Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 10-05-2020 01 Ejecutado por usuario (administrador) sobre DESKTOP-728PO3F (10-05-2020 11:16:47) Ejecutado desde I:\Z_DESCARGAS Perfiles cargados: usuario Platform: Windows 10 Pro Versión 1909 18363.778 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Backblaze, Inc -> ) C:\Program Files (x86)\Backblaze\bzbui.exe (Backblaze, Inc -> ) C:\Program Files (x86)\Backblaze\bzserv.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7> (OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe (OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-12-09] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [C:\WINDOWS\system32\V0700Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\system32\V0700Ext.ax HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) [Archivo no firmado] HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [657704 2019-05-14] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [V0700Mon.exe] => C:\WINDOWS\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) HKLM-x32\...\Run: [C:\WINDOWS\System32\V0700Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\System32\V0700Ext.ax HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1125216 2019-11-24] (Backblaze, Inc -> ) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [AnyTransToolHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AnyTransToolHelper.exe [578504 2020-04-02] (iMobie Inc. -> iMobie Inc.) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [OpenVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> ) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-05-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3598649575-911698112-1057895087-1001\...\Policies\Explorer: [] HKU\S-1-5-21-3598649575-911698112-1057895087-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [38400 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1125216 2019-11-24] (Backblaze, Inc -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-06] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-03-18] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {12F96C52-43CF-495B-B43B-E1A62965FDE2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {21733F0E-A7E2-4CFC-A019-3804970E893A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-25] (Google Inc -> Google Inc.) Task: {2A5AFBF5-C240-4C13-AA5F-CCA9291A0FDE} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-728PO3F-usuario DESKTOP-728PO3F => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [470720 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {2ADA23D1-E8E2-4992-A278-A9E506E85F5F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems) Task: {4D0944A2-585C-449E-A32E-96DBDA0B8627} - no ruta de acceso de archivo Task: {846A3A0F-2947-4125-B6FB-EDEC7124EA1F} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-728PO3F-usuario => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {84BB0536-8150-4071-B364-A66AC4E1132D} - no ruta de acceso de archivo Task: {8CFD8F99-F7A0-4570-A2B7-F4A8BFE23A95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {B72B8086-EB29-44FB-BB49-B08F6F877697} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {BA443F4A-CC23-47E0-8BA6-F93AE004E747} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1586112 2016-06-24] (Corel Corporation -> Corel Corporation) Task: {C6218886-95FC-4CC3-9DB3-BDB14BEE9BF2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {D1FB2AF9-92BD-4F7D-85FF-6DD932EF9C69} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-04-05] ( ) [Archivo no firmado] Task: {E07ACD2B-6875-4205-9A5B-65C185D7C44B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {E17FAB7A-BACD-4A7E-B87B-B16CD213A2E6} - no ruta de acceso de archivo Task: {F1DBBC8C-9D04-4CC7-9A1A-CB3833D462FE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F5D65601-47CB-4E3B-A3D6-0ED1E2FF372B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-25] (Google Inc -> Google Inc.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 46.6.113.34 212.231.6.7 Tcpip\..\Interfaces\{6d345cd7-f9c3-4889-879e-4c5ac649c4ae}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{9d07e4aa-8cb6-4b66-9402-9376900a672e}: [DhcpNameServer] 46.6.113.34 212.231.6.7 Tcpip\..\Interfaces\{c1976e37-70a5-4566-9ae3-828ed1671e01}: [DhcpNameServer] 46.6.113.34 212.231.6.7 Internet Explorer: ================== SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3598649575-911698112-1057895087-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D122519-N0700AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms} SearchScopes: HKU\S-1-5-21-3598649575-911698112-1057895087-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D122519-N0700AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: a9xei6r7.default FF ProfilePath: C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\a9xei6r7.default [2020-05-10] FF DownloadDir: I:\Z_DESCARGAS FF Homepage: Mozilla\Firefox\Profiles\a9xei6r7.default -> hxxps://www.google.com/ FF NewTab: Mozilla\Firefox\Profiles\a9xei6r7.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT170702&iDate=2019-12-25 07:44:47&bName=&bitmask=0600 FF Notifications: Mozilla\Firefox\Profiles\a9xei6r7.default -> hxxps://www.endesaclientes.com FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-29] (Adobe Systems Incorporated -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-29] (Adobe Systems Incorporated -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default [2020-04-13] CHR Notifications: Default -> hxxps://mail.google.com CHR HomePage: Default -> hxxps://mail.google.com/mail/u/0/?hl=es&shva=1#inbox CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?hl=es&shva=1#inbox","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/" CHR Extension: (Presentaciones) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-01] CHR Extension: (Documentos) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-01] CHR Extension: (Google Drive) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-01] CHR Extension: (YouTube) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-01] CHR Extension: (Email this page (by Google)) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbeoemfhkdniadbojeencpkgmobndpai [2017-12-01] CHR Extension: (AHA Music - Music Identifier) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-04-06] CHR Extension: (Adobe Acrobat) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-13] CHR Extension: (Hojas de cálculo) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-01] CHR Extension: (Complemento inhabilitación Google Analytics) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2017-12-01] CHR Extension: (Documentos de Google sin conexión) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-13] CHR Extension: (WhatFont) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2017-12-01] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-10-03] CHR Extension: (Simple Bookmarks) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafmgkhgdblkabfjfegmafagpccaobfg [2017-12-01] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05] CHR Extension: (Gmail) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02] CHR Extension: (Chrome Media Router) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-03] CHR Extension: (Streak CRM para Gmail) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik [2020-04-13] CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-03-16] CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-04-30] CHR Extension: (Presentaciones) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-16] CHR Extension: (Documentos) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-16] CHR Extension: (Google Drive) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-03-16] CHR Extension: (YouTube) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-16] CHR Extension: (Adobe Acrobat) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-16] CHR Extension: (Hojas de cálculo) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-16] CHR Extension: (Documentos de Google sin conexión) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-03-16] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-16] CHR Extension: (Gmail) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-03-16] CHR Extension: (Chrome Media Router) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-23] CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-16] CHR HKU\S-1-5-21-3598649575-911698112-1057895087-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1233272 2019-05-14] (Autodesk, Inc. -> Autodesk Inc.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3153872 2020-03-18] (philandro Software GmbH -> philandro Software GmbH) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-10-07] (Apple Inc. -> Apple Inc.) R2 bzserv; C:\Program Files (x86)\Backblaze\bzserv.exe [559968 2019-11-24] (Backblaze, Inc -> ) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-05-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) S4 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-15] (Malwarebytes Inc -> Malwarebytes) S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> ) R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project) S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project) S4 panda_url_filtering; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [246256 2016-11-22] (Visicom Media Inc. -> Visicom Media Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13252624 2020-04-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S4 vncserver; C:\Program Files\RealVNC\VNC Server\vncserver.exe [6750504 2018-12-07] (RealVNC Ltd -> RealVNC Ltd) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Wondershare Video Converter Ultimate\Transfer\DriverInstall.exe [111344 2020-02-27] (Wondershare Technology Co.,Ltd -> Wondershare) S4 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [Archivo no firmado] R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-05-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-05-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-04-19] (Malwarebytes Corporation -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-10] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-05-10] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-05-10] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-10] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [125088 2020-05-10] (Malwarebytes Inc -> Malwarebytes) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvgbd.inf_amd64_27fa81f0bdc6ef5f\nvlddmkm.sys [16989264 2017-11-30] (NVIDIA Corporation -> NVIDIA Corporation) S3 panda_url_filteringd; C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc. -> Visicom Media Inc.) S3 PortTalk; C:\Windows\SysWOW64\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [Archivo no firmado] R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek ) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 V0700Vid; C:\WINDOWS\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-05-10 10:47 - 2020-05-10 11:17 - 000000000 ____D C:\FRST 2020-05-10 10:32 - 2020-05-10 10:32 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-05-10 10:32 - 2020-05-10 10:32 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-05-10 10:32 - 2020-05-10 10:32 - 000125088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-05-10 10:32 - 2020-05-10 10:32 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-05-10 10:32 - 2020-05-10 10:32 - 000000000 ____D C:\Users\usuario\AppData\LocalLow\IGDump 2020-05-10 09:46 - 2020-05-10 09:46 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-05-09 23:01 - 2020-05-10 01:05 - 000009357 _____ C:\Users\usuario\Desktop\freciencia latencia.xlsx 2020-05-09 21:20 - 2020-05-09 21:20 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2020-05-09 21:20 - 2020-05-09 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2020-05-09 21:20 - 2020-05-09 21:20 - 000000000 ____D C:\Program Files\CPUID 2020-05-03 12:31 - 2020-05-03 12:31 - 000001132 _____ C:\Users\usuario\Desktop\Topaz Sharpen AI.lnk 2020-05-03 12:31 - 2020-05-03 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Sharpen AI 2020-05-03 12:30 - 2020-05-03 12:30 - 000000000 ____D C:\Users\usuario\AppData\Local\Topaz Labs 2020-05-03 12:30 - 2020-05-03 12:30 - 000000000 ____D C:\Program Files\Topaz Labs 2020-05-03 12:21 - 2020-05-03 12:21 - 000001757 _____ C:\Users\usuario\Desktop\Lightroom CLASSIC 9.lnk 2020-05-03 12:08 - 2020-05-03 12:08 - 000001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2020-05-03 12:02 - 2020-05-03 12:03 - 000000000 ____D C:\Users\usuario\AppData\Roaming\DAEMON Tools Lite 2020-05-03 12:02 - 2020-05-03 12:02 - 000059360 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys 2020-05-03 12:02 - 2020-05-03 12:02 - 000042256 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys 2020-05-03 12:02 - 2020-05-03 12:02 - 000000834 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\Users\usuario\AppData\Local\Disc_Soft_Ltd 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\Users\Public\Documents\Catch! 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite 2020-05-03 12:02 - 2020-05-03 12:02 - 000000000 ____D C:\Program Files\DAEMON Tools Lite 2020-05-03 11:04 - 2020-05-03 11:04 - 000000000 ___HD C:\ProgramData\CanonBJ 2020-05-03 11:04 - 2017-06-06 05:00 - 001302016 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMDT.DLL 2020-05-02 10:16 - 2020-05-02 10:16 - 780917292 _____ C:\WINDOWS\MEMORY.DMP 2020-05-02 10:16 - 2020-05-02 10:16 - 000758420 _____ C:\WINDOWS\Minidump\050220-12937-01.dmp 2020-05-02 10:16 - 2020-05-02 10:16 - 000000000 ____D C:\WINDOWS\Minidump 2020-05-01 21:20 - 2020-05-01 21:20 - 008148680 _____ (Tim Kosse) C:\Users\usuario\Downloads\FileZilla_3.48.0_win64-setup.exe 2020-04-30 21:42 - 2020-04-30 21:42 - 000547707 _____ C:\Users\usuario\Downloads\4-4-1-D DOC14_vPDF (1).pdf 2020-04-30 21:38 - 2020-04-30 21:38 - 038441875 _____ C:\Users\usuario\Downloads\CATÁLOGO GENERAL AGROB BUCHTAL (en castellano).pdf 2020-04-30 21:27 - 2020-04-30 21:27 - 000547707 _____ C:\Users\usuario\Downloads\4-4-1-D DOC14_vPDF.pdf 2020-04-30 18:42 - 2020-04-30 18:42 - 000142209 _____ C:\Users\usuario\Downloads\PLANTA URBANIZACIÓN PLAZA.dwg 2020-04-28 18:30 - 2020-04-28 18:30 - 001423630 _____ C:\Users\usuario\Downloads\20200423_Inicio identificacion arqueologica Sur (1).pdf 2020-04-26 22:52 - 2020-04-26 22:52 - 000000297 _____ C:\Users\usuario\d4ac4633ebd6440fa397b84f1bc94a3c.7z 2020-04-26 22:51 - 2020-04-26 22:51 - 000000066 _____ C:\Users\usuario\inittk.ini 2020-04-26 22:51 - 2020-04-26 22:51 - 000000000 ____D C:\Users\usuario\Nox_share 2020-04-26 22:50 - 2020-04-26 22:50 - 000000053 _____ C:\Users\usuario\useruid.ini 2020-04-26 22:50 - 2020-04-26 22:50 - 000000045 _____ C:\Users\usuario\nuuid.ini 2020-04-26 22:50 - 2020-04-26 22:50 - 000000041 _____ C:\Users\usuario\inst.ini 2020-04-26 22:50 - 2020-04-26 22:50 - 000000000 ____D C:\Users\usuario\vmlogs 2020-04-26 22:50 - 2020-04-26 22:50 - 000000000 ____D C:\Users\usuario\AppData\Local\NoxSrv 2020-04-26 22:49 - 2020-04-26 23:00 - 000000000 ____D C:\Users\usuario\AppData\Local\Nox 2020-04-26 21:58 - 2020-04-26 21:58 - 000000000 ____D C:\Users\usuario\Documents\LetsView 2020-04-26 21:57 - 2020-04-26 21:57 - 000000000 ____D C:\Users\usuario\AppData\Roaming\LetsView 2020-04-23 21:55 - 2020-05-06 17:39 - 000000000 ____D C:\Users\usuario\AppData\LocalLow\BitTorrent 2020-04-23 17:43 - 2020-04-23 17:43 - 001423630 _____ C:\Users\usuario\Downloads\20200423_Inicio identificacion arqueologica Sur.pdf 2020-04-23 17:32 - 2020-04-23 17:32 - 000000000 ____D C:\Users\usuario\Desktop\Nueva carpeta 2020-04-21 17:02 - 2020-04-21 17:02 - 000097880 _____ C:\Users\usuario\Downloads\HGMA_HMalaga_PANELES_R3.dwg 2020-04-21 16:29 - 2020-04-21 16:29 - 000177205 _____ C:\Users\usuario\Downloads\Presurizacin escaleras.pdf 2020-04-20 16:06 - 2020-04-20 16:06 - 001504759 _____ C:\Users\usuario\Downloads\HURS_CCEE_E_IBT33a34 (alumbrado Urb) (1).pdf 2020-04-20 16:05 - 2020-04-20 16:05 - 001504759 _____ C:\Users\usuario\Downloads\HURS_CCEE_E_IBT33a34 (alumbrado Urb).pdf 2020-04-16 18:54 - 2020-04-16 18:54 - 000201065 _____ C:\Users\usuario\Downloads\WhatsApp Image 2020-04-16 at 18.13.12.jpeg 2020-04-16 18:54 - 2020-04-16 18:54 - 000147001 _____ C:\Users\usuario\Downloads\WhatsApp Image 2020-04-16 at 18.13.37.jpeg 2020-04-16 18:54 - 2020-04-16 18:54 - 000128978 _____ C:\Users\usuario\Downloads\WhatsApp Image 2020-04-16 at 18.13.36.jpeg 2020-04-15 12:45 - 2020-04-15 12:45 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-04-15 12:45 - 2020-04-15 12:45 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 002369576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 002188600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001659408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2020-04-15 12:45 - 2020-04-15 12:45 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2020-04-15 12:45 - 2020-04-15 12:45 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-04-15 12:45 - 2020-04-15 12:45 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2020-04-15 12:45 - 2020-04-15 12:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe 2020-04-15 12:45 - 2020-04-15 12:45 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-04-15 12:45 - 2020-04-15 12:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-04-15 12:44 - 2020-04-15 12:44 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-04-15 12:44 - 2020-04-15 12:44 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-04-15 12:44 - 2020-04-15 12:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys 2020-04-15 12:44 - 2020-04-15 12:44 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2020-04-15 12:44 - 2020-04-15 12:44 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-04-15 12:44 - 2020-04-15 12:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-04-15 12:34 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-04-15 12:34 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-04-14 18:21 - 2020-04-14 18:21 - 000000000 ____D C:\Users\usuario\Downloads\wetransfer-ec3bc9 2020-04-14 18:20 - 2020-04-14 18:21 - 162441299 _____ C:\Users\usuario\Downloads\wetransfer-ec3bc9.zip 2020-04-13 18:00 - 2020-04-13 18:01 - 000160283 _____ C:\Users\usuario\Downloads\WhatsApp Image 2020-04-13 at 09.07.14.jpeg 2020-04-13 16:05 - 2020-04-13 16:18 - 009803161 _____ C:\Users\usuario\Downloads\HGMA_HMalaga_rfx_R8_alt Model (1).psd 2020-04-10 21:00 - 2020-04-10 21:01 - 024646139 _____ C:\Users\usuario\Downloads\D810FM_DL(Es)01.pdf ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-05-10 11:04 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-05-10 10:38 - 2019-08-23 16:34 - 001684180 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-05-10 10:38 - 2019-03-19 13:59 - 000752490 _____ C:\WINDOWS\system32\perfh00A.dat 2020-05-10 10:38 - 2019-03-19 13:59 - 000148070 _____ C:\WINDOWS\system32\perfc00A.dat 2020-05-10 10:38 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2020-05-10 10:34 - 2017-11-24 21:30 - 000000000 ____D C:\Users\usuario\AppData\LocalLow\Mozilla 2020-05-10 10:32 - 2019-08-23 16:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-05-10 10:32 - 2017-11-26 22:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-05-10 10:31 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-05-10 10:07 - 2017-12-01 18:41 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-05-10 10:06 - 2019-06-18 22:04 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-05-10 10:05 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-05-10 09:49 - 2017-11-26 01:25 - 000007609 ____H C:\Users\usuario\AppData\Local\resmon.resmoncfg 2020-05-10 09:46 - 2017-11-24 21:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-05-10 09:46 - 2017-11-24 21:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-05-10 09:39 - 2017-11-24 19:34 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-05-10 09:38 - 2019-08-23 16:24 - 005313504 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-05-10 09:38 - 2018-04-21 17:22 - 000000000 ____D C:\Program Files (x86)\Panda Security 2020-05-09 23:36 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-05-09 23:36 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-05-09 22:29 - 2019-08-23 16:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-05-09 20:25 - 2018-04-21 17:25 - 000000000 ____D C:\Users\usuario\AppData\Roaming\Panda Security 2020-05-09 20:25 - 2018-04-21 17:23 - 000000000 ____D C:\ProgramData\Panda Security 2020-05-09 12:41 - 2020-01-02 15:28 - 000005326 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-728PO3F-usuario DESKTOP-728PO3F 2020-05-07 19:08 - 2019-10-02 20:50 - 000000000 ___RD C:\Users\usuario\iCloudDrive 2020-05-07 19:08 - 2018-02-10 10:32 - 000000000 ___HD C:\Users\usuario\.android 2020-05-07 19:08 - 2017-11-24 21:26 - 000000000 ___HD C:\Users\usuario\AppData\Local\Adobe 2020-05-07 19:08 - 2017-11-24 19:24 - 000000000 ___RD C:\Users\usuario\OneDrive 2020-05-06 23:46 - 2019-08-23 16:26 - 000000000 ___HD C:\Users\usuario 2020-05-06 22:38 - 2017-11-26 01:15 - 000000000 ____D C:\Users\usuario\AppData\Roaming\BitTorrent 2020-05-04 19:57 - 2019-12-29 18:47 - 000001392 _____ C:\Users\usuario\Desktop\Roblox Player.lnk 2020-05-04 19:57 - 2019-12-29 18:47 - 000001207 _____ C:\Users\usuario\Desktop\Roblox Studio.lnk 2020-05-04 19:57 - 2019-12-29 18:47 - 000000000 ____D C:\Users\usuario\AppData\Local\Roblox 2020-05-04 19:57 - 2019-12-29 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox 2020-05-04 18:30 - 2020-03-18 17:33 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2020-05-03 21:06 - 2017-12-01 00:12 - 000001456 ____H C:\Users\usuario\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2020-05-03 12:08 - 2018-05-20 04:03 - 000000000 ___HD C:\Users\usuario\AppData\Local\D3DSCache 2020-05-03 12:08 - 2017-11-25 16:06 - 000000000 ____D C:\Program Files\Adobe 2020-05-03 12:08 - 2017-11-24 19:23 - 000000000 ____D C:\Users\usuario\AppData\Roaming\Adobe 2020-05-03 12:06 - 2017-11-25 16:07 - 000000000 ____D C:\ProgramData\Package Cache 2020-05-03 12:05 - 2017-11-24 21:27 - 000000000 ____D C:\ProgramData\Adobe 2020-05-02 12:59 - 2017-11-24 21:17 - 000000000 ____D C:\Users\usuario\AppData\Local\Packages 2020-05-02 10:36 - 2019-09-30 20:54 - 000003298 _____ C:\WINDOWS\system32\Tasks\klcp_update 2020-05-02 10:36 - 2019-09-30 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2020-05-02 10:36 - 2019-09-30 20:53 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2020-05-01 21:20 - 2019-09-13 23:42 - 000000032 ___SH C:\Users\usuario\AppData\Roaming\{E6675901-CE11-42E8-A4DD-1D68DD5A496F}.dat 2020-05-01 21:20 - 2017-12-22 22:33 - 000000000 ____D C:\Users\usuario\AppData\Roaming\FileZilla 2020-05-01 21:04 - 2019-03-26 21:04 - 000000000 ____D C:\Users\usuario\AppData\Roaming\audacity 2020-05-01 20:45 - 2017-11-25 17:31 - 000000020 ____H C:\ProgramData\PKP_DLet.DAT 2020-04-30 21:26 - 2019-10-02 14:39 - 000000000 ____D C:\archivos temporales autocad 2020-04-30 18:42 - 2019-10-02 14:40 - 000000000 ____D C:\temp 2020-04-28 16:15 - 2020-03-16 16:43 - 000002478 _____ C:\Users\usuario\Desktop\Manuel (Manuel Planho) - Chrome.lnk 2020-04-26 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration 2020-04-26 21:58 - 2017-12-27 01:26 - 000000000 ___HD C:\Users\usuario\AppData\Local\CrashDumps 2020-04-25 12:18 - 2019-04-18 19:54 - 000000634 _____ C:\Users\usuario\Desktop\bateria.txt 2020-04-24 20:57 - 2019-10-06 23:27 - 000000000 ____D C:\Users\usuario\AppData\Local\Spotify 2020-04-24 20:56 - 2019-10-06 23:26 - 000000000 ____D C:\Users\usuario\AppData\Roaming\Spotify 2020-04-24 00:21 - 2018-05-15 22:27 - 000000000 ____D C:\Users\usuario\AppData\Local\PlaceholderTileLogoFolder 2020-04-19 20:31 - 2019-11-22 20:40 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-04-17 16:14 - 2019-08-23 16:32 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3598649575-911698112-1057895087-1001 2020-04-17 16:14 - 2019-08-23 16:26 - 000002403 _____ C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-04-15 22:53 - 2019-03-19 14:01 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-04-15 22:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr ==================== Archivos en la raíz de algunos directorios ======== 2018-09-10 18:40 - 2018-09-10 18:40 - 000000112 _____ () C:\Users\usuario\AppData\Roaming\Prefs. de JP2K (CS6) 2019-12-30 17:43 - 2020-04-09 12:42 - 000000128 _____ () C:\Users\usuario\AppData\Roaming\PUTTY.RND 2017-11-25 17:31 - 2017-11-25 17:31 - 000000268 ____H () C:\Users\usuario\AppData\Roaming\Screen Savers 2017-11-25 17:31 - 2017-11-25 17:31 - 000000268 ____H () C:\Users\usuario\AppData\Roaming\Scripts Menu 2017-11-25 17:31 - 2017-11-25 17:31 - 000000268 ____H () C:\Users\usuario\AppData\Roaming\Services 2019-09-13 23:42 - 2020-05-01 21:20 - 000000032 ___SH () C:\Users\usuario\AppData\Roaming\{E6675901-CE11-42E8-A4DD-1D68DD5A496F}.dat 2017-12-01 00:12 - 2020-05-03 21:06 - 000001456 ____H () C:\Users\usuario\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2018-09-29 11:11 - 2018-09-29 11:11 - 000000000 ____H () C:\Users\usuario\AppData\Local\oobelibMkey.log 2018-03-19 21:56 - 2019-12-06 00:35 - 000000600 ____H () C:\Users\usuario\AppData\Local\PUTTY.RND 2017-11-26 01:25 - 2020-05-10 09:49 - 000007609 ____H () C:\Users\usuario\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================