Problemas con malware AutoIt

Daniel_Ortiz · 22 Mayo, 2020 09:53

Bueno pues después de un tiempo con mi nuevo portatil empecé a notar como con solo darle al botón de encendido estoy consumiendo un 40 % de la RAM Me puse a investigar sobre el tema y pase el Malwarebytes, encontré un programa llamado trojan.ajent.Autolt.Generic , lo puse en cuarentena y al día siguiente volví a escanear el PC y sigue estando ahí. Mi pregunta es, ¿como elimino este malware, es el causante de la saturación de la RAM?

Las características de mi PC son: 8 gb de RAM Gtx 1050TI I5 -8300H

Daniela · 22 Mayo, 2020 10:32

Hola @Daniel_Ortiz, Bienvenido al Foro!

Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

1) Pon el reporte de Malwarebytes para revisar.

En el apartado del manual Historial de detecciones encontrarás el reporte de MBAM, clic en Exportar >> Copiar al portapapeles.

2) Descarga AdwCleaner | InfoSpyware en el escritorio.

Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
Cierra también todos los programas que tengas abiertos.
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt

3) Descarga CCleaner

Instala Ccleaner
Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine >> clic en ejecutar limpiador
Clic en la pestaña Registro >> clic en buscar problemas esperas que termine >> clic en Reparar Seleccionadas y haces una copia de seguridad
Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.

Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.

¿Cómo pegar reportes en el foro?

Un saludo

Daniel_Ortiz · 22 Mayo, 2020 19:43

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 22/5/20
Hora del análisis: 11:30
Archivo de registro: df7cc27c-9c0e-11ea-8e3e-e4e74936b57d.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.920
Versión del paquete de actualización: 1.0.24242
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 18362.836)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-0A7JF5U\Daniel

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 315946
Amenazas detectadas: 12
Amenazas en cuarentena: 12
Tiempo transcurrido: 1 min, 41 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 2
Trojan.Agent.AutoIt.Generic, HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ed45165e, En cuarentena, 5580, 781622, , , , 
Trojan.Agent.AutoIt.Generic, HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ed45165e, En cuarentena, 5580, 781623, , , , 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 4
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\30bc0b5\ab8fda9, En cuarentena, 5580, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\30bc0b5, En cuarentena, 5580, 781622, 1.0.24242, , ame, 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\30bc0b5\ab8fda9, En cuarentena, 5580, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\30BC0B5, En cuarentena, 5580, 781623, 1.0.24242, , ame, 

Archivo: 6
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\30bc0b5\06b893f.au3, En cuarentena, 5580, 781622, 1.0.24242, , ame, 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\30bc0b5\ab8fda9\6ffa41b, En cuarentena, 5580, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\30bc0b5\kcbkbdc.exe, En cuarentena, 5580, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\30bc0b5\pe.bin, En cuarentena, 5580, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\30BC0B5\06B893F.AU3, En cuarentena, 5580, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\30BC0B5\KCBKBDC.EXE, En cuarentena, 5580, 781623, 1.0.24242, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1680 octets] - [22/05/2020 20:55:10]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

He hecho los pasos que me has dicho Daniela, pero al reiniciar sigue todo igual. Tengo la copia de seguridad del registro hecha. ¿Como continuo?

Muchas gracias por tu ayuda

Daniela · 22 Mayo, 2020 20:56

Hola

El reporte de AdwCleaner está incompleto, falta la parte inicial.

Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus

Descarga Farbar Recovery Scan Tool.en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer, pulsamos Yes
En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo

Daniel_Ortiz · 23 Mayo, 2020 15:36

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build:    04-03-2020
# Database: 2020-05-19.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    05-22-2020
# Duration: 00:00:01
# OS:       Windows 10 Pro
# Cleaned:  4
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\Chromium
Deleted       C:\ProgramData\IObit\Advanced SystemCare
Deleted       C:\Users\danie\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1680 octets] - [22/05/2020 20:55:10]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-05-2020 01
Ejecutado por Daniel (administrador) sobre DESKTOP-0A7JF5U (HP HP Pavilion Notebook) (23-05-2020 10:37:43)
Ejecutado desde F:\Desktop
Perfiles cargados: Daniel
Platform: Windows 10 Pro Versión 1909 18363.836 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_618947f7f882ca01\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_618947f7f882ca01\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_618947f7f882ca01\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_618947f7f882ca01\IntelCpHeciSvc.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\danie\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtAudioServ.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [826912 2018-10-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353776 2020-05-19] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2042424 2020-03-16] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [HP ENVY 5000 (NET)] => C:\Program Files\HP\HP ENVY 5000 series\Bin\ScanToPCActivationApp.exe [4065416 2018-04-19] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [utweb] => C:\Users\danie\AppData\Roaming\uTorrent Web\utweb.exe [5487744 2020-03-25] (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado]
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-04-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [GoogleChromeAutoLaunch_1DE2210685523D121EF41F74D365AD10] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-22] (Google LLC -> Google LLC)
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {122CBAF5-4B36-494A-B794-56ECA5458268} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {13B94682-F57C-421F-BD63-759C2A2BC75B} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {16A98412-4584-45DC-A6C5-6BB3EDD259F2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {189CF55C-BE43-4431-BFE2-1D97B0CD8AA5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {261F156C-FEDB-4C40-B41C-1AF1F002725D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2A6DC8D9-902B-4165-ABE2-102D5363C080} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4099040F-FAC4-4C71-B638-32CBC1DA5C7B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {41C6E075-6AA6-4D8D-B7AE-B4E18D71D6CD} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-0A7JF5U-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {470CEC40-E216-4CDF-B433-74E4A140BEBB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A4FAF8A-00A2-4CF9-A062-51696A9EAC52} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {5461C663-33D2-4EF8-8CD2-DAD816294BE6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59AD5565-F94C-40D2-A521-B217954632F5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {5DBBFE14-E245-4980-BF62-0A0955269D13} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {630B4A47-174D-420D-BDE5-AA183E3E7AAC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {66E0CC08-4BC2-430E-8F7A-F3062E1285B2} - System32\Tasks\Uninstaller_SkipUac_Daniel => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5891344 2019-11-12] (IObit Information Technology -> IObit)
Task: {66E4EC02-02C2-4D7F-8C89-097EDE4880F0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BB15704-83C2-429C-A3E3-235C7E5FDE27} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C0EA709-BF0B-4933-9ACE-BC207837B12C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-06] (Google Inc -> Google Inc.)
Task: {702D75C0-CF11-4BEB-933A-47B829E7A0A8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {78AE7419-ECB1-409A-B756-2A1E0808FF85} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {830179C1-5D47-4728-8DDD-FEECBFAB40CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {83E8CA1A-B81D-43EB-AA4A-B2C1B31F2412} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87CBA2AE-E8AA-478C-8DAF-BFDD1A7D5E56} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {89CA2958-15C4-45CB-8045-8F57AAE995E2} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9046C711-B2E8-49AC-9BAF-4EA8BDECDCC5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {A91AFC59-0639-4DA8-8470-1EEDED6E9E8A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171336 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA5FA695-C7B9-47EB-95E7-A56BAD1274A6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEF38645-05A7-4FC9-8107-F1D2AF87F680} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-06] (Google Inc -> Google Inc.)
Task: {C53B518E-A423-44F1-89BD-B401B41EE88E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8C63A13-7A3E-4198-AA7C-CFB8C17028BD} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F388694D-7073-4643-8628-0FADDD4181EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F70AC4F0-7F3E-4CAF-962A-145922D0B954} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {F74BE9B6-BE59-4983-918E-13562D8A003B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{1db33507-e7aa-43ad-9f85-88c63f853ff0}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{2d52b0e0-1460-423e-9352-a61e2c408863}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1109533091-1290867549-4281326807-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-1109533091-1290867549-4281326807-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-29] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: npje68ga.default
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\npje68ga.default [2020-03-31]
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\fb97yrin.default-release [2020-05-22]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-1109533091-1290867549-4281326807-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\danie\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-22] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Daniel_Ortiz · 23 Mayo, 2020 15:38

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default [2020-05-23]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com
CHR Extension: (Presentaciones) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-06]
CHR Extension: (BetterTTV) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-05-19]
CHR Extension: (Documentos) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-02-06]
CHR Extension: (Google Drive) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-02-06]
CHR Extension: (YouTube) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-06]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-06]
CHR Extension: (HP Print para Chrome) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjanmonomjogheabiocdamfpknlpdehm [2019-02-13]
CHR Extension: (Hojas de cálculo) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-02-06]
CHR Extension: (OP.GG Extension) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbipjohhadjcagjjjhcooalfnkdlnfim [2020-05-18]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (Flying Paint) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaddkdiibkddhdbcmmplkhcpgeinggfo [2019-02-06]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-22]
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-05-22]
CHR HomePage: Profile 1 -> hxxps://www.google.es/?gws_rd=ssl
CHR StartupUrls: Profile 1 -> "hxxps://www.google.es/"
CHR Extension: (Presentaciones) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-12]
CHR Extension: (Documentos) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-02-12]
CHR Extension: (Google Drive) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-02-12]
CHR Extension: (YouTube) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-12]
CHR Extension: (Facebook) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-02-12]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-09]
CHR Extension: (Hojas de cálculo) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-02-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-22]
CHR Extension: (Bugatti) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkaehngbpifognimhfchnicdnfhjjmdl [2019-02-12]
CHR Extension: (Cut the Rope) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj [2019-02-12]
CHR Extension: (Webcam Toy) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-02-12]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-20]
CHR Extension: (Chrome Media Router) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-22]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [820280 2020-03-16] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8567960 2020-04-16] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-02-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-16] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-16] (Microsoft Windows -> Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [874472 2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; F:\Documents\programas\Launcher\RockstarService.exe [1705088 2020-05-12] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [826912 2018-10-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtAudioServ; C:\WINDOWS\RtkBtAudioServ.exe [261064 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [738712 2019-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynaAPOService; C:\WINDOWS\System32\SynAudSrv.exe [595176 2019-05-20] (Conexant Systems LLC -> Synaptics Incorporated.)
R2 SynaAudioService; C:\WINDOWS\System32\CxAudioSvc.exe [83464 2019-05-20] (Conexant Systems LLC -> Conexant Systems LLC.)
R2 SynTPEnhService; C:\WINDOWS\System32\SynTPEnhService.exe [384264 2020-03-17] (Synaptics Incorporated -> Synaptics Incorporated)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9884192 2020-05-19] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [78680 2018-05-01] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [71000 2018-05-01] (Intel Corporation -> Intel Corporation)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [230712 2015-05-24] (DEV47 APPS -> Windows (R) Win 7 DDK provider)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [402264 2018-05-01] (Intel Corporation -> Intel Corporation)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [44112 2019-11-12] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37328 2019-07-30] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [49800 2019-11-12] (IObit Information Technology -> IObit)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47200 2020-04-08] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-05-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-22] (Malwarebytes Inc -> Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_789dc510781607ea\nvlddmkm.sys [23446968 2020-04-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [787232 2019-11-30] (WDKTestCert VSAuto,131800073559665678 -> Realtek Semiconductor Corporation)
R3 RTSPER; C:\WINDOWS\System32\drivers\RtsPer.sys [895928 2018-08-17] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [11722328 2019-12-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [49416 2020-03-17] (Synaptics Incorporated -> Synaptics Incorporated)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [6262040 2020-05-19] (Riot Games, Inc. -> Riot Games, Inc.)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-11-15] (HP Inc. -> HP)
S1 cmierqdu; \??\C:\WINDOWS\system32\drivers\cmierqdu.sys [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
 ==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-23 10:37 - 2020-05-23 10:38 - 000000000 ____D C:\FRST
2020-05-22 21:40 - 2020-05-22 21:40 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-22 20:58 - 2020-05-22 20:58 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-05-22 20:58 - 2020-05-22 20:58 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-05-22 20:58 - 2020-05-22 20:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-05-22 20:58 - 2020-05-22 20:58 - 000000000 ____D C:\Program Files\CCleaner
2020-05-22 20:54 - 2020-05-22 20:55 - 000000000 ____D C:\AdwCleaner
2020-05-22 11:57 - 2020-05-22 11:57 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-05-21 17:53 - 2020-05-21 17:53 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-05-21 17:53 - 2020-05-21 17:53 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-05-21 17:53 - 2020-05-21 17:53 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-05-21 17:53 - 2020-05-21 17:53 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-21 17:53 - 2020-05-21 17:53 - 000000000 ____D C:\Users\danie\AppData\Local\mbam
2020-05-21 17:53 - 2020-05-21 17:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-21 17:47 - 2020-05-21 17:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-05-21 17:47 - 2020-05-21 17:47 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-05-21 17:47 - 2020-04-03 23:56 - 005581808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-05-21 17:47 - 2020-04-03 23:56 - 002631664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-05-21 17:47 - 2020-04-03 23:55 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-05-21 17:47 - 2020-04-03 23:55 - 001172464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-05-21 17:47 - 2020-04-03 23:55 - 000446264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-05-21 17:47 - 2020-04-03 23:55 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-05-21 17:47 - 2020-04-03 23:55 - 000074736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-05-21 17:47 - 2020-04-03 12:08 - 009037867 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-05-21 17:47 - 2020-03-07 05:18 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-05-21 17:45 - 2020-04-11 23:55 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-05-21 17:45 - 2020-04-11 23:55 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-05-21 17:45 - 2020-04-11 23:55 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-05-21 17:45 - 2020-04-11 23:55 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-05-21 17:45 - 2020-04-11 23:55 - 000450280 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-05-21 17:45 - 2020-04-11 23:55 - 000346856 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-05-21 17:45 - 2020-04-11 23:54 - 011945872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-05-21 17:45 - 2020-04-11 23:54 - 010286480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 023446968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-05-21 17:45 - 2020-04-11 23:53 - 017601632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 015158384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 005855856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 005159520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 002074232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001722480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444587.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001566328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001483376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444587.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001481328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001350792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001142200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 001048504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000817080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000811448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000679864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000676448 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000655312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000546744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-05-21 17:45 - 2020-04-11 23:53 - 000543160 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-05-21 17:45 - 2020-04-11 23:52 - 004927960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-05-21 17:45 - 2020-04-11 23:51 - 004195688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-05-21 17:45 - 2020-04-04 02:21 - 000057237 _____ C:\WINDOWS\system32\nvinfo.pb
2020-05-21 17:45 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-05-21 16:58 - 2019-07-02 16:50 - 000045408 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmdrv.sys
2020-05-19 15:36 - 2020-05-22 21:02 - 000000000 ____D C:\Users\danie\AppData\Local\LogMeIn Hamachi
2020-05-19 15:36 - 2020-05-19 15:36 - 000000000 ____D C:\Users\danie\AppData\Local\LogMeIn
2020-05-19 15:36 - 2020-05-19 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2020-05-19 15:36 - 2020-05-19 15:36 - 000000000 ____D C:\ProgramData\LogMeIn
2020-05-19 15:36 - 2020-05-19 15:36 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2020-05-17 23:55 - 2020-05-17 23:56 - 000000000 ____D C:\Users\danie\AppData\Roaming\Wise Memory Optimzer
2020-05-17 23:55 - 2020-05-17 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer
2020-05-17 23:55 - 2020-05-17 23:55 - 000000000 ____D C:\Program Files (x86)\Wise
2020-05-17 14:30 - 2020-05-17 23:53 - 000000000 ____D C:\Users\danie\AppData\Roaming\Scratch Desktop
2020-05-17 14:30 - 2020-05-17 14:30 - 000002505 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Scratch Desktop.lnk
2020-05-17 14:30 - 2020-05-17 14:30 - 000000000 ____D C:\Users\danie\AppData\Local\scratch-desktop-updater
2020-05-16 15:03 - 2020-05-16 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BIAS FX Application
2020-05-16 15:03 - 2020-05-16 15:03 - 000000000 ____D C:\Program Files\VSTPlugins
2020-05-16 15:03 - 2020-05-16 15:03 - 000000000 ____D C:\Program Files\BIAS FX Application (64bit)
2020-05-16 14:43 - 2020-05-16 14:58 - 000000000 ____D C:\Users\danie\AppData\Roaming\PositiveGrid
2020-05-16 14:36 - 2020-05-16 15:03 - 000000000 ___RD C:\Program Files\Common Files\PositiveGrid
2020-05-16 14:36 - 2020-05-16 14:58 - 000000000 ____D C:\Program Files\BIAS FX 2 Application (64bit)
2020-05-16 14:36 - 2020-05-16 14:36 - 000000000 ____D C:\Program Files\PositiveGrid
2020-05-16 14:36 - 2020-05-16 14:36 - 000000000 ____D C:\Program Files\Common Files\Avid
2020-05-16 10:49 - 2020-05-16 10:49 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 009339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-16 10:49 - 2020-05-16 10:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-16 10:49 - 2020-05-16 10:49 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002190648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001719336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001654952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001616912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001270784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000959800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000666424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-16 10:49 - 2020-05-16 10:49 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000460200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll

Daniel_Ortiz · 23 Mayo, 2020 15:39

2020-05-16 10:49 - 2020-05-16 10:49 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000390968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000386320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000310928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000301064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000299064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposerFramework.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000260328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000245336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000230416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-05-16 10:49 - 2020-05-16 10:49 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tspubwmi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SwitcherDataModel.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000197432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-05-16 10:49 - 2020-05-16 10:49 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000181560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000142760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\socialapis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Haptics.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000132712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleAPIs.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000109056 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\socialapis.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000107616 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000099104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000088280 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsign.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeopleAPIs.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbussdapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRBroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbussdapi.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-16 10:49 - 2020-05-16 10:49 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ffbroker.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSa.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000022032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-16 10:49 - 2020-05-16 10:49 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-16 10:49 - 2020-05-16 10:49 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-16 10:48 - 2020-05-16 10:48 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 006232568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 003986944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 003581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 002504440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 002060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001745208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001385176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001027816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 001007928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000957056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000916768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000819696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-16 10:48 - 2020-05-16 10:48 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRClient.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000410608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000380632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-16 10:48 - 2020-05-16 10:48 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-16 10:48 - 2020-05-16 10:48 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-16 10:48 - 2020-05-16 10:48 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-15 20:58 - 2020-05-15 21:32 - 000000000 ____D C:\Users\danie\AppData\Roaming\CitizenFX
2020-05-15 20:56 - 2020-05-21 16:51 - 000000000 ____D C:\Users\danie\AppData\Local\DigitalEntitlements
2020-05-15 14:24 - 2020-05-15 16:37 - 000000000 ____D C:\Users\danie\AppData\Local\Rockstar Games
2020-05-15 14:13 - 2020-05-15 14:13 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-05-15 14:13 - 2020-05-15 14:13 - 000000000 ____D C:\ProgramData\Rockstar Games
2020-05-15 14:11 - 2020-05-15 14:24 - 000000000 ____D C:\Program Files\Rockstar Games
2020-05-15 14:11 - 2020-05-15 14:24 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-05-15 12:06 - 2020-05-22 22:30 - 000000000 ____D C:\Users\danie\AppData\Local\FiveM
2020-05-15 12:06 - 2020-05-15 12:06 - 000002132 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk
2020-05-15 12:06 - 2020-05-15 12:06 - 000002124 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
2020-05-13 18:47 - 2020-05-16 15:19 - 000000000 ____D C:\Users\danie\AppData\Roaming\BIAS FX
2020-05-13 18:47 - 2020-05-13 18:47 - 000000030 _____ C:\Users\danie\AppData\Roaming\.pgbiasfx
2020-05-13 18:47 - 2020-05-13 18:47 - 000000000 ____D C:\Users\danie\AppData\Roaming\BIAS_FX
2020-05-12 22:11 - 2020-05-12 22:11 - 000000000 ___HD C:\OneDriveTemp
2020-05-08 15:40 - 2020-05-08 15:40 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2020-05-08 15:40 - 2020-05-08 15:40 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2020-05-08 15:39 - 2020-05-08 15:40 - 000000000 ____D C:\Program Files\Image-Line
2020-05-06 09:00 - 2020-05-22 21:43 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-05-06 08:59 - 2020-05-06 08:59 - 000000000 ____D C:\Users\danie\AppData\Local\ShooterGame
2020-05-06 08:45 - 2020-05-19 21:07 - 000000000 ____D C:\Program Files\Riot Vanguard
2020-04-25 21:09 - 2020-04-25 21:09 - 000000000 ____D C:\Users\danie\AppData\Roaming\Monopoly Plus
2020-04-25 21:03 - 2020-05-08 11:49 - 000000000 ____D C:\Users\danie\Nueva carpeta
2020-04-25 21:03 - 2020-04-25 21:03 - 000000000 ____D C:\Users\danie\Monopoly
2020-04-25 21:01 - 2020-05-08 11:49 - 000000000 ____D C:\Users\danie\AppData\Local\Ubisoft Game Launcher
2020-04-25 21:01 - 2020-05-08 11:49 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2020-04-25 21:01 - 2020-04-25 21:01 - 000000000 ____D C:\ProgramData\Ubisoft
2020-04-24 15:31 - 2020-04-24 15:31 - 000000584 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-04-23 11:08 - 2020-03-17 01:56 - 019840776 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPRes.dll

==================== Un mes (modificado) ==================
 (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-23 10:37 - 2019-02-06 18:23 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-23 10:35 - 2019-02-06 17:54 - 000000000 ___RD C:\Users\danie\OneDrive
2020-05-22 22:42 - 2019-06-18 10:07 - 000000000 ____D C:\Users\danie\AppData\Roaming\Discord
2020-05-22 22:30 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-22 21:47 - 2019-08-29 20:36 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-22 21:47 - 2019-03-19 13:59 - 000791286 _____ C:\WINDOWS\system32\perfh00A.dat
2020-05-22 21:47 - 2019-03-19 13:59 - 000156524 _____ C:\WINDOWS\system32\perfc00A.dat
2020-05-22 21:47 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-22 21:40 - 2019-08-29 20:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-22 21:40 - 2019-03-19 06:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-05-22 21:40 - 2019-02-06 18:53 - 000000000 ____D C:\Intel
2020-05-22 21:38 - 2019-08-29 20:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-22 21:01 - 2019-02-15 15:58 - 000000000 ____D C:\Users\danie\AppData\Local\CrashDumps
2020-05-22 20:55 - 2019-11-14 17:54 - 000000000 ____D C:\Users\danie\AppData\Roaming\IObit
2020-05-22 20:55 - 2019-11-14 17:54 - 000000000 ____D C:\ProgramData\IObit
2020-05-22 16:49 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-22 16:49 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-22 14:05 - 2019-08-09 16:31 - 000000000 ____D C:\Users\danie\AppData\Roaming\WhatsApp
2020-05-22 11:57 - 2020-03-23 11:44 - 000000000 ____D C:\Users\danie\AppData\Roaming\Zoom
2020-05-22 11:46 - 2019-02-06 21:39 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-22 11:26 - 2020-04-19 12:14 - 000000000 ____D C:\Program Files\Avast Software
2020-05-22 11:26 - 2019-11-14 17:54 - 000000000 ____D C:\ProgramData\ProductData
2020-05-22 11:26 - 2019-03-04 16:38 - 000007610 _____ C:\Users\danie\AppData\Local\resmon.resmoncfg
2020-05-22 11:11 - 2019-02-06 18:17 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-21 17:53 - 2020-04-19 13:14 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-21 17:48 - 2019-02-06 18:23 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-05-21 17:48 - 2019-02-06 18:23 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-05-21 17:48 - 2019-02-06 18:23 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-05-21 17:47 - 2020-04-19 10:44 - 000000000 ___HD C:\temp
2020-05-21 17:47 - 2019-02-06 20:30 - 000000000 ____D C:\Users\danie\AppData\Local\NVIDIA
2020-05-21 17:45 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2020-05-21 17:39 - 2019-09-14 15:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-09-14 15:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-09-14 15:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-09-14 15:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-21 17:39 - 2019-08-29 20:32 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-20 18:48 - 2019-02-06 17:52 - 000000000 ____D C:\Users\danie\AppData\Local\VirtualStore
2020-05-20 17:29 - 2019-06-09 21:33 - 000000000 ____D C:\Users\danie\AppData\Roaming\.minecraft
2020-05-20 17:25 - 2019-10-09 15:00 - 000000000 ____D C:\Users\danie\AppData\Roaming\.tlauncher
2020-05-20 15:41 - 2019-02-26 21:00 - 000000000 ____D C:\Users\danie\AppData\Local\ElevatedDiagnostics
2020-05-19 14:20 - 2019-02-06 20:27 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-18 18:39 - 2019-02-06 17:52 - 000000000 ____D C:\Users\danie\AppData\Local\Packages
2020-05-16 12:59 - 2019-02-06 17:52 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-16 12:58 - 2019-08-29 20:27 - 000323032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-16 12:39 - 2019-03-19 14:01 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-05-16 12:39 - 2019-03-19 06:52 - 000000000 ____D C:\PerfLogs
2020-05-16 10:59 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-16 10:58 - 2019-02-06 20:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-16 10:51 - 2019-02-06 20:48 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-16 10:48 - 2019-08-29 20:27 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-05-15 14:24 - 2019-02-07 16:57 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache
2020-05-14 19:20 - 2019-08-09 16:31 - 000000000 ____D C:\Users\danie\AppData\Local\WhatsApp
2020-05-13 18:45 - 2020-01-30 23:26 - 000000000 ____D C:\Users\danie\AppData\Roaming\uTorrent Web
2020-05-13 15:36 - 2019-04-20 15:24 - 000000000 ____D C:\Users\danie\AppData\Local\BitTorrentHelper
2020-05-12 22:11 - 2019-08-29 20:32 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1109533091-1290867549-4281326807-1001
2020-05-12 22:11 - 2019-08-29 19:03 - 000002401 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-05-10 19:51 - 2019-07-02 09:50 - 000000000 ____D C:\Users\danie\AppData\Roaming\Spotify
2020-05-09 15:04 - 2019-07-02 09:52 - 000000000 ____D C:\Users\danie\AppData\Local\Spotify
2020-05-09 11:28 - 2019-05-05 12:57 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2020-05-08 15:39 - 2019-05-05 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2020-05-06 08:58 - 2019-10-09 11:57 - 000000000 ____D C:\Users\danie\AppData\Local\Riot Games
2020-05-04 11:14 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-01 11:04 - 2019-02-06 16:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-25 21:03 - 2019-08-29 19:03 - 000000000 ____D C:\Users\danie
2020-04-25 17:24 - 2019-11-06 18:15 - 000000000 ____D C:\Users\danie\AppData\Roaming\slobs-client
2020-04-23 17:24 - 2019-11-14 17:09 - 000000034 _____ C:\ProgramData\droidcam-settings

==================== Archivos en la raíz de algunos directorios ========

2020-05-13 18:47 - 2020-05-13 18:47 - 000000030 _____ () C:\Users\danie\AppData\Roaming\.pgbiasfx
2019-04-20 20:30 - 2019-04-20 20:30 - 000000000 _____ () C:\Users\danie\AppData\Local\oobelibMkey.log
2019-03-04 16:38 - 2020-05-22 11:26 - 000007610 _____ () C:\Users\danie\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Daniel_Ortiz · 23 Mayo, 2020 15:45

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 13-05-2020 01
Ejecutado por Daniel (23-05-2020 10:38:34)
Ejecutado desde F:\Desktop
Windows 10 Pro Versión 1909 18363.836 (X64) (2019-08-29 18:33:05)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1109533091-1290867549-4281326807-500 - Administrator - Disabled)
Daniel (S-1-5-21-1109533091-1290867549-4281326807-1001 - Administrator - Enabled) => C:\Users\danie
DefaultAccount (S-1-5-21-1109533091-1290867549-4281326807-503 - Limited - Disabled)
Invitado (S-1-5-21-1109533091-1290867549-4281326807-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1109533091-1290867549-4281326807-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.1.0.407 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0) (Version: 21.0 - Adobe Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
BIAS FX Plugins Pack (64bit) (HKLM\...\{AFC15EF6-F654-4CC3-8833-B7B0704DF5CC}) (Version: 1.5.9.2855 - PositiveGrid)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Discord (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{9B504F12-DA3B-4CEC-A6FD-B07D6C1FEA26}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FiveM (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\CitizenFX_FiveM) (Version:  - The CitizenFX Collective)
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP EmailSMTP Plugin (HKLM-x32\...\{549816EC-F4D8-4838-B482-5CC413BEE849}) (Version: 43.0.0.0 - HP)
HP ENVY 5000 series Software básico del dispositivo (HKLM\...\{5CD55B76-A474-4214-8D6A-D7CA7B631FF5}) (Version: 44.3.2218.18109 - HP Inc.)
HP FTP Plugin (HKLM-x32\...\{0C72C7BD-0594-449C-826A-C0E1765E8497}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{5F9813F9-DBBE-4316-8E4E-A7295112BCDB}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{8703B5BA-1FA8-4F65-ADF2-D35C298B4A26}) (Version: 36.0.0.0 - HP)
HP SharePoint Plugin (HKLM-x32\...\{D8CE3A33-62A6-4508-8AE7-D847D203567C}) (Version: 43.0.0.0 - HP)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{D78EA28B-1947-4581-9D58-776A5D16A583}) (Version: 12.15.14.3 - HP Inc.)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.1.0.12 - IObit)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreCAD (HKLM-x32\...\LibreCAD) (Version: 2.1.3 - LibreCAD Team)
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Malwarebytes version 4.0.4.49 (HKLM-x32\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Excel 2019 - es-es (HKLM\...\Excel2019Retail - es-es) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\Proplus2019Retail - es-es) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\OneDriveSetup.exe) (Version: 20.052.0311.0011 - Microsoft Corporation)
Microsoft PowerPoint 2019 - es-es (HKLM\...\PowerPoint2019Retail - es-es) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Word 2019 - es-es (HKLM\...\Word2019Retail - es-es) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft)
Minecraft Launcher (HKLM-x32\...\{E154B2C8-2F3E-4763-B3D5-E7D34AE39C6B}) (Version: 1.0.0.0 - Mojang)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 445.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.87 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.4 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{7842b864-a010-48f0-be6b-bc9c67f57dc7}) (Version: latest - ppy Pty Ltd)
Panel de control de NVIDIA 445.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 445.87 - NVIDIA Corporation) Hidden
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.5 - Rockstar Games)
Scratch Desktop 3.10.2 (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.10.2 - Scratch Foundation)
SketchUp 2020 (HKLM\...\{3018111d-9515-967c-baf8-b63c54330f67}) (Version: 20.0.363.132 - Nombre de su organización) Hidden
SketchUp Language Pack [es] (HKLM\...\{0493d92e-67f1-b648-98c6-6bf4d7a38f6b}) (Version: 20 - Nombre de su organización) Hidden
SketchUp Pro 2020 (HKLM-x32\...\{522800F1-9FCE-44F2-8D2E-2CEC5B25A9C2}) (Version: 20.0.363 - Trimble, Inc.)
Spotify (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Spotify) (Version: 1.1.32.618.gda5638a6 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.2 - General Workings, Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
uTorrent Web (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\utweb) (Version: 1.0.9 - BitTorrent, Inc.)
VALORANT (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
VEGAS Pro 17.0 (HKLM\...\{73883C4F-DA39-11E9-B52D-00155D6302F2}) (Version: 17.0.321 - VEGAS)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\WhatsApp) (Version: 2.2019.8 - WhatsApp)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Wise Memory Optimizer 3.6.7 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.6.7 - WiseCleaner.com, Inc.)
Zoom (HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2020-04-19] (Adobe Systems Incorporated)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-03-06] (Microsoft Corporation)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-09] (Microsoft Corporation)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.19.20.0_x86__q7m17pa7q8kj0 [2020-04-30] (Deezer SA)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-19] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-02-06] (Fitbit)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.2.143.0_x64__dt26b99r8h8gj [2019-02-06] (Realtek Semiconductor Corp)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.150.0_x64__v10z8vjag6ke6 [2020-05-22] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.38.21323.0_x64__8wekyb3d8bbwe [2020-05-16] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-05] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-18] (MAGIX)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.10.1.0_x64__nfy108tqq3p12 [2020-05-16] (Thumbmunkeys Ltd) [MS Ad]
PicsArt - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PicsArt-PhotoStudio_8.8.0.0_x86__crhqpqs3x1ygc [2019-10-18] (PicsArt Inc.) [MS Ad]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2019-02-06] (Plex)
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-17] (Synaptics Incorporated)
Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1109533091-1290867549-4281326807-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [iSkysoftVideoConverterFileOpreation] -> {BB35DE05-89D6-4D8F-95DE-A27DF8156D91} =>  -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_618947f7f882ca01\igfxDTCM.dll [2020-03-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\HP Print para Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=cjanmonomjogheabiocdamfpknlpdehm

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [466]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-09-15 09:31 - 2020-05-21 17:57 - 000000973 _____ C:\WINDOWS\system32\drivers\etc\hosts
35.156.90.191 authserver.mojang.com
35.156.90.191 sessionserver.mojang.com
0.0.0.0 telemetry.malwarebytes.com
0.0.0.0 telemetry.mwbsys.com

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\826390.jpg
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iSkysoft Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "DelaypluginInstall"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\StartupApproved\Run: => "HP ENVY 5000 (NET)"
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\StartupApproved\Run: => "CCXProcess"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [TCP Query User{9B92CE45-E271-4EE3-8709-5A3AE65E5077}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{5A23CC2C-0699-469D-8176-06D0775FCF3A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{101BC357-7798-497F-8CD8-00B50A64C8C6}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{41906C08-EB3D-4F37-9355-2BA92C2745FF}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{D765CE73-6380-4336-A3C6-5414BF2AE108}C:\users\danie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\danie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{EA7D05C4-12E3-4829-BF4E-9CFFC00353C5}C:\users\danie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\danie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{9ABF3FDD-07D8-4580-9749-DD37768F1891}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [UDP Query User{9F3ECDB5-F2F0-4F2A-8A4A-DB9935665F90}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [{A0C4846B-E72A-4814-801F-1AE175FB2362}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{7F5A057A-4B3E-4523-9845-F60C7765A18D}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [TCP Query User{EA9D5BAB-2D51-4A23-A61B-DF8EE81518CB}C:\program files (x86)\droidcam\droidcamapp.exe] => (Allow) C:\program files (x86)\droidcam\droidcamapp.exe (DEV47 APPS -> )
FirewallRules: [UDP Query User{C9E30264-F02A-418E-94A6-AE18D146DA14}C:\program files (x86)\droidcam\droidcamapp.exe] => (Allow) C:\program files (x86)\droidcam\droidcamapp.exe (DEV47 APPS -> )
FirewallRules: [TCP Query User{C47605CA-FD5C-44DE-BC78-4B650C1CB59A}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [UDP Query User{16912083-6925-4987-9B72-5916CB206C72}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [{93209235-5987-4472-AA46-6F2D150C716D}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{A4C61B37-458F-4708-85E0-41C06F5736D3}C:\users\danie\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\danie\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [UDP Query User{420C64F4-400E-425A-8904-03D0C94CDFEA}C:\users\danie\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\danie\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [TCP Query User{395DCB62-EE13-4376-A2A0-0F6F9F4A54EF}C:\users\danie\appdata\local\fivem\fivem.exe] => (Allow) C:\users\danie\appdata\local\fivem\fivem.exe (cfx-collective) [Archivo no firmado]
FirewallRules: [UDP Query User{09863CF4-C912-4B50-B588-98F379339243}C:\users\danie\appdata\local\fivem\fivem.exe] => (Allow) C:\users\danie\appdata\local\fivem\fivem.exe (cfx-collective) [Archivo no firmado]
FirewallRules: [{3AC36DC7-91C7-434D-9415-794954A932C3}] => (Allow) F:\Documents\Riot Games\VALORANT\live\VALORANT.exe (Riot Games, Inc. -> Epic Games, Inc.)
FirewallRules: [{F7605336-7102-46AF-AC88-F47C0CD5D196}] => (Allow) F:\Documents\Riot Games\VALORANT\live\VALORANT.exe (Riot Games, Inc. -> Epic Games, Inc.)
FirewallRules: [{30CFADEC-401F-4C0C-A343-F11A0C2F34D6}] => (Allow) F:\Documents\Riot Games\VALORANT\live\VALORANT.exe (Riot Games, Inc. -> Epic Games, Inc.)
FirewallRules: [{B1564229-B10C-4E05-B645-7B6C6690852E}] => (Allow) F:\Documents\Riot Games\VALORANT\live\VALORANT.exe (Riot Games, Inc. -> Epic Games, Inc.)
FirewallRules: [{D834A626-9A1B-42D7-9601-865D4EE481A1}] => (Allow) F:\Documents\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{29631779-7046-4F71-BF0D-FE3330511A86}] => (Allow) F:\Documents\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{DE019A1F-9CB7-4923-B5F8-77EDE354F3C9}] => (Allow) F:\Documents\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{8E503278-7377-4BB0-BE5C-29BF83D6CC7F}] => (Allow) F:\Documents\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{299820D2-FF54-412D-8C32-1D27B03B44CA}] => (Allow) C:\Program Files\Riot Vanguard\vgc.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{BB68ED12-0AFF-41DE-A04B-8A9F8980AEE8}] => (Allow) C:\Program Files\Riot Vanguard\vgc.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{DC550F7D-D635-4FD4-88B4-4836A5A6EFCF}] => (Allow) C:\Program Files\Riot Vanguard\vgc.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{D670962B-F8CB-4A32-B34B-6EC7607512E1}] => (Allow) C:\Program Files\Riot Vanguard\vgc.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{B80679BB-9CE2-4C36-A40A-195B0E43A3AC}F:\documents\programas\gtav\gta5.exe] => (Allow) F:\documents\programas\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{805506F2-4310-4A42-919F-BC6DEE4680A9}F:\documents\programas\gtav\gta5.exe] => (Allow) F:\documents\programas\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{CD8BD7B3-0C2E-43B3-986A-860EE9653B9A}C:\users\danie\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\danie\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [Archivo no firmado]
FirewallRules: [UDP Query User{F736A369-D773-4997-8C6D-0864D9C8DA95}C:\users\danie\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\danie\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [Archivo no firmado]
FirewallRules: [TCP Query User{128DABD2-FF58-4732-87F5-C8DE3DDFBE76}F:\programas\steam.exe] => (Allow) F:\programas\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{E9B79F07-3E4F-4FB9-86E5-5853B4CD8A35}F:\programas\steam.exe] => (Allow) F:\programas\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4704FA7A-941F-4F4B-882D-566181D95F79}] => (Allow) F:\Programas\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FE473833-AE8B-4B88-930D-033FA9E9D713}] => (Allow) F:\Programas\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{5925A7A0-31FE-44B9-B23A-7F32A7EA51B1}C:\program files\hp\hp envy 5000 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 5000 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{812D21C4-D9A3-4A44-AFBE-F456C9F3516D}C:\program files\hp\hp envy 5000 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 5000 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{C6416F75-38DA-40FF-88E6-205104C4DB33}C:\users\danie\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\danie\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{3CC1C9D4-3FDC-4327-B4A4-5C0B73FD67CF}C:\users\danie\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\danie\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{B08CF801-9AE1-4DE3-945B-639F1DECEA35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10A30CFE-CAC8-4975-901C-CDB08398F2FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D876752-818B-44CE-AAEE-2A760EA6B99B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DB8944F5-F4C2-48EA-91ED-0791931B60E0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B5EB372B-3DC6-4635-ACE3-BF7BEBD0755D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F6BCEFBD-7247-45E3-A705-E8908D6794BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12E54839-7D66-4A3C-BABB-0FE86928D800}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

ATENCIÓN: Restaurar Sistema está deshabilitado (Total:117.98 GB) (Free:51.44 GB) (44%)

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (05/22/2020 10:29:53 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (940,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/22/2020 10:24:10 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15068,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/22/2020 09:52:16 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/22/2020 09:40:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (05/22/2020 09:40:14 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (05/22/2020 09:16:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10660,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/22/2020 09:09:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2876,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/22/2020 05:00:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13764,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Errores del sistema:
=============
Error: (05/22/2020 09:18:57 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/22/2020 09:01:22 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-0A7JF5U)
Description: No se puede iniciar un servidor DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Error 
"2147942767"
al iniciar este comando:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (05/22/2020 08:55:26 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/22/2020 08:55:26 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/22/2020 08:55:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/22/2020 08:55:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Synaptics Audio Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (05/22/2020 08:55:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (05/22/2020 08:55:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.


Windows Defender:
===================================
Date: 2020-05-20 19:05:02.721
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {11635E6B-875A-4A7B-8DC6-4D2BDC95B9EA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-05-17 12:15:12.167
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {D5D5A9A9-4A90-4495-B2AA-0D5E78AFFCBE}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-05-17 12:09:16.536
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {14AE8B60-E4F3-4A43-B2C2-FCC1A44BE04B}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-05-16 20:21:08.673
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B57DCD43-56EE-459F-ADD9-6822FCB5494D}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-05-16 19:44:14.882
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1E1020D3-FE50-4E50-BB4C-869F8E2C8A34}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2020-04-19 12:26:25.054
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:26:24.769
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:26:22.005
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:24:06.074
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:24:05.249
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:24:04.968
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:24:03.844
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-19 12:24:03.792
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: AMI F.26 12/13/2019
Placa base: HP 84F8
Procesador: Intel(R) Core(TM) i5-8300H CPU @ 2.30GHz
Porcentaje de memoria en uso: 60%
RAM física total: 8001.32 MB
RAM física disponible: 3127.28 MB
Virtual total: 17729.32 MB
Virtual disponible: 10407.37 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:117.98 GB) (Free:51.44 GB) NTFS
Drive f: (Disco local) (Fixed) (Total:929.87 GB) (Free:649.34 GB) NTFS

\\?\Volume{deccf7c4-3bf3-4f6b-9703-e7c1bb063581}\ (Recuperación) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{84106af6-911d-402d-bff7-f12d42e8d418}\ () (Fixed) (Total:0.66 GB) (Free:0.08 GB) NTFS
\\?\Volume{8f551300-dc0d-40b7-87e0-0a5dba12b15e}\ () (Fixed) (Total:0.09 GB) (Free:0.03 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 938468F3)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Daniela · 24 Mayo, 2020 17:39

Hola

Mueve FRST a la unidad principal C:/ y el Fixlog tienes que copiarlo en la misma unidad.

MUY Importante Realiza una copia de seguridad del registro :

Para hacerlo descarga DelFix.exe( en tu escritorio).
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.
Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

A continuación con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.

Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\Run: [utweb] => C:\Users\danie\AppData\Roaming\uTorrent Web\utweb.exe [5487744 2020-03-25] (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado]
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {66E0CC08-4BC2-430E-8F7A-F3062E1285B2} - System32\Tasks\Uninstaller_SkipUac_Daniel => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5891344 2019-11-12] (IObit Information Technology -> IObit)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
CHR Extension: (Bugatti) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkaehngbpifognimhfchnicdnfhjjmdl [2019-02-12]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [44112 2019-11-12] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37328 2019-07-30] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [49800 2019-11-12] (IObit Information Technology -> IObit)
2020-05-22 20:55 - 2019-11-14 17:54 - 000000000 ____D C:\Users\danie\AppData\Roaming\IObit
2020-05-22 20:55 - 2019-11-14 17:54 - 000000000 ____D C:\ProgramData\IObit
2020-05-22 11:26 - 2020-04-19 12:14 - 000000000 ____D C:\Program Files\Avast Software
2019-04-20 20:30 - 2019-04-20 20:30 - 000000000 _____ () C:\Users\danie\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [iSkysoftVideoConverterFileOpreation] -> {BB35DE05-89D6-4D8F-95DE-A27DF8156D91} =>  -> Ningún archivo
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [466]
HKU\S-1-5-21-1109533091-1290867549-4281326807-1001\...\StartupApproved\Run: => "Chromium"
C:\ProgramData\Intel

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.

Nota Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
Presionar el botón FIX/Corregir y aguardar a que termine.
La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo

Daniel_Ortiz · 24 Mayo, 2020 20:17

Al final he formateado el ordenador pero con la opción de borrar solo los programas ya que me hacia falta hoy para trabajar y no me podía permitir un fallo de los de antes, aun así el pc sigue a mas del 30 porcien de uso de ram nada mas iniciar. Empiezo a sospechar (desde la ignorancia) que es cosa de windows.

Muchisimas gracias por tu ayuda igualmente,

unas ultimas dudillas ¿hay alguna forma de saturar menos la ram?¿Como debo proteger mi pc a partir de ahora?

Daniela · 24 Mayo, 2020 22:12

Hola

No hacía falta que formatearas, deberías haber realizado el último paso que te di.

Realiza un nuevo análisis con Malwarebytes a ver si sigue detectando Autoit y traes el reporte.

Un saludo

Daniel_Ortiz · 25 Mayo, 2020 12:40

 Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 25/5/20
Hora del análisis: 14:32
Archivo de registro: d20c83ee-9e83-11ea-8a16-e4e74936b57d.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.920
Versión del paquete de actualización: 1.0.24420
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.836)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-0A7JF5U\Daniel

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 264728
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 10 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Todo limpio, muchas gracias por tu ayuda

Un saludo

xavi38 · 28 Mayo, 2020 05:07

hola, pasale el ROGUE kILLER

Daniel_Ortiz · 28 Mayo, 2020 12:59

Mando un informe de roguekiller antes de cerrar el hilo. ¿Todo correcto? Informe RogueKiller.txt (3,9 KB)

xavi38 · 28 Mayo, 2020 16:34

Hola amigo, has visto como te lo detectado todo y lo ha eliminado, esta herramienta es muy buena, ya te dije que la pasases. esta todo correcto y para poder asegurarte vuevela a pasar y veras como ya no queda nada.

Daniela · 28 Mayo, 2020 22:27

Hola @Daniel_Ortiz

Comenta si ya se resolvió el problema por el que iniciaste el tema.

Un saludo

JavierHF · 28 Mayo, 2020 23:41

Hola @xavi38

Y a ti quien te ha dicho que TU puedas recomendar ese tipo de herramientas.

Por muchas cosas que le pueda encontrar esta herramienta, lo primero que TU debes hacer es leerte las normas de este Foro :

Ya llevas en este Foro tiempo suficiente(más de un año) como para conocerte nuestras normas.

Saludos.

xavi38 · 29 Mayo, 2020 06:19

ostras perdon, no era mi intencion fastidiarla, simplemente le aconseje a este chaval con toda mi inocencia, no volvera a ocurrir lo siento

Daniel_Ortiz · 31 Mayo, 2020 09:19

El problema ya esta resuelto, y el ordenador va de 10 después de probarlo unos días.

Muchas gracias por la ayuda.

Daniela · 31 Mayo, 2020 10:04

Hola @Daniel_Ortiz

Sigue estos pasos, para eliminar las herramientas utilizadas:

Para hacerlo utiliza de nuevo/descarga >> DelFix.exe en tu escritorio.

Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)
Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.

Gracias por confiar en ForoSpyware. Ha sido un placer ayudarte

Nos alegramos que se te haya resuelto Damos el tema por solucionado.

Solucionado

Un saludo