021-09-09 21:27 - 2021-09-09 21:27 - 000000020 ___SH C:\Users\Guille\ntuser.ini
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Reciente
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Plantillas
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Mis documentos
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Menú Inicio
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Impresoras
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Entorno de red
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Documents\Mis vídeos
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Documents\Mis imágenes
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Documents\Mi música
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Datos de programa
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\Configuración local
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\AppData\Local\Historial
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\AppData\Local\Datos de programa
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 _SHDL C:\Users\Guille\AppData\Local\Archivos temporales de Internet
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 ___RD C:\Users\Guille\3D Objects
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 ____D C:\Users\Guille\AppData\Roaming\Adobe
2021-09-09 21:27 - 2021-09-09 21:27 - 000000000 ____D C:\Users\Guille\AppData\Local\VirtualStore
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Reciente
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Plantillas
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Mis documentos
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Impresoras
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Entorno de red
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Datos de programa
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\Configuración local
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Plantillas
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Escritorio
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Documentos
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\ProgramData\Datos de programa
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Program Files\Archivos comunes
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Documents and Settings
2021-09-09 21:26 - 2021-09-09 21:26 - 000000000 _SHDL C:\Archivos de programa
2021-09-09 21:25 - 2021-09-22 03:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-09-09 21:25 - 2021-09-22 02:55 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-09-09 21:25 - 2021-09-18 00:57 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-09 21:25 - 2021-09-17 17:39 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-09 21:25 - 2021-09-15 18:26 - 000258152 _____ C:\Windows\system32\FNTCACHE.DAT
2021-09-09 21:25 - 2021-09-09 21:59 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-09-09 21:25 - 2021-09-09 21:25 - 000000000 ____D C:\Windows\ServiceProfiles

termina

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-09-22 04:16 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-09-22 03:59 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-09-22 02:59 - 2019-12-07 16:55 - 000895230 _____ C:\Windows\system32\perfh00A.dat
2021-09-22 02:59 - 2019-12-07 16:55 - 000204274 _____ C:\Windows\system32\perfc00A.dat
2021-09-22 02:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-22 02:54 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-09-22 02:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2021-09-20 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-09-19 07:19 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-09-18 20:11 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-18 01:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-09-18 01:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-09-17 03:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\inetsrv
2021-09-16 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Registration
2021-09-16 01:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2021-09-16 01:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-09-16 01:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\spool
2021-09-15 22:49 - 2021-04-09 15:55 - 000206152 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\vpcivsp.sys
2021-09-15 20:41 - 2019-12-07 16:55 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-09-15 20:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemApps
2021-09-15 19:24 - 2019-12-07 11:10 - 000047974 _____ C:\Windows\system32\IIsScHlp.wsc
2021-09-15 19:24 - 2019-12-07 11:10 - 000041401 _____ C:\Windows\system32\IIsExt.vbs
2021-09-15 19:24 - 2019-12-07 11:10 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\infoadmn.dll
2021-09-15 19:24 - 2019-12-07 11:10 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\infoctrs.dll
2021-09-15 19:23 - 2019-12-07 11:10 - 000047974 _____ C:\Windows\SysWOW64\IIsScHlp.wsc
2021-09-15 19:23 - 2019-12-07 11:10 - 000041401 _____ C:\Windows\SysWOW64\IIsExt.vbs
2021-09-15 19:23 - 2019-12-07 11:10 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\aspperf.dll
2021-09-15 19:23 - 2019-12-07 11:10 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspperf.dll
2021-09-15 19:23 - 2019-12-07 11:10 - 000018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infoadmn.dll
2021-09-15 19:23 - 2019-12-07 11:10 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infoctrs.dll
2021-09-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-09-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-09-14 23:01 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-09-14 22:50 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-09-14 22:45 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-09-14 01:45 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Sysprep
2021-09-13 18:55 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2021-09-10 03:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2021-09-09 22:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-09-09 22:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\MUI
2021-09-09 22:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\MUI
2021-09-09 22:40 - 2021-04-09 15:57 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2021-09-09 22:40 - 2021-04-09 15:57 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2021-09-09 22:40 - 2021-04-09 15:57 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\cngkeyhelper.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngkeyhelper.dll
2021-09-09 22:40 - 2021-04-09 15:57 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2021-09-09 22:24 - 2019-12-07 11:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack
2021-09-09 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-09-09 22:09 - 2019-12-07 16:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2021-09-09 21:59 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-09-09 21:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-09-09 21:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-09-09 21:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-09-09 21:28 - 2019-12-07 16:56 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-09-09 21:26 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT

==================== Archivos en la raíz de algunos directorios ========

2021-09-09 23:02 - 2021-09-21 04:50 - 000007650 _____ () C:\Users\Guille\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

el adition ahora

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 20-09-2021
Ejecutado por Guille (22-09-2021 04:50:22)
Ejecutado desde C:\Users\Guille\Desktop
Windows 10 Home Single Language Versión 21H1 19043.1237 (X64) (2021-09-09 19:27:01)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-333854507-3505949864-680918485-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-333854507-3505949864-680918485-503 - Limited - Disabled)
Guille (S-1-5-21-333854507-3505949864-680918485-1001 - Administrator - Enabled) => C:\Users\Guille
Invitado (S-1-5-21-333854507-3505949864-680918485-501 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-333854507-3505949864-680918485-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 93.1.29.81 - Los creadores de Brave)
CPUID CPU-Z Aorus 1.87 (HKLM\...\CPUID CPU-Z Aorus_is1) (Version: 1.87 - CPUID, Inc.)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.101.0 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Network Connections 25.4.0.6 (HKLM\...\PROSetDX) (Version: 25.4.0.6 - Intel)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Kodi (HKU\S-1-5-21-333854507-3505949864-680918485-1001\...\Kodi) (Version:  - XBMC Foundation)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 93.0.961.52 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Mozilla Firefox (x64 es-ES) (HKLM\...\Mozilla Firefox 92.0 (x64 es-ES)) (Version: 92.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 92.0 - Mozilla)
NVIDIA Controlador de gráficos 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Software para dispositivos de chipset Intel® (HKLM-x32\...\{49bc1e38-39b4-4728-9e75-cbe67ba9a329}) (Version: 10.1.1.42 - Intel(R) Corporation) Hidden
SoulseekQt versión 2019.7.22 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2019.7.22 - Soulseek LLC)
VirtualDJ 2021 (HKLM\...\{31F98891-DBC9-4557-AF67-B75DD0DD913B}) (Version: 8.5.6503.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)

Packages:
=========
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-09-14] (INTEL CORP) [Startup Task]
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1020.0_x64__8j3eq9eme6ctt [2021-09-14] (INTEL CORP)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.28.255.0_x64__dt26b99r8h8gj [2021-09-14] (Realtek Semiconductor Corp)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-333854507-3505949864-680918485-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Guille\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-333854507-3505949864-680918485-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Guille\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-333854507-3505949864-680918485-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Guille\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => Ningún archivo
ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_867a8324743ce1b8\OptaneShellExt.dll [2021-01-15] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-09-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_867a8324743ce1b8\OptaneShellExt.dll [2021-01-15] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll [2020-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-09-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\Guille\Desktop\YouTube.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\chrome_proxy.exe (Brave Software, Inc.) ->  --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Brave\YouTube.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\chrome_proxy.exe (Brave Software, Inc.) ->  --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-333854507-3505949864-680918485-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Guille\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "Gigabyte Speed"
HKU\S-1-5-21-333854507-3505949864-680918485-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_F24D83C439DEA2B7015D633A6CA01E1B"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [RemoteAssistance-DCOM-In-TCP-NoScope-Active] => (Block) C:\Windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TCP Query User{2CBADE5F-7340-4459-BFBA-ADD2F5A1EEA8}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{CFB1657C-1DEB-4AF2-8E1A-2EB3710E4977}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Archivo no firmado]
FirewallRules: [{18140772-88AF-448D-82E0-F32CD70FB568}] => (Block) C:\Program Files\VirtualDJ\virtualdj.exe (Atomix Productions) [Archivo no firmado]
FirewallRules: [{7C80707C-69C0-428D-B2C6-E57115264E4D}] => (Block) C:\Program Files\VirtualDJ\virtualdj.exe (Atomix Productions) [Archivo no firmado]

==================== Puntos de Restauración =========================

21-09-2021 23:23:32 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (09/22/2021 02:48:34 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SystemSettings.exe (versión 10.0.19041.1202) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: a44

Hora de Inicio: 01d7af4b7a5e2d36

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

Id. de informe: e38c7e91-29c6-42d4-978f-3d35d08e17fc

Nombre completo del paquete con errores: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

Id. de la aplicación relativa al paquete con errores: microsoft.windows.immersivecontrolpanel

Tipo de bloqueo: Quiesce

Error: (09/22/2021 02:00:52 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/22/2021 01:54:58 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/22/2021 01:54:58 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/22/2021 01:52:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/22/2021 01:12:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SystemSettings.exe (versión 10.0.19041.1202) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 10a4

Hora de Inicio: 01d7af3bb98b2a77

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

Id. de informe: bd1a7950-cd9b-4c91-aede-4f604f5c81ed

Nombre completo del paquete con errores: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

Id. de la aplicación relativa al paquete con errores: microsoft.windows.immersivecontrolpanel

Tipo de bloqueo: Quiesce

Error: (09/22/2021 12:39:42 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/22/2021 12:33:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.


Errores del sistema:
=============
Error: (09/22/2021 04:12:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Detección SSDP depende del servicio Servicio HTTP, el cual no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (09/22/2021 04:12:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio HTTP no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (09/22/2021 04:12:47 AM) (Source: HTTP) (EventID: 15021) (User: )
Description: Error al usar la configuración de SSL para el extremo Type=1 Index=1. El código de estado del error se incluye en los datos devueltos.

Error: (09/22/2021 03:54:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Detección SSDP depende del servicio Servicio HTTP, el cual no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (09/22/2021 03:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio HTTP no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (09/22/2021 03:54:47 AM) (Source: HTTP) (EventID: 15021) (User: )
Description: Error al usar la configuración de SSL para el extremo Type=1 Index=1. El código de estado del error se incluye en los datos devueltos.

Error: (09/22/2021 02:58:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Detección SSDP depende del servicio Servicio HTTP, el cual no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (09/22/2021 02:58:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio HTTP no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.


Windows Defender:
================
Date: 2021-09-22 04:14:05
Description: 
El acceso controlado a carpetas bloqueó C:\Program Files (x86)\SoulseekQt\SoulseekQt.exe para que no pueda modificar %userprofile%\Documents.
Hora de detección: 2021-09-22T02:14:05.198Z
Usuario: DESKTOP-88F78NK\Guille
Ruta de acceso: %userprofile%\Documents
Nombre del proceso: C:\Program Files (x86)\SoulseekQt\SoulseekQt.exe
Versión de inteligencia de seguridad: 1.349.1113.0
Versión del motor: 1.1.18500.10
Versión del producto: 4.18.2108.7

Date: 2021-09-22 03:39:20
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {146475E8-B4C3-4A55-A68B-D23685BB78BC}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-09-22 03:11:51
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {36418C21-BE23-42BD-8C24-1F98D6D39B92}
Tipo de examen: Antimalware
Parámetros de examen: Examen completo
Usuario: DESKTOP-88F78NK\Guille

Date: 2021-09-22 02:58:19
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {586EB2E0-260F-4154-B3B2-13D0BE2E73BC}
Tipo de examen: Antimalware
Parámetros de examen: Examen completo
Usuario: DESKTOP-88F78NK\Guille

Date: 2021-09-22 01:12:13
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {935B0EDA-46BA-40E6-88E0-CCB1B8F41E34}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-09-22 01:13:57
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2021-09-21 23:42:08
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2021-09-17 00:12:03
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2021-09-16 16:05:39
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.349.801.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.18500.10
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2021-09-16 01:22:24
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.349.801.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.18500.10
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

CodeIntegrity:
===============
Date: 2021-09-22 00:52:10
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\Installer\{92DDBC00-FAA7-47ED-826F-177C8AC33379}\ARPPRODUCTICON.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-09-21 04:46:58
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. F8 11/08/2017
Placa base: Gigabyte Technology Co., Ltd. Z270-HD3P-CF
Procesador: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
Porcentaje de memoria en uso: 31%
RAM física total: 16039.56 MB
RAM física disponible: 10926.24 MB
Virtual total: 17063.56 MB
Virtual disponible: 10197.57 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:446.5 GB) (Free:102.72 GB) NTFS
Drive d: (MUSICA) (Fixed) (Total:223.57 GB) (Free:10.65 GB) NTFS

\\?\Volume{8394a781-81ba-4bb1-b4dd-1b57eced56d3}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS
\\?\Volume{df96756d-e962-4580-90b3-d86680ebc924}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: B93D32CE)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final de Addition.txt =======================

creia que creaba 3 pero no fue el caso… lo pongo asi por que no me deja copiar TODOS CORRECCION ICOMPLETA Detectado:Trojan:Win32/Stimilina Estado:correccion incompleta file: C:\Users\Guille\AppData\Local\Temp\RarSFX0\keygen-step-1.exe

Trojan:Win32/Sabsik.TE.B!ml file: C:\Users\Guille\AppData\Local\Temp\RarSFX0\keygen-step-6.exe

Trojan:Win32/Tnega!ml file: C:\Users\Guille\AppData\Local\Temp\RarSFX0\keygen-step-3.exe

Trojan:Win32/Glupteba!ml file: C:\Users\Guille\AppData\Local\Temp\RarSFX0\keygen-step-4.exe

El Tnega!ml es el primero y que no se pudo encontrar pistas sobre el …ni yo recordaba como se llamaba para buscar info…asi que intente volver a bajarme el archivo que me infecto para ver que troyano era y ahora tengo un buen jaleo…el tenga es el original… no se me ve el icono de defende aunque si puedo entrar por configuracion, el malware bytes creo que caduca hoy y tampoco esta… ahora me deja abrir vpn tra una larga espera ,desactivo las dos opciones cierro y cuando vuelvo a abrir estan activadas… no se que mas informacion aportar…y esta vez me gustaria nno formatear…

Ruego me ayudeis… Muchas gracias!!!

sigo con mis paranois, por favor decirme si esto es normal en la instalacion de un programa, creo que aqui se podria ver como va installando archivos y acto seguido se machacan con una version hackeada del mismo…

CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox" created
Call: 645
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Jump: 673
Call: 971
Call: 975
SetFlag: 2=0
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Jump: 1069
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Jump: 1116
Jump: 1145
IfFileExists: file "C:\Users\Guille\AppData\Roaming\TeraBox\YunShellExt64.dll" does not exist, jumping 1163
Call: 1163
Call: 975
SetFlag: 2=0
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Jump: 1069
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll" (overwriteflag=1)
Jump: 1116
IfFileExists: file "C:\Users\Guille\AppData\Roaming\TeraBox\npYunWebDetect.dll" does not exist, jumping 1178
SetFlag: 4=0
开始提取文件
File: overwriteflag=0, allowskipfilesflag=2, name="TeraBox.exe"
File: wrote 4834632 to "C:\Users\Guille\AppData\Roaming\TeraBox\TeraBox.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="TeraBoxRender.exe"
File: wrote 631112 to "C:\Users\Guille\AppData\Roaming\TeraBox\TeraBoxRender.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="cefbrowser.dll"
File: wrote 289608 to "C:\Users\Guille\AppData\Roaming\TeraBox\cefbrowser.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="AppUtil.dll"
File: wrote 900424 to "C:\Users\Guille\AppData\Roaming\TeraBox\AppUtil.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="Bull140U.dll"
File: wrote 2841928 to "C:\Users\Guille\AppData\Roaming\TeraBox\Bull140U.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="YunLogic.dll"
File: wrote 5204296 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunLogic.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="YunDls.dll"
File: wrote 1591624 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunDls.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="YunDb.dll"
File: wrote 755016 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunDb.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="xImage.dll"
File: wrote 1138504 to "C:\Users\Guille\AppData\Roaming\TeraBox\xImage.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="TeraBoxHost.exe"
File: wrote 648520 to "C:\Users\Guille\AppData\Roaming\TeraBox\TeraBoxHost.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="kernel.dll"
File: wrote 7925064 to "C:\Users\Guille\AppData\Roaming\TeraBox\kernel.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="kernelUpdate.exe"
File: wrote 2549576 to "C:\Users\Guille\AppData\Roaming\TeraBox\kernelUpdate.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="VersionInfo"
File: wrote 192 to "C:\Users\Guille\AppData\Roaming\TeraBox\VersionInfo"
File: overwriteflag=0, allowskipfilesflag=2, name="VersionInfo2"
File: wrote 192 to "C:\Users\Guille\AppData\Roaming\TeraBox\VersionInfo2"
File: overwriteflag=0, allowskipfilesflag=2, name="HelpUtility.exe"
File: wrote 143688 to "C:\Users\Guille\AppData\Roaming\TeraBox\HelpUtility.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="DuiEngine license.txt"
File: wrote 1120 to "C:\Users\Guille\AppData\Roaming\TeraBox\DuiEngine license.txt"
File: overwriteflag=0, allowskipfilesflag=2, name="minosagent.dll"
File: wrote 2884384 to "C:\Users\Guille\AppData\Roaming\TeraBox\minosagent.dll"
File: overwriteflag=0, allowskipfilesflag=2, name="updateagent.dll"
File: wrote 1101128 to "C:\Users\Guille\AppData\Roaming\TeraBox\updateagent.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="cacert.pem"
File: wrote 206919 to "C:\Users\Guille\AppData\Roaming\TeraBox\cacert.pem"
File: overwriteflag=2, allowskipfilesflag=2, name="BugReport.exe"
File: wrote 732488 to "C:\Users\Guille\AppData\Roaming\TeraBox\BugReport.exe"
File: overwriteflag=2, allowskipfilesflag=2, name="terabox_logo.ico"
File: wrote 381142 to "C:\Users\Guille\AppData\Roaming\TeraBox\terabox_logo.ico"
File: overwriteflag=2, allowskipfilesflag=2, name="YunShellExt64.dll"
File: wrote 972104 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunShellExt64.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="YunShellExt.dll"
File: wrote 767816 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunShellExt.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="npYunWebDetect.dll"
File: wrote 359240 to "C:\Users\Guille\AppData\Roaming\TeraBox\npYunWebDetect.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="msvcp140.dll"
File: wrote 439608 to "C:\Users\Guille\AppData\Roaming\TeraBox\msvcp140.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="vcruntime140.dll"
File: wrote 85328 to "C:\Users\Guille\AppData\Roaming\TeraBox\vcruntime140.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="concrt140.dll"
File: wrote 243520 to "C:\Users\Guille\AppData\Roaming\TeraBox\concrt140.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="ucrtbase.dll"
File: wrote 883712 to "C:\Users\Guille\AppData\Roaming\TeraBox\ucrtbase.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-console-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-console-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-datetime-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-datetime-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-debug-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-debug-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-errorhandling-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-errorhandling-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-file-l1-1-0.dll"
File: wrote 15200 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-file-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-file-l1-2-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-file-l1-2-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-file-l2-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-file-l2-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-handle-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-handle-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-heap-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-heap-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-interlocked-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-interlocked-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-libraryloader-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-libraryloader-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-localization-l1-2-0.dll"
File: wrote 14176 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-localization-l1-2-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-memory-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-memory-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-namedpipe-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-namedpipe-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-processenvironment-l1-1-0.dll"
File: wrote 12640 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-processenvironment-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-processthreads-l1-1-0.dll"
File: wrote 13664 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-processthreads-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-processthreads-l1-1-1.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-processthreads-l1-1-1.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-profile-l1-1-0.dll"
File: wrote 11104 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-profile-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-rtlsupport-l1-1-0.dll"
File: wrote 11104 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-rtlsupport-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-string-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-string-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-synch-l1-1-0.dll"
File: wrote 13664 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-synch-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-synch-l1-2-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-synch-l1-2-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-sysinfo-l1-1-0.dll"
File: wrote 12640 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-sysinfo-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-timezone-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-timezone-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-core-util-l1-1-0.dll"
File: wrote 11616 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-core-util-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-conio-l1-1-0.dll"
File: wrote 12640 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-conio-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-convert-l1-1-0.dll"
File: wrote 15712 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-convert-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-environment-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-environment-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-filesystem-l1-1-0.dll"
File: wrote 13664 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-filesystem-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-heap-l1-1-0.dll"
File: wrote 12640 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-heap-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-locale-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-locale-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-math-l1-1-0.dll"
File: wrote 22368 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-math-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-multibyte-l1-1-0.dll"
File: wrote 19808 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-multibyte-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-private-l1-1-0.dll"
File: wrote 64352 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-private-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-process-l1-1-0.dll"
File: wrote 12640 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-process-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-runtime-l1-1-0.dll"
File: wrote 16224 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-runtime-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-stdio-l1-1-0.dll"
File: wrote 17760 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-stdio-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-string-l1-1-0.dll"
File: wrote 17760 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-string-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-time-l1-1-0.dll"
File: wrote 14176 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-time-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="api-ms-win-crt-utility-l1-1-0.dll"
File: wrote 12128 to "C:\Users\Guille\AppData\Roaming\TeraBox\api-ms-win-crt-utility-l1-1-0.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="uninst.exe"
File: wrote 668920 to "C:\Users\Guille\AppData\Roaming\TeraBox\uninst.exe"
File: overwriteflag=2, allowskipfilesflag=2, name="YunUtilityService.exe"
File: wrote 106312 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunUtilityService.exe"
File: overwriteflag=2, allowskipfilesflag=2, name="YunWebService.exe"
File: wrote 1135432 to "C:\Users\Guille\AppData\Roaming\TeraBox\YunWebService.exe"
File: overwriteflag=2, allowskipfilesflag=2, name="d3dcompiler_43.dll"
File: wrote 2117960 to "C:\Users\Guille\AppData\Roaming\TeraBox\d3dcompiler_43.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="d3dcompiler_47.dll"
File: wrote 3749704 to "C:\Users\Guille\AppData\Roaming\TeraBox\d3dcompiler_47.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="libcef.dll"
File: wrote 48910152 to "C:\Users\Guille\AppData\Roaming\TeraBox\libcef.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="libEGL.dll"
File: wrote 96072 to "C:\Users\Guille\AppData\Roaming\TeraBox\libEGL.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="libGLESv2.dll"
File: wrote 1654088 to "C:\Users\Guille\AppData\Roaming\TeraBox\libGLESv2.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="icudtl.dat"
File: wrote 10207936 to "C:\Users\Guille\AppData\Roaming\TeraBox\icudtl.dat"
File: overwriteflag=2, allowskipfilesflag=2, name="natives_blob.bin"
File: wrote 412130 to "C:\Users\Guille\AppData\Roaming\TeraBox\natives_blob.bin"
File: overwriteflag=2, allowskipfilesflag=2, name="snapshot_blob.bin"
File: wrote 486072 to "C:\Users\Guille\AppData\Roaming\TeraBox\snapshot_blob.bin"
File: overwriteflag=2, allowskipfilesflag=2, name="widevinecdmadapter.dll"
File: wrote 232264 to "C:\Users\Guille\AppData\Roaming\TeraBox\widevinecdmadapter.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="CEF license.txt"
File: wrote 1661 to "C:\Users\Guille\AppData\Roaming\TeraBox\CEF license.txt"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\sounds" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\sounds" created
File: overwriteflag=2, allowskipfilesflag=2, name="1.wav"
File: wrote 39336 to "C:\Users\Guille\AppData\Roaming\TeraBox\sounds\1.wav"
File: overwriteflag=2, allowskipfilesflag=2, name="2.wav"
File: wrote 386844 to "C:\Users\Guille\AppData\Roaming\TeraBox\sounds\2.wav"
File: overwriteflag=2, allowskipfilesflag=2, name="3.wav"
File: wrote 129596 to "C:\Users\Guille\AppData\Roaming\TeraBox\sounds\3.wav"
File: overwriteflag=2, allowskipfilesflag=2, name="4.wav"
File: wrote 126764 to "C:\Users\Guille\AppData\Roaming\TeraBox\sounds\4.wav"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox" (1)
File: overwriteflag=0, allowskipfilesflag=2, name="resource.db"
File: wrote 50176 to "C:\Users\Guille\AppData\Roaming\TeraBox\resource.db"
File: overwriteflag=0, allowskipfilesflag=2, name="AppProperty.xml"
File: wrote 50 to "C:\Users\Guille\AppData\Roaming\TeraBox\AppProperty.xml"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\skin" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\skin" created
File: overwriteflag=0, allowskipfilesflag=2, name="skin.zip"
File: wrote 923660 to "C:\Users\Guille\AppData\Roaming\TeraBox\skin\skin.zip"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate" created
File: overwriteflag=2, allowskipfilesflag=2, name="AutoUpdateUtil.dll"
File: wrote 195400 to "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate\AutoUpdateUtil.dll"
File: overwriteflag=2, allowskipfilesflag=2, name="Autoupdate.exe"
File: wrote 2137928 to "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate\Autoupdate.exe"
File: overwriteflag=0, allowskipfilesflag=2, name="VersionInfo.xml"
File: wrote 90 to "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate\VersionInfo.xml"
File: overwriteflag=0, allowskipfilesflag=2, name="config.ini"
File: wrote 101 to "C:\Users\Guille\AppData\Roaming\TeraBox\AutoUpdate\config.ini"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\module" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\module" created
File: overwriteflag=0, allowskipfilesflag=2, name="TeraBoxModuleList.db"
File: wrote 6144 to "C:\Users\Guille\AppData\Roaming\TeraBox\module\TeraBoxModuleList.db"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\module\VastPlayer" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\module\VastPlayer" created
File: overwriteflag=0, allowskipfilesflag=2, name="VastPlayer.dll"
File: wrote 15248200 to "C:\Users\Guille\AppData\Roaming\TeraBox\module\VastPlayer\VastPlayer.dll"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\browserres" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\browserres" created
File: overwriteflag=2, allowskipfilesflag=2, name="cef.pak"
File: wrote 2322682 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\cef.pak"
File: overwriteflag=2, allowskipfilesflag=2, name="cef_100_percent.pak"
File: wrote 144747 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\cef_100_percent.pak"
File: overwriteflag=2, allowskipfilesflag=2, name="cef_200_percent.pak"
File: wrote 233072 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\cef_200_percent.pak"
File: overwriteflag=2, allowskipfilesflag=2, name="cef_extensions.pak"
File: wrote 4282175 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\cef_extensions.pak"
File: overwriteflag=2, allowskipfilesflag=2, name="devtools_resources.pak"
File: wrote 4665083 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\devtools_resources.pak"
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\locales" (1)
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\locales" created
File: overwriteflag=2, allowskipfilesflag=2, name="en-US.pak"
File: wrote 40614 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\locales\en-US.pak"
File: overwriteflag=2, allowskipfilesflag=2, name="zh-CN.pak"
File: wrote 39499 to "C:\Users\Guille\AppData\Roaming\TeraBox\browserres\locales\zh-CN.pak"
Call: 378
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Jump: 408
Call: 431
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox" (1)
Jump: 445
IfFileExists: file "C:\Users\Guille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\百度云管家.lnk" does not exist, jumping 0
Exec: command=""C:\Users\Guille\AppData\Roaming\TeraBox\TeraBox.exe" -install "createdetectstartup" -install "btassociation" -install "createshortcut" "0" -install "createstartup""
Exec: success (""C:\Users\Guille\AppData\Roaming\TeraBox\TeraBox.exe" -install "createdetectstartup" -install "btassociation" -install "createshortcut" "0" -install "createstartup"")
Call: 456
开始写注册表
CreateDirectory: "" (1)
SetCurrentDirectory() failed (123)
WriteRegStr: "HKEY_CURRENT_USER\Software\TeraBox" "installDir"="C:\Users\Guille\AppData\Roaming\TeraBox"
WriteRegStr: "HKEY_CURRENT_USER\Software\TeraBox" "Version"="1.0.0"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\TeraBox" "installDir"="C:\Users\Guille\AppData\Roaming\TeraBox"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\TeraBox" "Version"="1.0.0"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\TeraBox" "AllUser"="0"
Call: 559
File: overwriteflag=2, allowskipfilesflag=2, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\SetupCfg.ini"
File: wrote 75 to "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\SetupCfg.ini"
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "DisplayName"="TeraBox"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "UninstallString"=""C:\Users\Guille\AppData\Roaming\TeraBox\uninst.exe""
WriteRegDWORD: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "EstimatedSize"="0x000215a6"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "DisplayIcon"=""C:\Users\Guille\AppData\Roaming\TeraBox\TeraBox.exe""
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "Publisher"="Flextech Inc."
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "HelpLink"="http://www.terabox.com/"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "DisplayVersion"="1.0.0"
WriteRegStr: "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeraBox" "InstallLocation"=""C:\Users\Guille\AppData\Roaming\TeraBox""
CreateDirectory: "C:\Users\Guille\AppData\Roaming\TeraBox" (1)
Call: 961
Exec: command=""C:\Windows\system32\regsvr32.exe"  "/s" "C:\Users\Guille\AppData\Roaming\TeraBox\YunShellExt64.dll""
Exec: success (""C:\Windows\system32\regsvr32.exe"  "/s" "C:\Users\Guille\AppData\Roaming\TeraBox\YunShellExt64.dll"")
Call: 968
Exec: command=""C:\Windows\system32\regsvr32.exe"  "/s" "C:\Users\Guille\AppData\Roaming\TeraBox\npYunWebDetect.dll""
Exec: success (""C:\Windows\system32\regsvr32.exe"  "/s" "C:\Users\Guille\AppData\Roaming\TeraBox\npYunWebDetect.dll"")
Call: 480
Exec: command=""C:\Users\Guille\AppData\Roaming\TeraBox\YunUtilityService.exe" --install"
Exec: success (""C:\Users\Guille\AppData\Roaming\TeraBox\YunUtilityService.exe" --install")
Call: 484
Exec: command=""C:\Users\Guille\AppData\Roaming\TeraBox\YunWebService.exe" reg"
Exec: success (""C:\Users\Guille\AppData\Roaming\TeraBox\YunWebService.exe" reg")
Call: 486
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 494
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Call: 1267
SetFlag: 13=6
File: overwriteflag=1, allowskipfilesflag=0, name="C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll"
File: skipped: "C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll" (overwriteflag=1)
Delete: DeleteFile("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll")
Delete: DeleteFile on Reboot("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\NsisInstallUI.dll")
Delete: DeleteFile("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\nsProcessW.dll")
Delete: DeleteFile on Reboot("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\nsProcessW.dll")
Delete: DeleteFile("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\SetupCfg.ini")
Delete: DeleteFile("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\System.dll")
Delete: DeleteFile("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\VersionInfo.xml")
RMDir: RemoveDirectory("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\")
RMDir: RemoveDirectory on Reboot("C:\Users\Guille\AppData\Local\Temp\nsb7A75.tmp\")

puedo ser un paranoico , que es lo que mas me gustaria pero creo que tengo un buen lio montado, a ver si podeis ayudarme por favor, este istall.log pertenece a terabox un servicio de almacenamiento que ofrece 1tb gratis y el log se produce al installar la app de la web… este archivo esta en C:\Users\Guille\AppData\Roaming\TeraBox

Gracias por vuestro tiempo un saludo!

Hola. De casualidad leí tu historia y pensé que podía aportarte un par de ideas, si es que no resolviste tu tema.

Mi aporte número 1 es comentarte un artículo que leí hace más de 25 años, ese artículo decía que el peor virus es el que no existe. Porque el autor de la nota decía que muchas veces la gente se cree que tiene un virus sin tenerlo, y en el afán de eliminar este virus inexistente termina destruyendo información o software útil.

Mi aporte número 2 es comentarte que hace unos años cuando me dedicaba más a las computadoras alguien me sugirió usar el programa rkill, que es un soft que viene para desactivar malware residente. La idea es que cuando te ingresa un malware en la PC y toma el control, muchas veces ese malware te bloquea la ejecución de los antivirus o se oculta para que el antivirus no lo encuentre. A veces puede ser que al ingresar en el administrador de tareas visualices al malware pero no puedas detener su ejecución. Para estas circunstancias, yo lo que hago es antes de lanzar la ejecución del antivirus lanzar el programa rkill que desactiva los residentes, de modo tal que los antivirus después puedan actuar sobre ellos. Justamente ví que en algún punto de tu comentario anterior hiciste referencia a la página de la cual yo tomé este rkill, que es www. bleepingcomputing.com . A mí me ha dado buen resultado.

Otra cosa que haré es sugerirte que pruebes con el antivirus on line de eset, que lo podés bajar de www.eset-la.com/online-scanner. A mí me ha dado muy buen resultado combinar el rkill y este eset-on line, casi siempre con ellos pude resolver muchas infecciones.

No sé si ya lo probaste, pero a mí muchas veces me ha dado resultado trabajar desde una computadora limpia, si es posible sin nada de software instalado salvo algún antivirus, y con Windows en ejecución conectar en caliente vía usb el disco que quieras limpiar o analizar. De ésta manera supuestamente habrás booteado sin ningún malware y si tenés malware en el disco que conectas por USB en teoría no se vá a poder cargar a la memoria de la pc. Esto que te digo incluso lo podrías llegar a hacer booteando esa pc auxiliar con algún Linux que en teoría vá a ser inmune a cualquier virus que puedas tener en tu disco a analizar que sufrió una infección compatible con Windows pero seguramente incompatible con Linux.-

Yo a esta altura ya he perdido la ilusión de poder tener mi computadora sin malware. Más considerando que hace tiempo los estados más poderosos vienen dedicando enormes recursos en formar grupos de hackers para hacer espionaje industrial o político o del que sea. El malware actual y los hackers ya llevan muchos años perfeccionándose e incluso hace tiempo leí sobre unas herramientas de hackeo muy poderosas que le robaron a Microsoft o a una empresa israelí especializada en seguridad informática y que está circulando por el mundo hacker.