Avast me muestra un cuadro de "amenaza resuelta" URL:Blacklist a cada momento

Ayuda General
1

Buen día comunidad. Soy nuevo en este foro. Luego de buscar por muchas horas alguna solución para mi problema, me veo obligado a postear esto acá y buscar ayuda.

Resulta que tengo el antivirus Avast en su versión Free, y desde que lo instalé me salta una ventana emergente notificandome de una Amenaza Resuelta por el escudo web. El mensaje que muestra es el siguiente:

Hemos resuelto de forma segura la conexión de 124.158.12.246 porque estaba infectada por URL:Blacklist.

Nombre de amaneza: URL:Blacklist.

Gravedad: 1/3

URL: http://124.158.12.246/0BC8EC41.moe

Proceso: C:\Windows\SysWOW64\svchost.exe

Detectado por: Escudo web

Estado: Conexión anulada

La IP que muestra no siempre es la misma, cambia en cada aviso.

Y no me permite eliminar ni hacer nada. Si cierro la ventana me sale nuevamente. Ya he formateado la PC dos veces y sigue con el mismo problema. Solo formateo, instalo Avast y empieza con lo mismo. También instalé todas las actualizaciones que me aparecían en Windows Update, y nada.

Mi SO es Windows 7 Ultimate x64. Espero me puedan ayudar.

2

  • Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.

  • En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

3 
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06-06-2020
Ejecutado por Home (administrador) sobre HOME-PC (LENOVO 7515A33) (18-06-2020 16:29:41)
Ejecutado desde C:\Users\Home\Desktop
Perfiles cargados: Home
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: Opera)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
(Opera Software AS -> Opera Software) C:\Users\Home\AppData\Local\Programs\Opera\68.0.3618.165\opera.exe <11>
(Opera Software AS -> Opera Software) C:\Users\Home\AppData\Local\Programs\Opera\68.0.3618.165\opera_crashreporter.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\Home\AppData\Roaming\Telegram Desktop\Telegram.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108136 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Telegram.lnk [2020-06-18]
ShortcutTarget: Telegram.lnk -> C:\Users\Home\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {14879DB9-5BC2-41E6-905B-0D628203B127} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [109264 2020-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {8D737383-E997-4F96-9813-6640D577F200} - System32\Tasks\Opera scheduled Autoupdate 1592402155 => C:\Users\Home\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {973805F5-0403-4912-9E5D-AC6D974B5D42} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-06-17] (Avast Software s.r.o. -> Avast Software)
Task: {A61C3183-4D36-4978-AAEE-88B688FAF245} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3314272 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
Task: {FA70062A-F783-417A-B6BA-9DCECD971E67} - System32\Tasks\Opera scheduled assistant Autoupdate 1592402157 => C:\Users\Home\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local: [ActivePolicy] SOFTWARE\Policies\Microsoft\Windows\IPSEC\Policy\Local\ipsecPolicy{8d22a1c5-1367-48bb-b61e-644de1d49f79} <==== ATENCIÓN (Restricción - IP)
Tcpip\Parameters: [DhcpNameServer] 200.109.78.12 200.44.32.12
Tcpip\..\Interfaces\{589785D7-8231-4240-8BA1-1C3055224371}: [DhcpNameServer] 200.109.78.12 200.44.32.12

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: vrkfu8ts.default
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\vrkfu8ts.default [2020-06-18]
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\ko1zkc7g.default-release [2020-06-18]
FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\ko1zkc7g.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-06-18]
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

"Ms628BD330App" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\Ms628BD330App => C:\Windows\System32\Ms628BD330App.dll <==== ATENCIÓN (Rootkit!/Servicio bloqueado)

U3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6392728 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [506152 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-06-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462592 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322256 2020-06-17] (Avast Software s.r.o. -> AVAST Software)
R3 VST64HWBS2; C:\Windows\System32\DRIVERS\VSTBS26.SYS [411136 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 VST64_DPV; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 winachsf; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

NETSVC: Ms628BD330App -> no ruta de acceso de archivo.

==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-18 16:29 - 2020-06-18 16:32 - 000010802 _____ C:\Users\Home\Desktop\FRST.txt
2020-06-18 16:28 - 2020-06-18 16:31 - 000000000 ____D C:\FRST
2020-06-18 16:27 - 2020-06-18 16:27 - 002289152 _____ (Farbar) C:\Users\Home\Desktop\FRST64.exe
2020-06-18 15:40 - 2020-06-18 15:40 - 000000350 _____ C:\Users\Home\Downloads\Opera Passwords.csv
2020-06-18 15:15 - 2017-02-10 12:02 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2020-06-18 15:15 - 2017-02-10 11:47 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2020-06-18 15:15 - 2017-02-09 12:02 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2020-06-18 15:15 - 2017-02-09 12:01 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-06-18 15:15 - 2017-02-09 12:01 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2020-06-18 15:15 - 2017-02-09 11:44 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2020-06-18 15:15 - 2017-02-09 11:44 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2020-06-18 15:15 - 2017-02-09 11:21 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2020-06-18 15:15 - 2017-02-06 11:44 - 000733696 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2020-06-18 15:15 - 2017-01-13 13:30 - 000976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2020-06-18 15:15 - 2017-01-13 13:30 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2020-06-18 15:15 - 2017-01-13 13:15 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2020-06-18 15:15 - 2017-01-13 13:15 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2020-06-18 15:15 - 2017-01-11 13:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2020-06-18 15:15 - 2017-01-11 13:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2020-06-18 15:14 - 2017-02-10 12:02 - 000803328 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2020-06-18 15:14 - 2017-02-10 11:47 - 000628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2020-06-18 15:14 - 2017-02-10 10:03 - 001251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-06-18 15:14 - 2017-02-09 11:30 - 003220480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-06-18 15:14 - 2017-02-09 09:36 - 001648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-06-18 15:14 - 2017-02-09 09:36 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-06-18 15:14 - 2017-01-11 13:31 - 001887744 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2020-06-18 15:14 - 2017-01-11 13:13 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2020-06-18 15:03 - 2020-06-18 15:13 - 000000000 ____D C:\Users\Home\AppData\LocalLow\Mozilla
2020-06-18 15:03 - 2020-06-18 15:03 - 000000000 ____D C:\Users\Home\AppData\Roaming\Mozilla
2020-06-18 15:02 - 2020-06-18 15:03 - 000000000 ____D C:\ProgramData\Mozilla
2020-06-18 15:02 - 2020-06-18 15:02 - 000001155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-18 15:02 - 2020-06-18 15:02 - 000001143 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-06-18 15:02 - 2020-06-18 15:02 - 000001143 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-06-18 15:02 - 2020-06-18 15:02 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-06-18 15:02 - 2020-06-18 15:02 - 000000000 ____D C:\Users\Home\AppData\Local\Mozilla
2020-06-18 15:02 - 2020-06-18 15:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-18 15:01 - 2020-06-18 15:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-18 14:55 - 2020-06-18 14:55 - 000000000 ____D C:\Users\Home\Desktop\Jorge
2020-06-18 12:31 - 2020-06-18 12:31 - 000002060 _____ C:\Users\Home\Downloads\1_5143291566810464416.ouSI9q
2020-06-18 11:53 - 2020-06-18 11:53 - 000000000 ____D C:\ProgramData\Package Cache
2020-06-18 11:51 - 2020-06-18 11:51 - 000001052 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneLite.lnk
2020-06-18 11:51 - 2020-06-18 11:51 - 000001044 _____ C:\Users\Home\Desktop\RuneLite.lnk
2020-06-18 11:51 - 2020-06-18 11:51 - 000000000 ____D C:\Users\Home\AppData\Local\RuneLite
2020-06-18 11:50 - 2020-06-18 11:50 - 000001085 _____ C:\Users\Public\Desktop\Adobe Photoshop CS6.lnk
2020-06-18 11:50 - 2020-06-18 11:50 - 000001085 _____ C:\ProgramData\Desktop\Adobe Photoshop CS6.lnk
2020-06-18 11:50 - 2020-06-18 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6
2020-06-18 11:49 - 2020-06-18 11:50 - 000000000 ____D C:\Program Files (x86)\Adobe Photoshop CS6
2020-06-18 11:48 - 2020-06-18 11:48 - 000000000 ____D C:\Users\Home\AppData\Roaming\WinRAR
2020-06-18 11:29 - 2013-12-24 18:39 - 001987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2020-06-18 11:29 - 2013-12-24 18:18 - 002565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2020-06-18 11:29 - 2013-11-26 03:46 - 003419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2020-06-18 11:29 - 2013-11-22 18:18 - 003928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-06-18 11:28 - 2016-04-14 09:19 - 000603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2020-06-18 11:28 - 2016-04-14 08:51 - 000647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2020-06-18 11:28 - 2015-12-08 17:24 - 002285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-06-18 11:28 - 2015-12-08 14:37 - 002777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-06-18 11:28 - 2011-03-11 02:11 - 001659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-06-18 11:28 - 2011-03-11 02:11 - 000410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2020-06-18 11:28 - 2011-03-11 02:11 - 000166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2020-06-18 11:28 - 2011-03-11 02:11 - 000148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2020-06-18 11:28 - 2011-03-11 02:11 - 000107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2020-06-18 11:28 - 2011-03-11 02:11 - 000027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2020-06-18 11:28 - 2011-03-11 02:03 - 002565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-06-18 11:28 - 2011-03-11 02:00 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2020-06-18 11:28 - 2011-03-11 01:03 - 001699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-06-18 11:28 - 2011-03-11 01:01 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2020-06-18 11:27 - 2015-02-03 22:46 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2020-06-18 11:27 - 2015-02-03 22:24 - 000417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2020-06-18 10:54 - 2020-06-18 10:54 - 000000000 ____D C:\Program Files (x86)\Intel
2020-06-18 10:54 - 2020-06-18 10:54 - 000000000 ____D C:\Intel
2020-06-18 10:52 - 2013-10-01 20:40 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-06-18 10:51 - 2013-10-01 21:52 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2020-06-18 10:51 - 2013-10-01 21:41 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2020-06-18 10:51 - 2013-10-01 21:38 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2020-06-18 10:51 - 2013-10-01 21:18 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2020-06-18 10:51 - 2013-10-01 21:18 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2020-06-18 10:51 - 2013-10-01 20:59 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-06-18 10:51 - 2013-10-01 19:45 - 001057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2020-06-18 10:51 - 2013-10-01 19:44 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2020-06-18 10:51 - 2013-10-01 19:44 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2020-06-18 10:51 - 2013-10-01 19:38 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2020-06-18 10:51 - 2013-10-01 19:31 - 000420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-06-18 10:51 - 2013-10-01 19:28 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-06-18 10:51 - 2013-10-01 19:01 - 001147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-06-18 10:51 - 2013-10-01 18:38 - 000855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2020-06-18 10:51 - 2013-10-01 18:04 - 001068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2020-06-18 10:51 - 2013-10-01 16:27 - 006578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-06-18 10:51 - 2013-10-01 16:25 - 005698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-06-18 10:44 - 2015-01-08 22:44 - 000950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2020-06-18 10:44 - 2015-01-08 22:44 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2020-06-18 10:44 - 2015-01-08 22:44 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2020-06-18 10:44 - 2015-01-08 22:18 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2020-06-18 10:32 - 2015-12-16 14:25 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2020-06-18 10:32 - 2015-12-16 14:23 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2020-06-18 10:32 - 2015-12-16 14:23 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2020-06-18 10:32 - 2015-12-16 14:23 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2020-06-18 10:32 - 2015-12-16 14:18 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2020-06-18 10:32 - 2015-12-16 14:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2020-06-18 10:32 - 2015-12-16 14:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2020-06-18 10:32 - 2015-12-16 14:17 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2020-06-18 10:32 - 2015-12-16 10:08 - 000419928 _____ C:\Windows\SysWOW64\locale.nls
2020-06-18 10:32 - 2015-12-16 10:07 - 000419928 _____ C:\Windows\system32\locale.nls
2020-06-18 10:32 - 2014-06-18 17:53 - 001943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2020-06-18 10:32 - 2014-06-18 17:53 - 001131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2020-06-18 10:32 - 2014-06-18 17:53 - 000156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2020-06-18 10:32 - 2014-06-18 17:53 - 000156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2020-06-18 10:32 - 2014-06-18 17:53 - 000081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2020-06-18 10:32 - 2014-06-18 17:53 - 000073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2020-06-18 10:29 - 2014-02-03 22:05 - 000274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2020-06-18 10:29 - 2014-02-03 22:05 - 000190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-06-18 10:29 - 2014-02-03 22:05 - 000027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2020-06-18 10:29 - 2014-02-03 21:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2020-06-18 10:29 - 2014-02-03 21:30 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2020-06-18 10:22 - 2020-06-18 10:22 - 000004272 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1592402157
2020-06-18 00:25 - 2015-06-06 18:43 - 000961192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000062304 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:43 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000883712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000064352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2020-06-18 00:25 - 2015-06-06 18:38 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2020-06-17 22:08 - 2020-06-17 22:08 - 000000000 ____D C:\Users\Home\AppData\Roaming\Adobe
2020-06-17 18:52 - 2015-07-30 08:43 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2020-06-17 18:52 - 2015-07-30 08:43 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2020-06-17 18:48 - 2013-10-14 18:00 - 000028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2020-06-17 18:18 - 2020-06-17 18:18 - 019607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 014404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 012829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 006026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 004305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 002885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-06-17 18:18 - 2020-06-17 18:18 - 002426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 002278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 002052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-06-17 18:18 - 2020-06-17 18:18 - 001950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 001309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2020-06-17 18:18 - 2020-06-17 18:18 - 000616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2020-06-17 18:18 - 2020-06-17 18:18 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-06-17 18:18 - 2020-06-17 18:18 - 000342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2020-06-17 18:18 - 2020-06-17 18:18 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-06-17 18:18 - 2020-06-17 18:18 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-06-17 18:18 - 2020-06-17 18:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2020-06-17 18:18 - 2020-06-17 18:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-06-17 18:18 - 2020-06-17 18:18 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 024917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-06-17 18:17 - 2020-06-17 18:17 - 002125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-06-17 18:17 - 2020-06-17 18:17 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2020-06-17 18:17 - 2020-06-17 18:17 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2020-06-17 18:17 - 2020-06-17 18:17 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 001080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2020-06-17 18:04 - 2020-06-17 18:04 - 000002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2020-06-17 16:05 - 2020-06-18 11:33 - 001647828 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-06-17 15:12 - 2020-06-17 15:24 - 000000000 ____D C:\Windows\system32\MRT
2020-06-17 15:12 - 2020-06-17 15:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-06-17 14:28 - 2012-07-25 22:38 - 000744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2020-06-17 14:28 - 2012-07-25 22:38 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2020-06-17 14:28 - 2012-07-25 22:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2020-06-17 14:28 - 2012-07-25 22:38 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2020-06-17 14:28 - 2012-07-25 22:38 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2020-06-17 14:28 - 2012-07-25 21:56 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2020-06-17 14:28 - 2012-07-25 21:56 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2020-06-17 14:28 - 2012-06-02 10:27 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2020-06-17 14:07 - 2017-04-27 18:20 - 003550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2020-06-17 14:07 - 2017-04-12 08:35 - 004296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2020-06-17 14:02 - 2012-03-01 02:16 - 000023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2020-06-17 14:02 - 2012-03-01 01:58 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2020-06-17 14:02 - 2012-03-01 00:59 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2020-06-17 13:50 - 2014-06-30 17:54 - 000008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2020-06-17 13:50 - 2014-06-30 17:44 - 000008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2020-06-17 13:50 - 2014-06-06 01:46 - 000035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2020-06-17 13:50 - 2014-06-06 01:42 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2020-06-17 13:50 - 2014-03-09 17:18 - 001389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2020-06-17 13:50 - 2014-03-09 17:18 - 000171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2020-06-17 13:50 - 2014-03-09 17:17 - 000619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2020-06-17 13:50 - 2014-03-09 17:17 - 000099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2020-06-17 13:44 - 2019-02-20 23:42 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-06-17 13:44 - 2019-02-20 23:40 - 005552360 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-06-17 13:44 - 2019-02-20 23:40 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-06-17 13:44 - 2019-02-20 23:39 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-06-17 13:44 - 2019-02-20 23:39 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-06-17 13:44 - 2019-02-20 23:39 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2020-06-17 13:44 - 2019-02-20 23:38 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2020-06-17 13:44 - 2019-02-20 23:37 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:29 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-06-17 13:44 - 2019-02-20 23:28 - 004055784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2020-06-17 13:44 - 2019-02-20 23:28 - 003960552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2020-06-17 13:44 - 2019-02-20 23:26 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation)
4 
C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:12 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
    2020-06-17 13:44 - 2019-02-20 23:12 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2020-06-17 13:44 - 2019-02-20 23:12 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
    2020-06-17 13:44 - 2019-02-20 23:11 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2020-06-17 13:44 - 2019-02-20 23:09 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2020-06-17 13:44 - 2019-02-20 23:09 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
    2020-06-17 13:44 - 2019-02-20 23:08 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2020-06-17 13:44 - 2019-02-20 23:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2020-06-17 13:44 - 2019-02-20 23:08 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
    2020-06-17 13:44 - 2019-02-20 23:06 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
    2020-06-17 13:44 - 2019-02-20 23:06 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2020-06-17 13:44 - 2019-02-20 23:06 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2020-06-17 13:44 - 2019-02-20 23:06 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
    2020-06-17 13:44 - 2019-02-20 23:06 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2020-06-17 13:44 - 2019-02-20 23:06 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2020-06-17 13:44 - 2019-02-20 23:05 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
    2020-06-17 13:44 - 2019-02-20 23:05 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2020-06-17 13:44 - 2019-02-20 23:04 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2020-06-17 13:44 - 2019-02-20 23:04 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2020-06-17 13:44 - 2019-02-20 23:04 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2020-06-17 13:44 - 2019-02-20 23:04 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2020-06-17 13:44 - 2019-02-10 12:11 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2020-06-17 13:44 - 2019-02-10 12:11 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
    2020-06-17 13:44 - 2019-02-10 12:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2020-06-17 13:44 - 2019-02-10 11:59 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
    2020-06-17 13:44 - 2019-02-10 11:59 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
    2020-06-17 13:44 - 2019-02-10 11:59 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
    2020-06-17 13:44 - 2019-02-10 11:58 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2020-06-17 13:44 - 2019-02-10 11:58 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2020-06-17 13:44 - 2019-02-10 11:40 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2020-06-17 13:44 - 2019-02-10 11:39 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2020-06-17 13:44 - 2019-02-10 11:39 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
    2020-06-17 13:44 - 2019-02-10 11:39 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
    2020-06-17 13:44 - 2019-02-10 11:39 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2020-06-17 13:44 - 2019-02-10 11:38 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2020-06-17 13:44 - 2019-02-10 11:37 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
    2020-06-17 13:44 - 2019-02-10 11:37 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2020-06-17 13:44 - 2019-02-10 11:37 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2020-06-17 13:44 - 2019-02-10 11:37 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2020-06-17 13:44 - 2019-02-10 11:32 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
    2020-06-17 13:44 - 2019-02-10 11:20 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2020-06-17 13:44 - 2019-02-10 11:19 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2020-06-17 13:44 - 2019-02-10 11:19 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2020-06-17 13:44 - 2019-02-10 11:08 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
    2020-06-17 13:44 - 2019-02-10 11:08 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
    2020-06-17 13:44 - 2018-11-17 22:26 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2020-06-17 13:44 - 2018-11-17 22:14 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2020-06-17 13:44 - 2018-11-17 22:13 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2020-06-17 13:44 - 2015-07-14 22:49 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
    2020-06-17 13:43 - 2016-02-05 14:26 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
    2020-06-17 13:43 - 2016-02-05 14:24 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
    2020-06-17 13:43 - 2016-02-05 13:03 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
    2020-06-17 13:43 - 2015-10-29 13:20 - 000342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
    2020-06-17 13:43 - 2015-10-29 13:20 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
    2020-06-17 13:43 - 2015-10-29 13:20 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
    2020-06-17 13:43 - 2015-10-29 13:20 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
    2020-06-17 13:43 - 2015-10-29 13:20 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
    2020-06-17 13:43 - 2015-10-29 13:19 - 000295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
    2020-06-17 13:43 - 2015-10-29 13:19 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
    2020-06-17 13:43 - 2015-06-03 15:51 - 000451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
    2020-06-17 13:43 - 2014-03-04 05:14 - 000722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
    2020-06-17 13:43 - 2014-03-04 05:14 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
    2020-06-17 13:43 - 2014-03-04 05:13 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
    2020-06-17 13:43 - 2014-03-04 05:13 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
    2020-06-17 13:43 - 2014-03-04 05:13 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
    2020-06-17 13:43 - 2014-03-04 05:13 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
    2020-06-17 13:43 - 2014-03-04 05:13 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
    2020-06-17 13:43 - 2014-03-04 04:47 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
    2020-06-17 13:42 - 2016-02-04 20:49 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
    2020-06-17 13:42 - 2016-02-04 14:11 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
    2020-06-17 13:42 - 2013-02-11 23:42 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
    2020-06-17 13:42 - 2013-02-11 23:42 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
    2020-06-17 13:42 - 2012-07-04 15:56 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys
    2020-06-17 13:42 - 2011-08-27 01:07 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
    2020-06-17 13:42 - 2011-08-26 23:56 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
    2020-06-17 13:42 - 2011-08-17 00:56 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2020-06-17 13:42 - 2011-08-17 00:55 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2020-06-17 13:42 - 2011-08-16 23:54 - 000465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
    2020-06-17 13:42 - 2011-08-16 23:49 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
    2020-06-17 13:41 - 2016-03-16 14:20 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
    2020-06-17 13:41 - 2016-03-16 13:58 - 000176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
    2020-06-17 13:41 - 2016-03-16 13:58 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
    2020-06-17 13:41 - 2012-11-22 22:43 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2020-06-17 13:40 - 2015-07-22 19:32 - 001390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
    2020-06-17 13:40 - 2015-07-22 19:32 - 000879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2020-06-17 13:40 - 2015-07-22 13:23 - 000635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2020-06-17 13:40 - 2015-07-22 12:18 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
    2020-06-17 13:39 - 2016-01-20 20:21 - 000073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
    2020-06-17 13:39 - 2014-09-04 00:53 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2020-06-17 13:39 - 2014-09-04 00:34 - 000372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
    2020-06-17 13:38 - 2016-03-09 14:30 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
    2020-06-17 13:38 - 2016-03-09 14:10 - 000316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
    2020-06-17 13:38 - 2016-02-03 13:37 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2020-06-17 13:38 - 2014-12-18 22:36 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2020-06-17 13:38 - 2014-10-24 21:27 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2020-06-17 13:38 - 2014-10-24 21:02 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
    2020-06-17 13:38 - 2012-07-04 15:56 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
    2020-06-17 13:38 - 2012-01-04 06:14 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
    2020-06-17 13:38 - 2012-01-04 04:28 - 000442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
    2020-06-17 13:38 - 2011-06-15 05:32 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
    2020-06-17 13:38 - 2011-06-15 05:32 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
    2020-06-17 13:38 - 2011-06-15 05:32 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
    2020-06-17 13:38 - 2011-06-15 05:32 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
    2020-06-17 13:38 - 2011-06-15 04:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
    2020-06-17 13:38 - 2011-06-15 04:25 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
    2020-06-17 13:38 - 2011-06-15 04:25 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
    2020-06-17 13:38 - 2011-06-15 04:25 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
    2020-06-17 13:38 - 2011-06-15 04:25 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
    2020-06-17 13:37 - 2015-12-08 17:24 - 001620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 001568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 001325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
    2020-06-17 13:37 - 2015-12-08 17:24 - 000739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
    2020-06-17 13:37 - 2015-12-08 17:24 - 000154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
    2020-06-17 13:37 - 2015-12-08 17:23 - 000829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
    2020-06-17 13:37 - 2015-12-08 17:23 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
    2020-06-17 13:37 - 2015-12-08 17:23 - 000153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
    2020-06-17 13:37 - 2015-12-08 17:23 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
    2020-06-17 13:37 - 2015-12-08 17:23 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
    2020-06-17 13:37 - 2015-12-08 17:23 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 001955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 001232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 001026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 000978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 000292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
    2020-06-17 13:37 - 2015-12-08 14:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
    2020-06-17 13:37 - 2015-12-08 14:37 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
    2020-06-17 13:37 - 2015-12-08 14:36 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
    2020-06-17 13:37 - 2015-12-08 14:24 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
    2020-06-17 13:37 - 2015-12-08 13:42 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
    2020-06-17 13:37 - 2015-12-08 13:41 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
    2020-06-17 13:35 - 2015-07-15 13:40 - 001743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2020-06-17 13:34 - 2013-12-03 21:57 - 000488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
    2020-06-17 13:34 - 2013-12-03 21:57 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
    2020-06-17 13:34 - 2013-12-03 21:57 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
    2020-06-17 13:34 - 2013-12-03 21:57 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
    2020-06-17 13:34 - 2013-12-03 21:56 - 000528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
    2020-06-17 13:34 - 2013-12-03 21:46 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
    2020-06-17 13:34 - 2013-12-03 21:46 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
    2020-06-17 13:34 - 2013-12-03 21:46 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
    2020-06-17 13:34 - 2013-12-03 21:46 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
    2020-06-17 13:34 - 2013-12-03 21:33 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
    2020-06-17 13:34 - 2013-12-03 21:33 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
    2020-06-17 13:34 - 2013-12-03 21:33 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
    2020-06-17 13:34 - 2013-12-03 21:33 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
    2020-06-17 13:34 - 2013-12-03 21:32 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
    2020-06-17 13:34 - 2013-12-03 21:24 - 000594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
    2020-06-17 13:34 - 2013-12-03 21:24 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
    2020-06-17 13:34 - 2013-12-03 21:24 - 000510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
    2020-06-17 13:34 - 2013-12-03 21:24 - 000508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
    2020-06-17 13:34 - 2013-04-25 19:00 - 001505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
    2020-06-17 13:34 - 2013-03-31 18:22 - 001887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2020-06-17 13:33 - 2016-07-07 11:06 - 001896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2020-06-17 13:33 - 2016-07-07 11:06 - 000377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
    2020-06-17 13:33 - 2016-07-07 11:06 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
    2020-06-17 13:33 - 2016-07-07 10:38 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
    2020-06-17 13:33 - 2013-06-25 18:25 - 000785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2020-06-17 13:33 - 2012-11-28 18:26 - 000054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
    2020-06-17 13:33 - 2012-11-28 18:26 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
    2020-06-17 13:33 - 2012-11-28 18:26 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
    2020-06-17 13:33 - 2010-12-23 06:12 - 001118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
    2020-06-17 13:33 - 2010-12-23 06:06 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
    2020-06-17 13:33 - 2010-12-23 01:24 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
    2020-06-17 13:33 - 2010-12-23 01:20 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
    2020-06-17 13:31 - 2013-05-10 01:19 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
    2020-06-17 13:31 - 2013-05-09 22:50 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
    2020-06-17 13:31 - 2012-07-04 17:46 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2020-06-17 13:31 - 2012-07-04 17:43 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2020-06-17 13:31 - 2012-07-04 17:43 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2020-06-17 13:31 - 2012-07-04 16:46 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
    2020-06-17 13:31 - 2012-07-04 16:44 - 000041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
    2020-06-17 13:31 - 2011-12-30 01:56 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
    2020-06-17 13:31 - 2011-12-30 00:57 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
    2020-06-17 13:31 - 2011-12-16 04:16 - 000634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2020-06-17 13:31 - 2011-12-16 03:22 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
    2020-06-17 13:31 - 2011-05-04 00:55 - 002315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2020-06-17 13:31 - 2011-05-04 00:52 - 002223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2020-06-17 13:31 - 2011-05-04 00:52 - 000778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
    2020-06-17 13:31 - 2011-05-04 00:52 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
    2020-06-17 13:31 - 2011-05-04 00:52 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
    2020-06-17 13:31 - 2011-05-04 00:52 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
    2020-06-17 13:31 - 2011-05-04 00:49 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
    2020-06-17 13:31 - 2011-05-04 00:49 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
    2020-06-17 13:31 - 2011-05-04 00:49 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
    2020-06-17 13:31 - 2011-05-04 00:04 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
    2020-06-17 13:31 - 2011-05-04 00:02 - 001401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
    2020-06-17 13:31 - 2011-05-04 00:02 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
    2020-06-17 13:31 - 2011-05-04 00:02 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
    2020-06-17 13:31 - 2011-05-04 00:02 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
    2020-06-17 13:31 - 2011-05-04 00:02 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
    2020-06-17 13:31 - 2011-05-03 23:58 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
    2020-06-17 13:31 - 2011-05-03 23:58 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
    2020-06-17 13:31 - 2011-05-03 23:58 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
    2020-06-17 13:31 - 2011-02-12 07:04 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2020-06-17 13:30 - 2016-05-11 12:32 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
    2020-06-17 13:30 - 2016-05-11 12:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2020-06-17 13:30 - 2016-05-11 12:32 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
    2020-06-17 13:30 - 2016-05-11 10:49 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
    2020-06-17 13:30 - 2016-05-11 10:49 - 000231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
    2020-06-17 13:30 - 2016-05-11 10:49 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
    2020-06-17 13:30 - 2016-05-11 10:41 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
    2020-06-17 13:30 - 2016-05-11 10:31 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
    2020-06-17 13:30 - 2016-05-11 10:28 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
    2020-06-17 13:30 - 2016-01-22 01:48 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
    2020-06-17 13:30 - 2016-01-22 01:48 - 000723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
    2020-06-17 13:30 - 2016-01-22 01:34 - 000642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
    2020-06-17 13:30 - 2016-01-22 01:34 - 000535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
    2020-06-17 13:30 - 2015-10-13 00:27 - 000950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
    2020-06-17 13:30 - 2014-08-11 21:32 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
    2020-06-17 13:30 - 2014-08-11 21:06 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
    2020-06-17 13:28 - 2014-07-16 21:37 - 001113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2020-06-17 13:28 - 2014-07-16 21:37 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
    2020-06-17 13:28 - 2014-07-16 21:37 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2020-06-17 13:28 - 2014-07-16 21:37 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2020-06-17 13:28 - 2014-07-16 21:37 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2020-06-17 13:28 - 2014-07-16 21:10 - 000157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
    2020-06-17 13:28 - 2014-07-16 20:51 - 000212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2020-06-17 13:28 - 2014-07-16 20:51 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2020-06-17 13:28 - 2012-04-26 01:11 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2020-06-17 13:28 - 2012-04-26 01:04 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2020-06-17 13:27 - 2014-11-10 22:38 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
    2020-06-17 13:27 - 2014-11-10 22:14 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
    2020-06-17 13:27 - 2012-12-07 08:50 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
    2020-06-17 13:27 - 2012-12-07 08:45 - 002746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
    2020-06-17 13:27 - 2012-12-07 07:56 - 000308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
    2020-06-17 13:27 - 2012-12-07 07:50 - 002576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
    2020-06-17 13:27 - 2012-12-07 06:50 - 000045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000030720 _____ (Microsoft) C:\Windows\system32\usk.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
    2020-06-17 13:27 - 2012-12-07 06:50 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000055296 _____ (Microsoft) C:\Windows\system32\cero.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000021504 _____ (Microsoft) C:\Windows\system32\grb.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
    2020-06-17 13:27 - 2012-12-07 06:49 - 000015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
    2020-06-17 13:27 - 2012-12-07 06:16 - 000015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
    2020-06-17 13:27 - 2012-10-03 13:14 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
    2020-06-17 13:27 - 2012-10-03 13:14 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
    2020-06-17 13:27 - 2012-10-03 13:14 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
    2020-06-17 13:27 - 2012-10-03 13:14 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
    2020-06-17 13:27 - 2012-10-03 13:14 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
    2020-06-17 13:27 - 2012-10-03 13:12 - 000569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
    2020-06-17 13:27 - 2012-10-03 12:12 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
    2020-06-17 13:27 - 2012-10-03 12:12 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
    2020-06-17 13:27 - 2012-10-03 12:12 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
    2020-06-17 13:27 - 2012-01-13 02:42 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
    2020-06-17 13:26 - 2013-05-13 01:20 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
    2020-06-17 13:26 - 2013-05-12 23:13 - 001192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2020-06-17 13:26 - 2013-05-12 22:38 - 000903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
    2020-06-17 13:26 - 2013-05-12 22:38 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
    2020-06-17 13:25 - 2016-05-12 12:45 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
    2020-06-17 13:25 - 2016-05-12 12:44 - 000373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
    2020-06-17 13:25 - 2016-05-12 12:44 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
    2020-06-17 13:25 - 2016-05-12 10:48 - 000591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
    2020-06-17 13:25 - 2016-05-12 10:48 - 000274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
    2020-06-17 13:25 - 2016-05-12 10:48 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
    2020-06-17 13:25 - 2016-05-12 10:48 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
    2020-06-17 13:25 - 2016-05-12 10:48 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
    2020-06-17 13:25 - 2016-05-12 10:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
    2020-06-17 13:25 - 2016-05-12 10:27 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
    2020-06-17 13:25 - 2016-05-12 10:27 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
    2020-06-17 13:25 - 2015-07-09 13:28 - 001632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
    2020-06-17 13:25 - 2015-07-09 13:28 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
    2020-06-17 13:25 - 2015-07-09 13:27 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
    2020-06-17 13:25 - 2015-07-09 13:27 - 000193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
    2020-06-17 13:25 - 2015-07-09 13:12 - 001372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
    2020-06-17 13:25 - 2015-07-09 13:12 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
    2020-06-17 13:25 - 2015-07-09 13:12 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
    2020-06-17 13:25 - 2015-03-04 00:25 - 000367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
    2020-06-17 13:25 - 2015-03-04 00:11 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
    2020-06-17 13:25 - 2015-03-03 23:40 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
    2020-06-17 13:25 - 2013-10-29 22:02 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
    2020-06-17 13:25 - 2013-10-29 21:49 - 000301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
    2020-06-17 13:25 - 2013-10-18 21:48 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
    2020-06-17 13:25 - 2013-10-18 21:06 - 000159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
    2020-06-17 13:25 - 2012-06-06 01:32 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
5 
2020-06-17 13:25 - 2012-06-06 00:33 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
        2020-06-17 13:25 - 2011-02-05 12:40 - 000020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
        2020-06-17 13:25 - 2011-02-05 12:40 - 000019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
        2020-06-17 13:25 - 2011-02-05 12:40 - 000017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
        2020-06-17 13:21 - 2015-05-25 13:49 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
        2020-06-17 13:21 - 2015-05-25 13:48 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
        2020-06-17 13:21 - 2015-05-25 13:48 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
        2020-06-17 13:21 - 2015-05-25 13:48 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
        2020-06-17 13:21 - 2015-05-25 13:48 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
        2020-06-17 13:21 - 2015-05-25 13:48 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
        2020-06-17 13:21 - 2015-05-25 13:31 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
        2020-06-17 13:21 - 2015-05-25 13:30 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
        2020-06-17 13:21 - 2015-05-25 13:30 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
        2020-06-17 13:21 - 2015-05-25 13:30 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
        2020-06-17 13:21 - 2015-05-25 13:30 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
        2020-06-17 13:21 - 2015-05-25 13:30 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
        2020-06-17 13:21 - 2015-01-28 22:49 - 002543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
        2020-06-17 13:21 - 2015-01-28 22:32 - 002311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
        2020-06-17 13:20 - 2014-08-01 07:23 - 001031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
        2020-06-17 13:20 - 2014-08-01 07:05 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
        2020-06-17 13:19 - 2013-10-03 21:58 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
        2020-06-17 13:19 - 2013-10-03 21:55 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
        2020-06-17 13:19 - 2013-10-03 21:28 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
        2020-06-17 13:19 - 2013-10-03 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
        2020-06-17 13:19 - 2011-03-11 02:04 - 001395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
        2020-06-17 13:19 - 2011-03-11 02:04 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
        2020-06-17 13:19 - 2011-03-11 01:03 - 001164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
        2020-06-17 13:19 - 2011-03-11 01:03 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
        2020-06-17 13:16 - 2014-06-17 21:48 - 000692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
        2020-06-17 13:16 - 2014-06-17 21:21 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
        2020-06-17 13:15 - 2016-08-29 11:01 - 014183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
        2020-06-17 13:15 - 2016-08-29 11:01 - 001941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
        2020-06-17 13:15 - 2016-08-29 11:01 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
        2020-06-17 13:15 - 2016-08-29 10:42 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
        2020-06-17 13:15 - 2016-08-29 10:42 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
        2020-06-17 13:15 - 2016-08-29 10:42 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
        2020-06-17 13:15 - 2016-08-29 10:34 - 003229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
        2020-06-17 13:15 - 2016-08-29 10:25 - 002972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
        2020-06-17 13:15 - 2016-03-09 14:24 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
        2020-06-17 13:15 - 2016-03-09 14:04 - 000216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
        2020-06-17 13:14 - 2015-10-13 12:11 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
        2020-06-17 13:14 - 2015-10-13 12:10 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
        2020-06-17 13:14 - 2015-04-24 13:47 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
        2020-06-17 13:14 - 2015-04-24 13:26 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
        2020-06-17 13:13 - 2015-11-13 18:39 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
        2020-06-17 13:13 - 2015-11-13 18:39 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
        2020-06-17 13:13 - 2015-11-13 18:38 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
        2020-06-17 13:13 - 2015-11-13 18:20 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
        2020-06-17 13:13 - 2015-11-13 18:20 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
        2020-06-17 13:13 - 2015-11-13 18:19 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
        2020-06-17 13:13 - 2013-07-12 06:11 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
        2020-06-17 13:13 - 2012-08-21 16:31 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
        2020-06-17 13:10 - 2012-09-25 18:17 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
        2020-06-17 13:10 - 2012-09-25 18:16 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
        2020-06-17 13:08 - 2013-01-24 01:31 - 000223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
        2020-06-17 13:08 - 2012-11-02 01:29 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
        2020-06-17 13:08 - 2012-11-02 00:41 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
        2020-06-17 13:08 - 2012-03-17 03:28 - 000075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
        2020-06-17 13:08 - 2012-02-17 02:08 - 001031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
        2020-06-17 13:08 - 2012-02-17 01:04 - 000826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
        2020-06-17 13:08 - 2012-02-17 00:27 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
        2020-06-17 13:08 - 2011-02-18 06:21 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
        2020-06-17 13:08 - 2011-02-18 01:09 - 000031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
        2020-06-17 13:01 - 2015-04-10 22:49 - 000069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
        2020-06-17 13:00 - 2016-02-09 05:25 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
        2020-06-17 13:00 - 2015-12-08 17:23 - 000509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
        2020-06-17 13:00 - 2015-12-08 14:37 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
        2020-06-17 13:00 - 2015-06-01 19:37 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
        2020-06-17 13:00 - 2015-06-01 19:17 - 000210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
        2020-06-17 13:00 - 2015-04-12 22:58 - 000328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
        2020-06-17 13:00 - 2015-02-02 23:01 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
        2020-06-17 13:00 - 2015-02-02 22:42 - 000171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
        2020-06-17 13:00 - 2014-10-29 21:33 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
        2020-06-17 13:00 - 2014-10-29 21:15 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
        2020-06-17 13:00 - 2013-11-26 21:11 - 000343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
        2020-06-17 13:00 - 2013-11-26 21:11 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
        2020-06-17 13:00 - 2013-08-04 21:55 - 000155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
        2020-06-17 13:00 - 2013-07-02 23:35 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
        2020-06-17 13:00 - 2013-07-02 23:35 - 000032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
        2020-06-17 13:00 - 2011-05-24 07:12 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
        2020-06-17 13:00 - 2011-05-24 06:10 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
        2020-06-17 13:00 - 2011-05-24 06:10 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
        2020-06-17 13:00 - 2011-05-24 06:09 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
        2020-06-17 13:00 - 2011-05-24 06:07 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
        2020-06-17 12:59 - 2015-11-05 14:35 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
        2020-06-17 12:59 - 2015-11-05 14:32 - 000014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
        2020-06-17 12:59 - 2015-11-05 05:23 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
        2020-06-17 12:59 - 2015-11-03 14:34 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
        2020-06-17 12:59 - 2015-11-03 14:25 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
        2020-06-17 12:59 - 2014-01-27 22:02 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
        2020-06-17 12:59 - 2013-03-19 01:23 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
        2020-06-17 12:42 - 2013-08-27 20:42 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
        2020-06-17 11:53 - 2016-05-13 17:39 - 003156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
        2020-06-17 11:53 - 2016-05-13 17:39 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
        2020-06-17 11:53 - 2016-05-13 17:39 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
        2020-06-17 11:53 - 2016-05-13 17:37 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
        2020-06-17 11:53 - 2016-05-13 17:25 - 002607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
        2020-06-17 11:53 - 2016-05-13 17:23 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
        2020-06-17 11:53 - 2016-05-13 17:23 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
        2020-06-17 11:53 - 2016-05-13 17:22 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
        2020-06-17 11:53 - 2016-05-13 17:22 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
        2020-06-17 11:53 - 2016-05-13 17:22 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
        2020-06-17 11:53 - 2016-05-13 17:22 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
        2020-06-17 11:53 - 2016-05-13 17:20 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
        2020-06-17 11:53 - 2016-05-13 17:08 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
        2020-06-17 11:53 - 2016-05-13 17:08 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
        2020-06-17 11:53 - 2016-05-13 17:08 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
        2020-06-17 11:53 - 2016-05-13 17:08 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
        2020-06-17 11:53 - 2016-05-12 12:44 - 000862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
        2020-06-17 11:53 - 2016-05-12 12:44 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
        2020-06-17 11:53 - 2016-05-12 10:48 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
        2020-06-17 11:53 - 2016-05-12 10:48 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
        2020-06-17 11:53 - 2016-05-12 10:48 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
        2020-06-17 11:53 - 2016-05-12 08:35 - 000297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
        2020-06-17 11:53 - 2016-05-12 08:34 - 000249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
        2020-06-17 11:53 - 2016-05-04 12:51 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
        2020-06-17 11:53 - 2016-05-04 12:47 - 003244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
        2020-06-17 11:53 - 2016-05-04 12:47 - 002365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
        2020-06-17 11:53 - 2016-05-04 12:47 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
        2020-06-17 11:53 - 2016-05-04 12:47 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
        2020-06-17 11:53 - 2016-05-04 12:47 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
        2020-06-17 11:53 - 2016-05-04 12:47 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
        2020-06-17 11:53 - 2016-05-04 12:46 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
        2020-06-17 11:53 - 2016-05-04 10:34 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
        2020-06-17 11:53 - 2016-05-04 10:25 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
        2020-06-17 11:53 - 2016-03-23 18:10 - 000546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
        2020-06-17 11:30 - 2015-02-18 02:36 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
        2020-06-17 11:30 - 2015-02-18 02:34 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
        2020-06-17 11:28 - 2020-06-17 11:31 - 030659457 _____ C:\Users\Home\Downloads\Windows6.1-KB3172605-x64.msu
        2020-06-17 11:27 - 2020-06-17 11:28 - 009575735 _____ C:\Users\Home\Downloads\Windows6.1-KB3020369-x64.msu
        2020-06-17 10:55 - 2020-06-18 11:44 - 000000000 ____D C:\Users\Home\Downloads\opera autoupdate
        2020-06-17 09:44 - 2020-06-17 09:44 - 000000000 ____D C:\Users\Home\AppData\Roaming\Avast Software
        2020-06-17 09:44 - 2020-06-17 09:44 - 000000000 ____D C:\Users\Home\AppData\Local\CEF
        2020-06-17 09:44 - 2020-06-17 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
        2020-06-17 09:38 - 2020-06-18 13:38 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
        2020-06-17 09:38 - 2020-06-17 09:38 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
        2020-06-17 09:37 - 2020-06-17 09:38 - 000462592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
        2020-06-17 09:37 - 2020-06-17 09:38 - 000322256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000506152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
        2020-06-17 09:37 - 2020-06-17 09:37 - 000235088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000205896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000178768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
        2020-06-17 09:37 - 2020-06-17 09:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
        2020-06-17 09:31 - 2020-06-17 09:31 - 000000000 ____D C:\Program Files\Avast Software
        2020-06-17 09:29 - 2020-06-17 09:37 - 000000000 ____D C:\ProgramData\Avast Software
        2020-06-17 09:26 - 2020-06-17 09:26 - 000000000 ____D C:\Users\Home\AppData\Local\Opera Software
        2020-06-17 09:25 - 2020-06-17 09:25 - 000004048 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1592402155
        2020-06-17 09:25 - 2020-06-17 09:25 - 000001308 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
        2020-06-17 09:25 - 2020-06-17 09:25 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
        2020-06-17 09:24 - 2020-06-17 09:24 - 000000000 ____D C:\Program Files\Microsoft Office
        2020-06-17 09:24 - 2020-06-17 09:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
        2020-06-17 09:24 - 2020-06-17 09:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
        2020-06-17 09:23 - 2020-06-18 15:25 - 000000000 ____D C:\Users\Home\AppData\Roaming\Telegram Desktop
        2020-06-17 09:23 - 2020-06-17 09:23 - 000000983 _____ C:\Users\Home\Desktop\Telegram.lnk
        2020-06-17 09:23 - 2020-06-17 09:23 - 000000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
        2020-06-17 09:23 - 2020-06-17 09:23 - 000000000 ____D C:\Users\Home\AppData\Local\Microsoft Help
        2020-06-17 09:23 - 2020-06-17 08:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
        2020-06-17 09:22 - 2020-06-17 09:22 - 000000000 __RHD C:\MSOCache
        2020-06-17 09:21 - 2020-06-17 09:21 - 000002120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB ADSL Modem Uninstall.lnk
        2020-06-17 09:21 - 2020-06-17 09:21 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
        2020-06-17 09:21 - 2020-06-17 09:21 - 000000000 ____D C:\Windows\tc_tmp
        2020-06-17 09:18 - 2020-06-17 09:18 - 000000000 ____D C:\Users\Home\AppData\Roaming\Opera Software
        2020-06-17 09:17 - 2020-06-17 22:08 - 000001393 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000871 _____ C:\ProgramData\Desktop\VLC media player.lnk
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000020 ___SH C:\Users\Home\ntuser.ini
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Reciente
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Plantillas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Mis documentos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Menú Inicio
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Impresoras
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Entorno de red
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Documents\Mis vídeos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Documents\Mis imágenes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Documents\Mi música
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\Configuración local
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\AppData\Local\Historial
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\AppData\Local\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Home\AppData\Local\Archivos temporales de Internet
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Reciente
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Plantillas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Mis documentos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Menú Inicio
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Impresoras
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Entorno de red
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\Configuración local
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Reciente
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Plantillas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Mis documentos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Menú Inicio
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Impresoras
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Entorno de red
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\Configuración local
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Plantillas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Menú Inicio
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Favoritos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Escritorio
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Documents\Mis vídeos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Documents\Mis imágenes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Documents\Mi música
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Documentos
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\ProgramData\Datos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Program Files\Archivos comunes
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 _SHDL C:\Archivos de programa
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 ____D C:\Users\Home\AppData\Local\VirtualStore
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 ____D C:\Users\Home
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
        2020-06-17 09:17 - 2020-06-17 09:17 - 000000000 ____D C:\Program Files\VideoLAN
        2020-06-17 09:17 - 2010-11-21 02:49 - 000000000 ____D C:\Users\Home\AppData\Roaming\Media Center Programs
        2020-06-17 09:16 - 2020-06-17 09:16 - 000000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
        2020-06-17 09:16 - 2020-06-17 09:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
        2020-06-17 09:16 - 2020-06-17 09:16 - 000000000 ____D C:\Program Files\WinRAR
        2020-06-17 09:14 - 2020-06-17 09:14 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
        2020-06-17 09:14 - 2020-06-17 09:14 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
        2020-06-17 09:13 - 2020-06-17 09:13 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
        2020-06-17 09:03 - 2020-06-17 09:03 - 000108840 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT
        2020-06-17 09:03 - 2020-06-17 09:03 - 000000136 _____ C:\Users\Home\Desktop\Solitario.lnk
        2020-06-17 08:58 - 2020-06-17 08:58 - 000000000 ____D C:\Program Files (x86)\FONDQXIMSYHLISNDBCFPGGQDFFXNKBARIRJH
        2020-06-17 08:57 - 2020-06-17 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
        2020-06-17 08:57 - 2020-06-17 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
        2020-06-17 08:56 - 2020-06-17 08:56 - 000000000 ____D C:\Windows\PCHEALTH
        2020-06-17 08:56 - 2020-06-17 08:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
        2020-06-17 08:56 - 2020-06-17 08:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Sync Framework
        2020-06-17 08:56 - 2020-06-17 08:56 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
        2020-06-17 03:40 - 2020-06-17 09:17 - 000000000 ____D C:\Windows\Panther

        ==================== Un mes (modificado) ==================

        (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

        2020-06-18 15:34 - 2010-11-21 02:39 - 000746992 _____ C:\Windows\system32\perfh00A.dat
        2020-06-18 15:34 - 2010-11-21 02:39 - 000158464 _____ C:\Windows\system32\perfc00A.dat
        2020-06-18 15:34 - 2009-07-14 00:43 - 001673946 _____ C:\Windows\system32\PerfStringBackup.INI
        2020-06-18 15:34 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\inf
        2020-06-18 15:31 - 2009-07-14 00:15 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
        2020-06-18 15:31 - 2009-07-14 00:15 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
        2020-06-18 15:23 - 2009-07-14 00:38 - 000000006 ____H C:\Windows\Tasks\SA.DAT
        2020-06-18 15:23 - 2009-07-14 00:15 - 000409016 _____ C:\Windows\system32\FNTCACHE.DAT
        2020-06-18 15:19 - 2009-07-14 01:02 - 000000000 ____D C:\Program Files\DVD Maker
        2020-06-18 11:09 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\tracing
        2020-06-17 21:46 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\PolicyDefinitions
        2020-06-17 21:46 - 2009-07-13 22:50 - 000000000 ____D C:\Program Files\Common Files\System
        2020-06-17 21:45 - 2009-07-14 01:02 - 000000000 ____D C:\Program Files\Windows Defender
        2020-06-17 21:45 - 2009-07-14 01:02 - 000000000 ____D C:\Program Files (x86)\Windows Defender
        2020-06-17 21:45 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\SysWOW64\Dism
        2020-06-17 21:45 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\system32\Dism
        2020-06-17 21:45 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
        2020-06-17 09:25 - 2009-07-13 22:50 - 000000000 __RHD C:\Users\Public\Libraries
        2020-06-17 09:24 - 2009-07-13 22:50 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
        2020-06-17 09:24 - 2009-07-13 22:04 - 000000478 _____ C:\Windows\win.ini
        2020-06-17 09:17 - 2009-07-13 22:50 - 000000000 ____D C:\Program Files\Windows NT
        2020-06-17 09:16 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\rescache
        2020-06-17 09:14 - 2009-07-14 01:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
        2020-06-17 09:14 - 2009-07-13 22:50 - 000000000 ____D C:\Windows\system32\sysprep
        2020-06-17 09:11 - 2010-11-21 02:49 - 000000000 ____D C:\Windows\CSC
        2020-06-17 08:56 - 2010-11-21 02:49 - 000000000 ____D C:\Windows\ShellNew
        2020-06-17 08:56 - 2009-07-14 01:02 - 000000000 ____D C:\Program Files (x86)\MSBuild
        2020-06-17 03:40 - 2009-07-14 01:02 - 000028672 _____ C:\Windows\system32\config\BCD-Template

        ==================== SigCheck ============================

        (No existe una corrección automática para los archivos que no pasan la verificación.)

        ==================== Final de FRST.txt ========================
6 
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 06-06-2020
Ejecutado por Home (18-06-2020 16:35:04)
Ejecutado desde C:\Users\Home\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2020-06-17 13:47:12)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1645214232-7586682-3741003376-500 - Administrator - Disabled)
Home (S-1-5-21-1645214232-7586682-3741003376-1000 - Administrator - Enabled) => C:\Users\Home
HomeGroupUser$ (S-1-5-21-1645214232-7586682-3741003376-1002 - Limited - Enabled)
Invitado (S-1-5-21-1645214232-7586682-3741003376-501 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Photoshop CS6 versión 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.4.2410 - Avast Software)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 77.0.1 (x86 en-US)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 77.0.1 - Mozilla)
Opera Stable 68.0.3618.165 (HKU\S-1-5-21-1645214232-7586682-3741003376-1000\...\Opera 68.0.3618.165) (Version: 68.0.3618.165 - Opera Software)
RuneLite (HKU\S-1-5-21-1645214232-7586682-3741003376-1000\...\RuneLite Launcher_is1) (Version: 2.1.3 - RuneLite)
Telegram Desktop versión 2.1.10 (HKU\S-1-5-21-1645214232-7586682-3741003376-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.1.10 - Telegram FZ-LLC)
USB ADSL Modem (HKLM-x32\...\{A1D1927E-A41E-417D-BD5D-A23EA3EA8FCA}) (Version: 1.00.000 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-06-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-06-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-06-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-06-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 22:04 - 2009-06-10 16:30 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-1645214232-7586682-3741003376-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.109.78.12 - 200.44.32.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\startupreg: Opera Browser Assistant => C:\Users\Home\AppData\Local\Programs\Opera\assistant\browser_assistant.exe

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{F424A37D-DFB4-4939-AA96-96DA1AC6D617}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F6BD1A0A-1D58-45FF-97C7-B25EC098BB2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Puntos de Restauración =========================

17-06-2020 09:21:21 Installed USB ADSL Modem
17-06-2020 09:22:50 Installed Microsoft Office Professional Plus 2010
17-06-2020 10:03:57 Windows Update
17-06-2020 11:30:12 Windows Update
17-06-2020 11:52:55 Windows Update
17-06-2020 13:48:05 Windows Update
18-06-2020 10:45:13 Windows Update
18-06-2020 11:29:59 Windows Update
18-06-2020 11:52:05 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
18-06-2020 11:53:33 Windows Update
18-06-2020 13:24:01 Windows Update
18-06-2020 15:13:34 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/18/2020 03:57:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mspaint.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bca29
Nombre del módulo con errores: msvcrt.dll, versión: 7.0.7601.17744, marca de tiempo: 0x4eeb033f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000011fd
Id. del proceso con errores: 0x1ab8
Hora de inicio de la aplicación con errores: 0x01d645aed0e4428c
Ruta de acceso de la aplicación con errores: C:\Windows\system32\mspaint.exe
Ruta de acceso del módulo con errores: C:\Windows\system32\msvcrt.dll
Id. del informe: 24248e57-b1a2-11ea-840d-001c25deac0f

Error: (06/18/2020 03:24:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/18/2020 11:38:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/18/2020 11:12:22 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/18/2020 10:08:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/17/2020 10:07:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/17/2020 09:51:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/17/2020 09:44:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


Errores del sistema:
=============
Error: (06/18/2020 03:21:50 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: El servicio aswbIDSAgent no se cerró correctamente después de recibir un control de aviso de apagado.

Error: (06/18/2020 01:38:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80092004: 2020-01 Paquete de actualizaciones de calidad y seguridad de .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 en Windows 7 y Server 2008 R2 para x64 (KB4535102).

Error: (06/18/2020 11:40:54 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: El servicio "WMPNetworkSvc" no se puede iniciar correctamente debido al error "0x80004005" en CoCreateInstance(CLSID_UPnPDeviceFinder). Compruebe que el servicio UPnPHost esté en ejecución y que el componente UPnPHost de Windows esté instalado correctamente.

Error: (06/18/2020 11:31:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80092004: 2020-01 Paquete de actualizaciones de calidad y seguridad de .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 en Windows 7 y Server 2008 R2 para x64 (KB4535102).

Error: (06/17/2020 10:06:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 10:04:53 p.m. del ‎17/‎06/‎2020 resultó inesperado.

Error: (06/17/2020 09:54:41 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80242016: Actualización para la lista de Vista de compatibilidad de Internet Explorer 8 para Windows 7 para sistemas basados en x64 (KB2598845).

Error: (06/17/2020 09:54:41 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80242016: 2019-03 Actualización de seguridad para Windows 7 para sistemas basados en x64 (KB4474419).

Error: (06/17/2020 09:53:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Instalador de módulos de Windows se cerró con el siguiente error: 
%%16405


==================== Información de la memoria =========================== 

BIOS: LENOVO 5HKT38AUS 05/05/2009
Placa base: LENOVO To be filled by O.E.M.
Procesador: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz
Porcentaje de memoria en uso: 91%
RAM física total: 2013.24 MB
RAM física disponible: 171.55 MB
Virtual total: 4219.36 MB
Virtual disponible: 381.51 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:192.87 GB) (Free:160.6 GB) NTFS
Drive d: (Particion1) (Fixed) (Total:39.45 GB) (Free:14.39 GB) NTFS

\\?\Volume{2ec9f2f9-b0a0-11ea-9908-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: EF992156)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=192.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=39.4 GB) - (Type=0F Extended)

==================== Final de Addition.txt =======================
7

Listo, allí están los 2 reportes.

8

Me pones los informes

9

mbar-log:

Malwarebytes Anti-Rootkit BETA 1.10.3.1001

Database version:
  main:    v2020.06.19.04
  rootkit: v2020.06.19.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17843
Home :: HOME-PC [administrator]

19/06/2020 03:28:50 a.m.
mbar-log-2020-06-19 (03-28-50).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 174313
Time elapsed: 15 minute(s), 52 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

System-log:

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 11.0.9600.17843

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.593000 GHz
Memory total: 2111037440, free: 366596096

Downloaded database version: v2020.06.19.04
Downloaded database version: v2020.06.19.04
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
     06/19/2020 03:28:39
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\intelide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\aswRvrt.sys
\SystemRoot\system32\drivers\aswVmm.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\aswbuniv.sys
\SystemRoot\system32\drivers\aswbidsh.sys
\SystemRoot\system32\drivers\aswArDisk.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\drivers\aswKbd.sys
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\drivers\aswRdr2.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\drivers\aswNetHub.sys
\SystemRoot\system32\DRIVERS\aswNetNd6.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\drivers\aswbidsdriver.sys
\SystemRoot\system32\drivers\aswArPot.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\drivers\intelppm.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\yk62x64.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\VSTBS26.SYS
\SystemRoot\system32\DRIVERS\VSTDPV6.SYS
\SystemRoot\system32\DRIVERS\VSTCNXT6.SYS
\SystemRoot\system32\drivers\modem.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\HdAudio.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\drivers\usb8023x.sys
\SystemRoot\system32\drivers\USBD.SYS
\SystemRoot\system32\drivers\RNDISMPX.SYS
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\aswMonFlt.sys
\SystemRoot\system32\drivers\WudfPf.sys
\??\C:\windows\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\7573A70B.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\Wldap32.dll
\Windows\System32\setupapi.dll
\Windows\System32\wininet.dll
\Windows\System32\difxapi.dll
\Windows\System32\user32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\gdi32.dll
\Windows\System32\imm32.dll
\Windows\System32\urlmon.dll
\Windows\System32\advapi32.dll
\Windows\System32\shell32.dll
\Windows\System32\psapi.dll
\Windows\System32\msvcrt.dll
\Windows\System32\lpk.dll
\Windows\System32\iertutil.dll
\Windows\System32\shlwapi.dll
\Windows\System32\sechost.dll
\Windows\System32\usp10.dll
\Windows\System32\clbcatq.dll
\Windows\System32\msctf.dll
\Windows\System32\ole32.dll
\Windows\System32\normaliz.dll
\Windows\System32\kernel32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\ws2_32.dll
\Windows\System32\nsi.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\crypt32.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\comctl32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\userenv.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\wintrust.dll
\Windows\System32\profapi.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2020.06.19.04
  rootkit: v2020.06.19.04

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa80027b9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80027b86c0, DeviceName: Unknown, DriverName: \Driver\aswArDisk\
DevicePointer: 0xfffffa80027b9ab0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80027b9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8002328520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa8002692060, DeviceName: \Device\Ide\IdeDeviceP2T0L0-2\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\partmgr\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: EF992156

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
    Partition is bootable
    Partition file system is NTFS

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 206848  Numsec = 404469760
    Partition is not bootable
    Partition file system is NTFS

    Partition 2 type is Extended with LBA (0xf)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 404676608  Numsec = 82731008
    Partition is not bootable

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
    Partition is not bootable

Disk Size: 250059350016 bytes
Sector size: 512 bytes

Done!
Scan finished
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-206848-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-404676608-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
10

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente las casillas Registry Backup, las demás NO

  • Pulsar en Run.

Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
"Ms628BD330App" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\Ms628BD330App => C:\Windows\System32\Ms628BD330App.dll <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
NETSVC: Ms628BD330App -> no ruta de acceso de archivo.
C:\Windows\System32\Ms628BD330App.dll
2020-06-17 08:58 - 2020-06-17 08:58 - 000000000 ____D C:\Program Files (x86)\FONDQXIMSYHLISNDBCFPGGQDFFXNKBARIRJH
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]



HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Ejecutas Frst.exe.

  • Presionas el botón Corregir y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema

1 me gusta
11 
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 06-06-2020
Ejecutado por Home (19-06-2020 10:55:05) Run:1
Ejecutado desde C:\Users\Home\Desktop
Perfiles cargados: Home
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************

Start
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricci�n <==== ATENCI�N
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
"Ms628BD330App" => servicio no pudo ser desbloqueado. <==== ATENCI�N
HKLM\SYSTEM\ControlSet001\Services\Ms628BD330App => C:\Windows\System32\Ms628BD330App.dll <==== ATENCI�N (Rootkit!/Servicio bloqueado)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
NETSVC: Ms628BD330App -> no ruta de acceso de archivo.
C:\Windows\System32\Ms628BD330App.dll
2020-06-17 08:58 - 2020-06-17 08:58 - 000000000 ____D C:\Program Files (x86)\FONDQXIMSYHLISNDBCFPGGQDFFXNKBARIRJH
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]



HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => eliminado correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
"Ms628BD330App" => servicio no pudo ser desbloqueado. <==== ATENCI�N => Error: Ninguna corrección automática encontrada para esta entrada.
HKLM\SYSTEM\ControlSet001\Services\Ms628BD330App => C:\Windows\System32\Ms628BD330App.dll <==== ATENCI�N (Rootkit!/Servicio bloqueado) => Error: Ninguna corrección automática encontrada para esta entrada.
HKLM\System\CurrentControlSet\Services\VGPU => eliminado correctamente
VGPU => servicio eliminado correctamente
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Ms628BD330App => eliminado correctamente
"C:\Windows\System32\Ms628BD330App.dll" => no encontrado
C:\Program Files (x86)\FONDQXIMSYHLISNDBCFPGGQDFFXNKBARIRJH => movido correctamente
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => eliminado correctamente
"BVTFilter" => eliminado correctamente
"BVTConsumer" => eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-1645214232-7586682-3741003376-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-1645214232-7586682-3741003376-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de  rea local 2:

   Sufijo DNS espec¡fico para la conexi¢n. . : cantv.net
   V¡nculo: direcci¢n IPv6 local. . . : fe80::c5a:ce0a:9314:b392%13
   Direcci¢n IPv4. . . . . . . . . . . . . . : 190.203.232.94
   M scara de subred . . . . . . . . . . . . : 255.255.224.0
   Puerta de enlace predeterminada . . . . . : 190.203.224.1

Adaptador de Ethernet Conexi¢n de  rea local:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.cantv.net:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : cantv.net

Adaptador de t£nel 6TO4 Adapter:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.{CBD818EC-C454-4D89-8B2C-6288D447D268}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Conexi¢n de  rea local*:

   Sufijo DNS espec¡fico para la conexi¢n. . : cantv.net
   Direcci¢n IPv6 . . . . . . . . . . : 2002:becb:e85e::becb:e85e
   Puerta de enlace predeterminada . . . . . : 2002:c058:6301::1

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

{1832B845-8A9F-43F3-9048-4C1488842003} canceled.
1 out of 1 jobs canceled.

========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5370620 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 7361691 B
Edge => 0 B
Chrome => 0 B
Firefox => 53727052 B
Opera => 362829741 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66356 B
systemprofile32 => 132712 B
LocalService => 198940 B
NetworkService => 265168 B
Home => 159818770 B

RecycleBin => 41743399 B
EmptyTemp: => 610.3 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 10:58:04 ====

No se si aun es muy pronto para saber si se solucionó, pero desde que reinicie la PC no me han salido más esas notificaciones de amenazas.

12

Ok,pruebas el pc y me dices

1 me gusta
13

En lo que va de día no han vuelto a aparecer dichas notificaciónes de amenazas. Muchas gracias por ayudarme a solucionar este problema. Excelente atención. Que tenga un feliz día!

1 me gusta
14

Para eliminar las herramientas usadas en la desinfección, realizas:

  • Descargas y Ejecutas >> Delfix, en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)

  • Marca solamente la casilla Remove Desinfection Tools

  • Pulsar en Run.

Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.

Me alegro de haberte podido ayudar! :+1:


TEMA SOLUCIONADO

15

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.