W10-Windows Defender/Servicio Detenido

Hola compañero, Windows 10 Education x64 actualizado a la fecha está sin su antivirus nativo MS Denfender. Dice que “Se detuvo el servicio de amenazas. Reinícialo ahora.” Pero no reinicia. He leído varios artículos dentro del foro, y aplicado algunas soluciones, pero ninguna me ha dado resultado.

1200×932 24.3 KB

Tuve instalado Malwarebyte Antimalware en su versión premium. Se venció la licencia y traté de reinstalarlo. La reinstalación falló y durante ese proceso el Defender se desactivó y se instaló un virus llamado “RelevantKnowledge”

901×656 25.3 KB

El Malwarebytes AntiMalware está desinstalado; el virus eliminado y algunos de los programas usados en otros posts del foro aplicados como por ejemplo Frst.exe y Delfix al igual que un script, pero nada me ha solucionado el problema.

Adicionalmente a que no arranca el Defender, no puedo puedo ejecutar el CMD como administrador -aunque encontré un atajo que ahora me lo permite- y no actualiza el antivirus nativo. Tampoco inicia como administrador el PowerShell. Y por último no me permite restaurar el sistema.

1200×932 40.6 KB

De antemano muchas gracias por su asistencia, he tratado muchas alternativas… que editar el registro con DisableAntiSpyware; modo seguro en W10; restaurar el sistema y hasta reinstalar el sistema operativo, pero esta opción es la última a utilizar si no encuentro solución en el foro, pues utilizo un disco SSD para el sistema operativo y esas reinstalaciones agotan la vida útil del disco SSD.

Hola y bienvenido!.

Descarga los siguientes programas y dejalos en el escritorio:

• Rkill (descarga haciendo click en el boton "Download now iExplore.exe)
• MalwareBytes Anti-Rootkit | manual .

• Ejecuta como admnistrador Rkill
• Se abrira una consola similar a CMD
• Deja que trabaje de 2 a 5 minutos
• Pega el reporte que esta dentro de Rkill.txt guardado en el escritorio. No reinicies el PC al terminar, y sigue con MBAM anti-rootkit

• Actualiza MBAM Anti-Rootkit actualizando leyendo su manual, y luego realizando un analisis desde modo seguro.
• Iniciar en Modo Seguro

Luego,en modo normal:

ejecute la herramienta ‘fixdamage’ que se incluye con Malwarebytes Anti-Rootkit en la carpeta ‘Plugins’ y reinicie el equipo

Saludos.

Muchas gracias por tu pronta respuesta… ya me pongo en eso. Saludos

Aquí te esperamos con los reportes. No olvides comentar el funcionamiento o alguna duda.

Muy Importante: envuelve cada uno de los informes con una etiqueta escrita al inicio del informe y otra como este al final del mismo, aquí tienes un ejemplo de como hacerlo :

915×410 682 KB

Hola.

Solo un comentario.

No se que disco SSD tendrás instalado, pero en la gran mayoría(por NO decir la totalidad) de discos SSD, para que un usuario normal agote la vida útil de un SSD debería hacer escrituras en él muy por encima de lo normal.

Que REINSTALES el sistema operativo varias veces SOLO provoca la escritura de unos pocos Gigas por cada instalación que hagas incluyendo programas que puedas tener que reinstalar, por aqui tienes información de interés :

Siguen ustedes.

Saludos.

Facundo, creo que contesté donde no era… decía allí que el MB Anti-Rootkit no mostró ninguna infección -análisis en modo seguro W10- y anexo encontrarás el resultado de Rkill. También que ya puedo ejecutar el CMD y el PowerShell como administrador, una función que se había perdido. Saludos y muchas gracias!

Rkill 2.9.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2020 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/13/2020 09:40:52 AM in x64 mode.
Windows Version: Windows 10 Education 

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\SysWOW64\ufdsvc.exe (PID: 2948) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Searching for Missing Digital Signatures: 

 * No issues found.

Checking HOSTS File: 

 * HOSTS file entries found: 

  127.0.0.1       localhost

Program finished at: 09/13/2020 09:41:50 AM
Execution time: 0 hours(s), 0 minute(s), and 58 seconds(s)

Pega el reporte de Malwarebytes Anti-Rootkit para revisar.

El Malwarebytes Anti-Rootkit generó el siguiente reporte:

Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org

Database version:
  main:    v2020.09.13.04
  rootkit: v2020.09.13.04

Windows 8 x64 NTFS (Safe Mode)
Internet Explorer 11.508.19041.0
Joseph :: DESKTOP-I4EA06H [administrator]

13/09/2020 9:54:04 a. m.
mbar-log-2020-09-13 (09-54-04).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 249285
Time elapsed: 9 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0

Physical Sectors Detected: 0
(No malicious items detected)

(end)

@Jorge2121 que Antivirus tenias instalado antes de MalwareBytes en su version Premium?

Sí @Facundo desinstalando el MalwareBytes Premium fue que sucedido este incidente…

Descarga la herramienta de Desinstalación para Malwarebytes, la encontraras en el siguiente manual, descarga dependiendo la versión que tuviste en ese momento, y reinicias el equipo al finalizar y compruebas si se activa Windows Defender.

@Facundo Lo que observo acá es que el desinstalador para MB llega hasta la generación 3. El MB instalado es de última generación 4.2… no será que tal vez realice una desinstalación imperfecta, dejando muchos rastros y errores en el sistema? Salu2

Prueba con la version 3, a ver que nos dice, ya que no existe un Desinstalador externo para la version 4 aun.

@Facundo Gracias por tu interés y colaboración. Seguimos igual aunque desinstalé, reinicié y volví a pasar el mb-clean-3.1.0.1035 y volví a reiniciar. Este es el resultado:

2020-09-13 14:32:50.428   mb-clean:3.1.0.1035  @ Malwarebytes. All rights reserved.
2020-09-13 14:32:55.006   No Malwarebytes software installed.
2020-09-13 14:33:04.068   HKLM\SYSTEM\CurrentControlSet\Services\ESProtectionDriver does not exist.
2020-09-13 14:33:04.068   Trying to delete REG key: HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon
2020-09-13 14:33:04.068   HKLM\SYSTEM\CurrentControlSet\Services\MBAMFarflt does not exist.
2020-09-13 14:33:04.068   HKLM\SYSTEM\CurrentControlSet\Services\MBAMProtection does not exist.
2020-09-13 14:33:04.068   HKLM\SYSTEM\CurrentControlSet\Services\MBAMService does not exist.
2020-09-13 14:33:04.084   HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy does not exist.
2020-09-13 14:33:04.084   HKLM\SYSTEM\CurrentControlSet\Services\MBAMWebProtection does not exist.
2020-09-13 14:33:09.709   Trying to delete path C:\ProgramData\Malwarebytes\
2020-09-13 14:33:09.709   Cannot delete path C:\ProgramData\Malwarebytes\, reason:(The system cannot find the path specified.(error=3))
2020-09-13 14:33:09.709   Trying to delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\
2020-09-13 14:33:09.709   Cannot delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\, reason:(The system cannot find the path specified.(error=3))
2020-09-13 14:33:09.709   Trying to delete path C:\Program Files\Malwarebytes\Anti-Malware\
2020-09-13 14:33:09.709   Cannot delete path C:\Program Files\Malwarebytes\Anti-Malware\, reason:(The system cannot find the path specified.(error=3))
2020-09-13 14:33:09.709   --------END OF LOG FILE ----------

Entra a VirusTotal y clickea en “Choose file”

Y busca la siguiente direccion en el Explorador de Archivos: C:\Windows\SysWOW64 y sube el archivo llamado ufdsvc.exe

Se escaneara el archivo con varios motores de Antivirus/Anti-Malware y sabremos si es un falso positivo o si es un malware.

Nos pegas el enlace al finalizar el analisis online o nos envias captura de los antivirus que han detectado.

@Facundo Anexo enlace de VirusTotal:

Resultado VirusTotal

Muchas gracias!!!

Así estamos en este momento:

758×602 17.3 KB

Hola de nuevo @Jorge2121.

Vamos a revisar esa maquina para ver que mas encontramos, ahora sigue estos pasos :

Desactiva temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Descargar en TU ESCRITORIO(y NO en otro lugar )

• Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Farbar Recovery Scan Tool.-

• Ejecuta FRST.exe.

• En el mensaje de la ventana del Disclaimer o Responsabilidad, pulsamos Yes/Si

• En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.

• Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Poner los dos informes en tu próxima respuesta.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Saludos.

Hola @JavierHF Muchas gracias por contestar. Ese procedimiento ya lo había hecho antes de publicar mi consulta… pero no resultó… Ver Aquí Solo que uno de los programas luego borró todo… creo que fue el DelFix:

# DelFix v1.013 - Logfile created 13/09/2020 at 08:20:54
# Updated 17/04/2016 by Xplode
# Username : Joseph - DESKTOP-I4EA06H
# Operating System : Windows 10 Enterprise  (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Joseph\Desktop\Addition.txt
Deleted : C:\Users\Joseph\Desktop\Fixlog.txt
Deleted : C:\Users\Joseph\Desktop\FRST.txt
Deleted : C:\Users\Joseph\Desktop\FRST64.exe

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########

El único antivirus que tengo es el Windows Defender, pero como el servicio está detenido, diría que no tengo antivirus en este momento… Volveré a intentar y en un rato subo los reportes. Muchas gracias!!!

Hola.

Delfix sirve para hacer backups del registro o desinstalar las herramientas y eso NO era lo que tenias que hacer.

Sigue mis indicaciones para valorar los informes y darte nuevas indicaciones.

Saludos.

Hola @JavierHF Restricciones propias del Foro no me permitieron contestar inmediatamente.

<You’ve reached the maximum number of replies a new user can create on their first day. Please wait 15 hours before trying again.>

Anexo los informes en cuatro (4) partes. Saludos y muchas gracias!!! FRST.txt Parte No. 01 de 03

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-09-2020

Ejecutado por Joseph (administrador) sobre DESKTOP-I4EA06H (13-09-2020 17:53:53)

Ejecutado desde C:\Users\Joseph\Desktop

Perfiles cargados: Joseph

Platform: Windows 10 Education Versión 2004 19041.508 (X64) Idioma: Español (México)

Navegador predeterminado: Edge

Modo de Inicio: Normal

Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

================= Procesos (Lista blanca) =============

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe

(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe

(Generic) [Archivo no firmado] C:\Windows\SysWOW64\ufdsvc.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>

(Microsoft) [Archivo no firmado] C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDockTray.exe

(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe

(Stardock) [Archivo no firmado] C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN

HKU\S-1-5-21-1742535224-2617996105-2139470584-1001\...\Run: [Fences] => c:\program files (x86)\stardock\fences\Fences.exe [4854200 2018-05-25] (Stardock Corporation -> Stardock Corporation) [Archivo no firmado] [El archivo está en uso]

HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)

HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-05-19] (Adobe Inc. -> Adobe Systems Inc)

HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)

HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{AC76BA86-0000-0000-7760-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat DC\Esl\Aiod.dll [2020-05-19] (Adobe Inc. -> Adobe Systems, Inc.)

Startup: C:\Users\Joseph\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2020-06-26]

ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe (Stardock Corporation -> Stardock)

GroupPolicy: Restricción ? <==== ATENCIÓN

GroupPolicy\User: Restricción ? <==== ATENCIÓN

================ Tareas programadas (Lista blanca) =========

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {004D7E31-F95C-4C2D-B90D-C01ADB459DE8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)

Task: {013A8CD9-F680-432B-A0E0-87382B9D9D2A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)

Task: {16ABE041-2D2A-4EB1-9C87-E3A193B6EAE7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {1BDFAEED-FE4E-4683-A62A-D25C8CBA8515} - System32\Tasks\SUPERAntiSpyware Scheduled Task 674fc65f-8c09-41b3-9046-d556920cb3ff => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com)

Task: {38A05C49-0F44-47FC-91EE-0D5B3E6EB75D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-08-22] () [Archivo no firmado]

Task: {48FE9B95-DB6B-496C-819C-5BE19A45F119} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [19821872 2020-09-06] (Goversoft LLC -> Goversoft LLC)

Task: {495864CE-7E0A-4584-96C9-AD7F042FC9F7} - System32\Tasks\Driver Booster SkipUAC (Joseph) => C:\Program Files (x86)\IObit\Driver Booster\7.5.0\DriverBooster.exe

Task: {586C43C4-A02B-439D-974D-A265C74804F8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {5A82FC49-D1C0-4B1F-A89D-EAFCD00AE50F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)

Task: {60283C48-6C06-4628-87DE-125A3F249E8C} - System32\Tasks\SUPERAntiSpyware Scheduled Task 441f14b0-b351-46ee-b77b-00d4840eb099 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com)

Task: {6D906ADF-2FD8-4A33-B09C-68B7C90ACF0F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)

Task: {741A3101-6A98-411C-B00F-7F71C4887DDD} - System32\Tasks\AVG TuneUp Update => C:\Program Files (x86)\AVG\AVG TuneUp\TUNEUpdate.exe [1706528 2020-05-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

Task: {74920238-888D-4BED-8D25-9CFD9BBF157A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)

Task: {756363F7-3643-4211-9D19-19DD2BD9840E} - System32\Tasks\RegOrganizerQuickLaunch => C:\Program Files (x86)\Reg Organizer\RegOrganizer.exe -RegistryEditor -ForceForeground -NoSplash

Task: {808E267D-DD8B-4A30-A719-A77BB75BF8CF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {8ECD9DC1-E574-4AB2-98B1-86B2029F0F65} - System32\Tasks\GBTSSDCheckUpdate => C:\Program Files (x86)\GIGABYTE\SSDToolBox\ChkUpd.exe [301488 2019-07-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

Task: {94CD0A2F-647F-474C-A6BF-ACEE0BD3A8B6} - System32\Tasks\UninstallTool_SkipUAC_Joseph => C:\Program Files\Uninstall Tool\UninstallTool.exe [4924576 2020-04-16] (CrystalBit Solutions -> CrystalIDEA Software) [Archivo no firmado]

Task: {974C2992-53D7-43A2-B820-5740A9728524} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Task: {9EAEEFB7-3837-4CB3-87D6-A9CDE7CD9386} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK

Task: {A194D8B6-D7ED-4A86-939B-F3C26AEF6CD0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {AA767398-0705-4D8B-AAF7-45E2A7457E2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-03-11] (Dropbox, Inc -> Dropbox, Inc.)

Task: {C2F3E448-E658-4694-AB34-FC12AEB38111} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {EB125F33-B406-4D47-A670-12BD28586BAB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Task: {F63CB7EF-E382-479A-BAF0-54F4C1C378A3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)

Task: {F8F05B79-9CCF-408D-80B3-4CE2D69437A5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-03-11] (Dropbox, Inc -> Dropbox, Inc.)

Task: {FF2DE0F4-0607-437A-BC4F-8D3F52E89A43} - System32\Tasks\DelayedItemsByChemtableSoftware\SecurityHealth => C:\WINDOWS\system32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 441f14b0-b351-46ee-b77b-00d4840eb099.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 674fc65f-8c09-41b3-9046-d556920cb3ff.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 190.157.8.101 190.157.8.42

Tcpip\..\Interfaces\{0636a1ff-fbf7-4ac1-b54e-f43ede0f8dfe}: [DhcpNameServer] 190.157.8.101 190.157.8.42

Tcpip\..\Interfaces\{9e4fe668-cd12-4fdc-9a0c-20a6649e5885}: [DhcpNameServer] 185.123.227.250

Edge:

======

Edge Extension: (Ghostery – Bloqueador de anuncios para privacidad) -> EdgeExtension_GhosteryGhostery_kzkqe0pn505dg => C:\Program Files\WindowsApps\Ghostery.Ghostery_8.4.6.0_neutral__kzkqe0pn505dg [2020-04-01]

Edge Profile: C:\Users\Joseph\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-13]

Edge Notifications: Default -> hxxps://www1p.michellehardin.pro

Edge HomePage: Default -> hxxps://google.com.co/

Edge Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\Joseph\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2020-08-06]

Edge Extension: (Browsec VPN - Free VPN for Edge) - C:\Users\Joseph\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fjnehcbecaggobjholekjijaaekbnlgj [2020-09-01]

FireFox:

========

FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi

FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2020-04-22] [Heredado]

FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected]

FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected] [2020-04-22]

FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi

FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-05-19]

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\[email protected]

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi

FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-10] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-10] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-03-01] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-10] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-10] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-03-01] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-03-01] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-05-19] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:

=======

CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2020-04-22]

CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2020-04-22]

CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Inc. -> Adobe Systems)

S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)

S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)

S4 Chemtable Startup Checking; C:\Program Files (x86)\Reg Organizer\StartupCheckingService.exe [ ]

S4 CleanupPSvc; C:\Program Files (x86)\AVG\AVG TuneUp\TuneupSvc.exe [10301176 2019-07-24] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)

S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-03-11] (Dropbox, Inc -> Dropbox, Inc.)

S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-03-11] (Dropbox, Inc -> Dropbox, Inc.)

S4 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-09-09] (Dropbox, Inc -> Dropbox, Inc.)

S2 DrvCovEx; C:\Windows\SysWOW64\DrvCovEx.exe [45056 2016-09-30] () [Archivo no firmado]

S4 FoxitPhantomPDFUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitPhantomPDFUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)

R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Archivo no firmado]

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5097896 2020-09-05] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 UFDSVC; C:\WINDOWS\SysWOW64\ufdsvc.exe [77824 2006-08-02] (Generic) [Archivo no firmado]

S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)

S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

=================== Controladores (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [67584 2020-02-03] (Microsoft Windows Hardware Compatibility Publisher -> )

S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )

S3 CisUtMonitor; C:\Windows\System32\DRIVERS\CisUtMonitor.sys [54800 2018-11-24] (Software Security Systems ChTUP -> CrystalIdea Software)

S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )

S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> )

R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)

R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [85424 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)

R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [33712 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)

R3 GeneStor; C:\Windows\system32\DRIVERS\GeneStor.sys [126168 2020-03-05] (Genesys Logic, Inc. -> GenesysLogic)

R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [125616 2020-06-07] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)

S3 MBAMProtector; no ImagePath

S3 MBAMWebAccessControl-BackupByMalwarebytesPortable; no ImagePath

S3 mpszfilt; C:\Windows\System32\DRIVERS\mpszfilt.sys [20632 2016-09-30] (AlcorMicro, Corp. -> Generic)

R3 phantomtap; C:\Windows\System32\drivers\phantomtap.sys [45056 2020-02-24] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)

R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)

R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)

R1 UimBus; C:\Windows\System32\drivers\uimbus.sys [109504 2018-11-27] (Paragon Software GmbH -> Paragon Software GmbH)

R1 Uim_DEVIM; C:\Windows\System32\drivers\uimdevim.sys [46016 2018-11-27] (Paragon Software GmbH -> Paragon Software GmbH)

R0 waemu; C:\Windows\System32\Drivers\waemu.sys [143928 2017-06-15] (Power Software Limited -> Power Software Ltd)

S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2020-08-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [428256 2020-08-28] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [69856 2020-08-28] (Microsoft Windows -> Microsoft Corporation)

U4 ekrn; no ImagePath

S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-13 17:53 - 2020-09-13 17:54 - 000022239 _____ C:\Users\Joseph\Desktop\FRST.txt

2020-09-13 17:53 - 2020-09-13 17:54 - 000000000 ____D C:\FRST

2020-09-13 17:44 - 2020-09-13 17:44 - 002297856 _____ (Farbar) C:\Users\Joseph\Desktop\FRST64.exe

2020-09-13 14:32 - 2020-09-13 14:33 - 000001648 _____ C:\Users\Joseph\Desktop\mb-clean-results.txt

2020-09-13 14:31 - 2020-09-13 14:31 - 000000092 _____ C:\Windows\ufdsvclog.txt

2020-09-13 14:31 - 2020-09-13 14:31 - 000000000 ____D C:\Windows\Panther

2020-09-13 14:26 - 2020-09-13 14:26 - 000858912 _____ (Malwarebytes) C:\Users\Joseph\Desktop\mb-clean-3.1.0.1035.exe

2020-09-13 11:36 - 2020-09-13 11:36 - 000001549 _____ C:\Users\Joseph\Desktop\MBAM_13092020-11_36.txt

2020-09-13 09:53 - 2020-09-13 09:53 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\421F7730.sys

2020-09-13 09:42 - 2020-09-13 10:04 - 000000000 ____D C:\Users\Joseph\Desktop\mbar

2020-09-13 09:40 - 2020-09-13 09:41 - 000002050 _____ C:\Users\Joseph\Desktop\Rkill.txt

2020-09-13 09:39 - 2020-09-13 09:39 - 014178840 _____ (Malwarebytes Corp.) C:\Users\Joseph\Desktop\mbar-1.10.3.1001.exe

2020-09-13 09:38 - 2020-09-13 09:38 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Joseph\Desktop\iExplore.exe

2020-09-13 08:21 - 2020-09-13 08:21 - 000000550 _____ C:\Users\Joseph\Desktop\DelFix2.txt

2020-09-12 23:04 - 2020-09-12 23:04 - 000000254 _____ C:\Users\Joseph\Desktop\DelFix.txt

2020-09-12 23:03 - 2020-09-13 08:21 - 000000550 _____ C:\DelFix.txt

2020-09-12 23:03 - 2020-09-12 23:03 - 000000000 ____D C:\Windows\ERUNT

2020-09-12 18:39 - 2020-09-13 16:16 - 001051648 _____ C:\Users\Joseph\AppData\Local\SageThumbs.db3

2020-09-12 17:19 - 2020-09-12 17:19 - 000000000 ___HD C:\$Windows.~WS

2020-09-12 17:09 - 2020-09-12 17:09 - 000003390 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1742535224-2617996105-2139470584-1004

2020-09-12 14:57 - 2020-09-12 15:03 - 000000000 _____ C:\Recovery.txt

2020-09-12 13:31 - 2020-09-12 20:44 - 000000000 ____D C:\ESD

2020-09-12 12:41 - 2020-09-12 12:41 - 000002105 _____ C:\Users\Administrador\Desktop\Customize Fences.lnk

2020-09-12 12:41 - 2020-09-12 12:41 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Stardock

2020-09-12 12:41 - 2020-09-12 12:41 - 000000000 ____D C:\Users\Administrador\AppData\Local\Stardock

2020-09-12 12:41 - 2020-09-12 12:41 - 000000000 _____ C:\Users\Administrador\AppData\Local\SageThumbs.db3

2020-09-12 12:40 - 2020-09-12 12:52 - 000003394 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1742535224-2617996105-2139470584-500

2020-09-12 12:40 - 2020-09-12 12:52 - 000000000 ___RD C:\Users\Administrador\OneDrive

2020-09-12 12:37 - 2020-09-12 12:52 - 000002393 _____ C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2020-09-12 12:37 - 2020-09-12 12:45 - 000000000 ____D C:\Users\Administrador\AppData\Local\Packages

2020-09-12 12:37 - 2020-09-12 12:40 - 000000000 ____D C:\Users\Administrador

2020-09-12 12:37 - 2020-09-12 12:37 - 000000020 ___SH C:\Users\Administrador\ntuser.ini

2020-09-12 12:37 - 2020-09-12 12:37 - 000000000 ___RD C:\Users\Administrador\3D Objects

2020-09-12 12:37 - 2020-09-12 12:37 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Adobe

2020-09-12 12:37 - 2020-09-12 12:37 - 000000000 ____D C:\Users\Administrador\AppData\Local\ConnectedDevicesPlatform

2020-09-12 12:37 - 2020-09-12 12:37 - 000000000 ____D C:\Users\Administrador\AppData\Local\Comms

2020-09-12 11:42 - 2020-04-17 03:55 - 000002779 _____ C:\Windows\e.bat

2020-09-12 09:51 - 2020-09-05 09:53 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys

2020-09-12 08:54 - 2020-09-12 08:54 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job

2020-09-10 21:09 - 2020-09-10 21:09 - 000001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk

2020-09-10 20:47 - 2020-09-10 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

2020-09-09 06:45 - 2020-09-09 06:45 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys

2020-09-09 06:45 - 2020-09-09 06:45 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys

2020-09-09 06:45 - 2020-09-09 06:45 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

2020-09-09 06:45 - 2020-09-09 06:45 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 032610752 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 031598936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 026272768 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 024264704 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 019869696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 018075136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 010847552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 008897200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 007755776 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 007611904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 006357032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 005820416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 005430480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 005056000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 004892672 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 004783344 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 004629328 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 004523008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 003992576 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 003868672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 003819528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 003806720 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 003334656 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 002851128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 002749440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 002687488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 002635640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 002519512 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001834496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001693208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001649664 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001557816 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 001449472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001400208 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001296384 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001255744 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 001253376 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 001191592 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001068112 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 001048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000961192 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000943408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000920896 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000907440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000887304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000843376 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000801544 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000763840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000759792 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 000757192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000747320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000744240 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 000721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000711680 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000688960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000680664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 000669696 _____ (Microsoft Corporation) C:\Windows\system32\WFSR.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000665264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL

2020-09-08 14:00 - 2020-09-08 14:00 - 000639928 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000602184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000585696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000583608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000530440 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000528352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000471552 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000436736 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Payments.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000403768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 000380728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000367416 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000360024 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000217920 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000190792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxApplicabilityEngine.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000180024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 000176440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000141008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Clipc.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000133736 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000117056 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000110504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000099640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000097080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000095032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys

2020-09-08 14:00 - 2020-09-08 14:00 - 000092952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditBufferTestHook.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000061752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\diagnosticdataquery.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000042320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSERES.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WordBreakers.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\bootim.exe

2020-09-08 14:00 - 2020-09-08 14:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000021312 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000009277 _____ C:\Windows\system32\DrtmAuthTxt.wim

2020-09-08 14:00 - 2020-09-08 14:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2020-09-08 14:00 - 2020-09-08 14:00 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2020-09-08 13:59 - 2020-09-08 14:00 - 003505952 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 010336896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 008006248 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 007979416 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 005870496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 005776544 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 004727296 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 003875840 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 003847680 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 003815424 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 003779384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 003384832 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002951680 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 002587448 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002451456 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002422784 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002319216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002248192 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 002103704 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001924608 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001856312 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001765888 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001700352 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001414144 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 001337176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001277440 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001209096 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001094472 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001059328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 001027344 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000903992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 000827912 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000725608 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000707016 _____ C:\Windows\system32\TextShaping.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000677888 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000635824 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000614912 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 000586752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Payments.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000585728 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000531448 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000454960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2020-09-08 13:59 - 2020-09-08 13:59 - 000437760 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000420456 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000395264 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000382464 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000321024 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000306176 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000266240 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000249664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000239432 _____ (Microsoft Corporation) C:\Windows\system32\AppxApplicabilityEngine.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000186472 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000132928 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000132728 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000116024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000090400 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000070976 _____ (Microsoft Corporation) C:\Windows\system32\GameInput.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000068928 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000064008 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2020-09-08 13:59 - 2020-09-08 13:59 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll

2020-09-08 13:59 - 2020-09-08 13:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\provdiagnostics.dll

2020-09-08 13:45 - 2020-08-24 22:42 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2020-09-08 13:45 - 2020-08-24 22:36 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2020-09-06 17:36 - 2020-09-08 14:06 - 000484488 _____ C:\Windows\system32\FNTCACHE.DAT

2020-09-05 13:57 - 2020-09-05 13:57 - 000000112 ___SH C:\bootTel.dat

2020-09-05 09:55 - 2020-09-05 09:55 - 000975872 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll

2020-09-05 09:55 - 2020-09-05 09:55 - 000749056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll

2020-09-05 09:55 - 2020-09-05 09:55 - 000434688 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll

2020-09-05 09:55 - 2020-09-05 09:55 - 000361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll

2020-09-05 09:55 - 2020-09-05 09:55 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 023441408 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 018766848 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 014754304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 007633360 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 006417408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 005993968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004820992 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004747776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004362816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004304384 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004274688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 004009064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe

2020-09-05 09:54 - 2020-09-05 09:54 - 003978240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 003913728 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 003659264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 003547784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002757120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002606592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002541056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002452856 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL

2020-09-05 09:54 - 2020-09-05 09:54 - 002433024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002383672 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002338184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002306048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002265328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002206208 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002200576 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 002136744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL

2020-09-05 09:54 - 2020-09-05 09:54 - 002021192 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001980728 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001956032 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001812368 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001770040 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001751432 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001720832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001719096 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001695208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001681408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001659904 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001654824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001640888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001632056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001617088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001588016 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001542752 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001541224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001506608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001502016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001494016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001485824 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001449792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001438432 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001438008 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001430528 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001411072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe

2020-09-05 09:54 - 2020-09-05 09:54 - 001388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001375232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001352232 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001337344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001333248 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001314608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001309504 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi

2020-09-05 09:54 - 2020-09-05 09:54 - 001301584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001293824 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001279288 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001260200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll

2020-09-05 09:54 - 2020-09-05 09:54 - 001239040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll