Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-10-2019 Ran by Eliecer (administrator) on GATEWAY-PC (Gateway NV49C) (21-10-2019 17:08:02) Running from C:\Users\Eliecer\Desktop Loaded Profiles: Eliecer (Available Profiles: Eliecer & familia y otros) Platform: Windows 10 Pro Version 1903 18362.418 (X64) Language: Español (España, internacional) Default browser: Edge Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe\YourPhone.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MpCmdRun.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MpCmdRun.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.85.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.85.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe Failed to access process -> MicrosoftEdgeCP.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388928 2018-06-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [165120 2019-09-09] (Panda Security S.L. -> Panda Security, S.L.) HKU\S-1-5-21-4058952113-1512256569-4060134003-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-10-13] (Glarysoft LTD -> Glarysoft Ltd) HKU\S-1-5-21-4058952113-1512256569-4060134003-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Startup: C:\Users\Eliecer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2019-10-18] ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) BootExecute: autocheck autochk * FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {02E972AA-ED94-4426-9728-2D4D847C116F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {400438BA-7FA5-4A66-AC89-693D28CEBAAF} - no filepath Task: {405258F4-7C7A-4064-B246-3779EB04E90F} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Eliecer\Downloads\esetonlinescanner_esl.exe [8166712 2019-10-02] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {53F4EA24-1FBE-4B95-8ADE-72435923DB46} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Eliecer\Downloads\esetonlinescanner_esl.exe [8166712 2019-10-02] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {54A3DA88-51CE-4973-A9AF-53DDEEC1CE5E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {54A7F3B3-3378-43DB-9673-B48C03DA23CA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {555DE8AD-B8E9-4BD9-B4D6-4E142A36D0ED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470440 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {6310A3BE-FA4E-4FCC-9CC1-FD103DA54EE7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {91A403F4-476D-410E-BB78-CE53CC35DA36} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {95EF32E3-D44B-4AC7-A7A5-0380C6364277} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470440 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {9FF600BD-97FD-4550-A277-DC765B630ECB} - no filepath Task: {A3B41FCE-6927-44E6-92A5-D134CE8EA688} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {B2044672-8C8D-4DDA-BEF3-C640D7C2C638} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B22B5D9F-EA53-4453-A307-05646E48ECF2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {B85C4C0D-460B-40D8-BB75-CB2300F27E05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CA2A0A3B-C787-4822-BC3B-A9C5B87CE7CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D698EA34-2910-4DE0-9FFB-8E5CF75B22C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {E84E5647-72E3-4959-9AF7-5C26FD916A46} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {EFA6B444-804B-4A51-A691-6EF11574D749} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe Task: {FDE5D63C-9AB6-49E0-8FBC-307E91E6C8EB} - System32\Tasks\Microsoft\Windows\Setup\PrivacyNotifier => C:\WINDOWS\system32\PrivacyNotifier.exe Task: {FE7DCF98-06F9-45B6-A24D-473FBEF5FB0E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 190.157.8.100 190.157.8.33 100.70.133.50 100.70.133.51 Tcpip\..\Interfaces\{3042524e-5b69-4b39-a930-a4ccb1ec334b}: [DhcpNameServer] 190.157.8.100 190.157.8.33 100.70.133.50 100.70.133.51 Internet Explorer: ================== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-05-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-07] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\Eliecer\Downloads Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.9.0.0_neutral__c1wakc4j0nefm [2019-05-01] Edge Extension: (Traductor para Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-05-01] FireFox: ======== FF DefaultProfile: d49t9rpi.default FF ProfilePath: C:\Users\Eliecer\AppData\Roaming\Mozilla\Firefox\Profiles\d49t9rpi.default [2019-09-12] FF ProfilePath: C:\Users\Eliecer\AppData\Roaming\Mozilla\Firefox\Profiles\4qlk7xeo.default-release-1568348604536 [2019-10-18] FF Extension: (AdBlock) - C:\Users\Eliecer\AppData\Roaming\Mozilla\Firefox\Profiles\4qlk7xeo.default-release-1568348604536\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-09-13] FF Extension: (Avast Online Security) - C:\Users\Eliecer\AppData\Roaming\Mozilla\Firefox\Profiles\4qlk7xeo.default-release-1568348604536\Extensions\wrc@avast.com.xpi [2019-09-23] FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642472 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109536 2019-09-09] (Panda Security S.L. -> Panda Security, S.L.) S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2019-09-09] (Panda Security S.L. -> Panda Security, S.L.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246448 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4321160 2017-11-24] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32344 2016-08-28] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.) R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2019-10-04] (Glarysoft LTD -> Glarysoft Ltd) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-10-18] (Malwarebytes Corporation -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-10-18] (Malwarebytes Corporation -> Malwarebytes) R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [111384 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [104728 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [211736 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125720 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132888 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [95472 2018-07-16] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [149784 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [95000 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135448 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [346392 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [290584 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123160 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [295192 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [132376 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198424 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [160536 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [215320 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [147224 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [159512 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [129304 2019-06-11] (Panda Security S.L. -> Panda Security, S.L.) R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72648 2017-05-22] (Panda Security S.L. -> Panda Security, S.L.) S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [42160 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42664 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-07-22] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-21 17:08 - 2019-10-21 17:12 - 000023558 _____ C:\Users\Eliecer\Desktop\FRST.txt 2019-10-21 17:07 - 2019-10-21 17:07 - 000000000 ____D C:\Users\Eliecer\Desktop\FRST-OlderVersion 2019-10-18 22:40 - 2019-10-21 17:11 - 000000000 ____D C:\FRST 2019-10-18 22:36 - 2019-10-21 17:07 - 001617408 _____ (Farbar) C:\Users\Eliecer\Desktop\FRST64.exe 2019-10-18 15:44 - 2019-10-18 15:44 - 000001554 _____ C:\Users\Eliecer\Desktop\Analisis Malwarfe.txt 2019-10-18 10:07 - 2019-10-18 10:07 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-10-18 10:07 - 2019-10-18 10:07 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2019-10-16 19:04 - 2019-10-16 19:54 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\ZHP 2019-10-16 19:04 - 2019-10-16 19:07 - 000000000 ____D C:\Users\Eliecer\AppData\Local\ZHP 2019-10-16 19:04 - 2019-10-16 19:04 - 000000877 _____ C:\Users\Eliecer\Desktop\ZHPCleaner.lnk 2019-10-16 19:03 - 2019-10-16 19:53 - 000000000 ____D C:\Users\Eliecer\Desktop\Escaner PC 2019-10-16 18:36 - 2019-10-16 18:36 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2019-10-16 18:36 - 2019-10-16 18:36 - 000002882 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2019-10-16 18:35 - 2019-10-16 18:36 - 000000000 ____D C:\Program Files\CCleaner 2019-10-16 18:35 - 2019-10-16 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2019-10-16 18:31 - 2019-10-16 18:31 - 003338624 _____ (Nicolas Coolman) C:\Users\Eliecer\Desktop\ZHPCleaner.exe 2019-10-16 18:28 - 2019-10-16 18:50 - 000000000 ____D C:\AdwCleaner 2019-10-16 18:26 - 2019-10-16 18:26 - 007636680 _____ (Malwarebytes) C:\Users\Eliecer\Desktop\adwcleaner_7.4.1.exe 2019-10-16 18:23 - 2019-10-16 18:23 - 000000000 ____D C:\Users\Eliecer\AppData\Local\mbam 2019-10-16 18:21 - 2019-10-16 18:21 - 000000000 ____D C:\Users\Eliecer\AppData\Local\mbamtray 2019-10-16 18:20 - 2019-10-18 10:07 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-10-16 18:20 - 2019-10-16 18:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-10-16 18:20 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2019-10-16 18:19 - 2019-10-16 18:19 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-10-16 18:19 - 2019-10-16 18:19 - 000000000 ____D C:\Program Files\Malwarebytes 2019-10-15 21:46 - 2019-10-15 21:46 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\Panda Security 2019-10-15 21:45 - 2017-05-22 00:01 - 000072648 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys 2019-10-15 21:44 - 2019-06-11 21:29 - 000198424 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys 2019-10-15 21:44 - 2019-06-11 21:29 - 000159512 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys 2019-10-15 21:44 - 2019-06-11 21:29 - 000129304 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys 2019-10-15 21:44 - 2019-05-30 00:57 - 000295192 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys 2019-10-15 21:44 - 2019-03-05 22:06 - 000125720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000346392 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000211736 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000149784 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000135448 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000132888 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000132376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnstlsc.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000123160 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000111384 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsalpc.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000104728 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys 2019-10-15 21:44 - 2019-03-05 00:44 - 000095000 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspihsw.sys 2019-10-15 21:43 - 2019-10-15 21:47 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk 2019-10-15 21:43 - 2019-10-15 21:46 - 000000000 ____D C:\Program Files (x86)\Panda Security 2019-10-15 21:43 - 2019-10-15 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome 2019-10-15 21:43 - 2019-03-04 08:20 - 000215320 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys 2019-10-15 21:38 - 2019-10-15 21:46 - 000000000 ____D C:\ProgramData\Panda Security 2019-10-15 16:10 - 2019-10-15 16:10 - 000002580 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002512 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002485 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-10-15 16:10 - 2019-10-15 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2019-10-10 22:16 - 2019-10-10 22:16 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 019811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2019-10-10 22:16 - 2019-10-10 22:16 - 002494440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 002422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2019-10-10 22:16 - 2019-10-10 22:16 - 002314648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 002138472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2019-10-10 22:16 - 2019-10-10 22:16 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 001273392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 001152016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2019-10-10 22:16 - 2019-10-10 22:16 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-10-10 22:15 - 2019-10-10 22:16 - 004129616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 022628352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 018019840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 008010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 006232064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 005915648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2019-10-10 22:15 - 2019-10-10 22:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2019-10-10 22:15 - 2019-10-10 22:15 - 002236144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-10-10 22:15 - 2019-10-10 22:15 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2019-10-10 22:15 - 2019-10-10 22:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2019-10-10 22:14 - 2019-10-10 22:15 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-10-10 22:14 - 2019-10-10 22:14 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 001217904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-10-10 22:14 - 2019-10-10 22:14 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-10-10 22:14 - 2019-10-10 22:14 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000829536 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe 2019-10-10 22:14 - 2019-10-10 22:14 - 000774672 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-10-10 22:14 - 2019-10-10 22:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000300184 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-10-10 22:14 - 2019-10-10 22:14 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-10-10 22:14 - 2019-10-10 22:14 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 006517640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 001952360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 001730560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 001664928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000904208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000856576 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2019-10-10 22:13 - 2019-10-10 22:13 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000679880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000598024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000452408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-10-10 22:13 - 2019-10-10 22:13 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-10-10 22:13 - 2019-10-10 22:13 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2019-10-10 22:13 - 2019-10-10 22:13 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000033048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL 2019-10-10 22:13 - 2019-10-10 22:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll 2019-10-10 22:13 - 2019-10-10 22:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 000818688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-10-10 22:12 - 2019-10-10 22:12 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 009928504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 007600664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 002762504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 002000168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 001439744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000890472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000880088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000758584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mousocoreworker.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000516408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000466416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2019-10-10 22:11 - 2019-10-10 22:11 - 000412152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2019-10-10 22:11 - 2019-10-10 22:11 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000202040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-10-10 22:11 - 2019-10-10 22:11 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-10-10 22:11 - 2019-10-10 22:11 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2019-10-10 22:11 - 2019-10-10 22:11 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2019-10-10 22:11 - 2019-10-10 22:11 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2019-10-10 22:11 - 2019-10-10 22:11 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 004012544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 003947008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 003701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 002723328 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-10-10 22:10 - 2019-10-10 22:10 - 002456064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-10-10 22:10 - 2019-10-10 22:10 - 001084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2019-10-10 22:10 - 2019-10-10 22:10 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-10-10 22:10 - 2019-10-10 22:10 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-10-10 22:10 - 2019-10-10 22:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll 2019-10-10 20:24 - 2019-10-10 20:24 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2019-10-10 20:24 - 2019-10-10 20:24 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2019-10-05 22:15 - 2019-10-07 18:14 - 000000000 ____D C:\Users\Eliecer\AppData\Local\Avg 2019-10-05 22:12 - 2019-10-05 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG 2019-10-05 22:07 - 2019-10-07 18:14 - 000000000 ____D C:\ProgramData\AVG 2019-10-05 15:37 - 2019-10-16 18:55 - 103022592 _____ C:\WINDOWS\system32\config\SOFTWARE 2019-10-05 15:16 - 2019-10-05 15:37 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2019-10-04 20:30 - 2019-10-15 20:43 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2019-10-04 20:29 - 2019-10-15 20:45 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5 2019-10-04 20:29 - 2019-10-04 20:29 - 000028936 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys 2019-10-04 20:29 - 2019-10-04 20:29 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\GlarySoft 2019-10-04 20:29 - 2019-10-04 20:29 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\DiskDefrag 2019-10-03 19:20 - 2019-10-03 19:20 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-10-03 19:20 - 2019-10-03 19:20 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll 2019-10-03 02:08 - 2019-10-03 02:08 - 000003810 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2019-10-03 02:08 - 2019-10-03 02:08 - 000003368 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2019-10-02 22:10 - 2019-10-07 21:25 - 000000672 _____ C:\Users\Eliecer\Desktop\ESET Online Scanner.lnk 2019-10-02 22:10 - 2019-10-02 22:10 - 000000771 _____ C:\Users\Eliecer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2019-10-02 22:08 - 2019-10-02 22:09 - 008166712 _____ (ESET spol. s r.o.) C:\Users\Eliecer\Downloads\esetonlinescanner_esl.exe 2019-10-02 19:02 - 2019-10-02 19:02 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2019-10-02 19:02 - 2019-10-02 19:02 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 004481536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 002190864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 002132280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001788728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001716752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001611792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001510752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001505320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001501712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001386000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001297936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001244944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 001043984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000957240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000827408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000816648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000666128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys 2019-10-02 19:01 - 2019-10-02 19:01 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-10-02 19:01 - 2019-10-02 19:01 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000495120 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-10-02 19:01 - 2019-10-02 19:01 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000394256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000258064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000231440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000228880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000181776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000173072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2019-10-02 19:01 - 2019-10-02 19:01 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000100664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys 2019-10-02 19:01 - 2019-10-02 19:01 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000037904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000021816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe 2019-10-02 19:01 - 2019-10-02 19:01 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll 2019-10-02 19:01 - 2019-10-02 19:01 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 006084048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 005865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizimg.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 005764872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 005105152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 003964056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 003742032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 002821120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 002772032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 002258856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 002160640 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001957008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001913296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001845408 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001692160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001664376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001616784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001334064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001178816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001054872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 001047968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000792296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000541480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000501232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000487576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000450360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11on12.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000383984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000379840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000285256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000283688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ForceSync.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000125232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000116904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000110080 _____ C:\WINDOWS\system32\ResBParser.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devrtl.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2019-10-02 19:00 - 2019-10-02 19:00 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys 2019-10-02 19:00 - 2019-10-02 19:00 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000016696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizres.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000011576 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlibres.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2019-10-02 19:00 - 2019-10-02 19:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-10-02 18:59 - 2019-10-02 18:59 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 006425600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 006164480 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 004046336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 003553280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 003386880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 002590208 _____ C:\WINDOWS\system32\dwmscene.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-10-02 18:59 - 2019-10-02 18:59 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2019-10-02 18:59 - 2019-10-02 18:59 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-10-02 18:59 - 2019-10-02 18:59 - 001261800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000984376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000759488 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000674072 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-10-02 18:59 - 2019-10-02 18:59 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000442704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000398728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000293344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-10-02 18:59 - 2019-10-02 18:59 - 000176152 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000140496 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000119840 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000092624 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000053248 _____ C:\WINDOWS\system32\Drivers\UsbPmApi.sys 2019-10-02 18:59 - 2019-10-02 18:59 - 000047616 _____ C:\WINDOWS\system32\UsbPmApi.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll 2019-10-02 18:59 - 2019-10-02 18:59 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2019-10-02 18:59 - 2019-10-02 18:59 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 007848192 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 006227624 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 004612520 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 003184128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 003105280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 002069504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001607680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001543168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001383856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001150240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001036800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 001029432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000833312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000732176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000656960 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11on12.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000551952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000449888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000342896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000223032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000105272 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000079376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uaspstor.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000052752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys 2019-10-02 18:58 - 2019-10-02 18:58 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe 2019-10-02 18:58 - 2019-10-02 18:58 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll 2019-10-02 18:58 - 2019-10-02 18:58 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll 2019-09-25 21:30 - 2019-10-16 18:58 - 000501032 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-09-22 22:37 - 2019-10-15 21:39 - 000000000 ____D C:\Program Files (x86)\Google ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-21 17:05 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-10-21 16:53 - 2019-05-10 21:33 - 000000000 ____D C:\Users\Eliecer\AppData\Local\CrashDumps 2019-10-18 22:52 - 2019-03-18 23:50 - 000000000 ____D C:\WINDOWS\INF 2019-10-18 22:16 - 2019-05-02 21:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-10-18 22:08 - 2018-05-01 17:09 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-10-18 15:59 - 2019-05-20 22:10 - 000000000 ____D C:\Users\Eliecer\AppData\Local\ESET 2019-10-18 15:43 - 2019-07-10 03:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-10-18 07:45 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-10-18 01:14 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-10-18 01:14 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-10-16 18:56 - 2019-07-10 04:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-10-16 18:55 - 2019-03-18 23:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2019-10-16 18:50 - 2017-08-08 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2019-10-16 18:20 - 2019-03-18 23:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-10-15 23:09 - 2019-05-04 21:19 - 000000000 ____D C:\Users\Eliecer\AppData\Local\JDownloader 2.0 2019-10-15 21:46 - 2019-05-01 00:00 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy 2019-10-15 21:46 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2019-10-15 21:39 - 2019-05-03 22:26 - 000000000 ____D C:\Users\Eliecer\AppData\Local\Google 2019-10-15 21:22 - 2019-06-05 21:19 - 000000000 ____D C:\Users\Eliecer\Desktop\ESCRITORIO 2019-10-15 17:07 - 2019-07-10 04:45 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2019-10-15 17:01 - 2019-05-01 07:12 - 000000000 ____D C:\Users\Eliecer\AppData\Local\Adobe 2019-10-15 15:57 - 2019-05-02 20:43 - 000000000 ____D C:\ProgramData\AVAST Software 2019-10-15 15:51 - 2019-05-02 20:54 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\AVAST Software 2019-10-15 15:48 - 2019-03-18 23:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-10-15 13:23 - 2019-07-10 04:25 - 001767626 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-10-15 13:23 - 2019-03-19 06:59 - 000784366 _____ C:\WINDOWS\system32\perfh00A.dat 2019-10-15 13:23 - 2019-03-19 06:59 - 000152800 _____ C:\WINDOWS\system32\perfc00A.dat 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\PrintDialog 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SystemResources 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\es-MX 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-10-11 05:30 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-10-10 22:45 - 2019-05-02 03:07 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-10-10 22:36 - 2019-05-02 03:07 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-10-10 22:35 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-10-10 19:57 - 2019-09-08 21:44 - 000002373 _____ C:\Users\Eliecer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-10-10 19:57 - 2016-06-11 17:16 - 000000000 ___RD C:\Users\Eliecer\OneDrive 2019-10-04 20:39 - 2019-07-14 02:07 - 000000000 ____D C:\Users\Eliecer\AppData\Local\Opera Software 2019-10-04 20:39 - 2019-07-14 02:05 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\Opera Software 2019-10-04 20:31 - 2017-08-07 13:21 - 000000000 ____D C:\Users\Eliecer\AppData\LocalLow\Mozilla 2019-10-04 20:30 - 2018-03-03 01:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2019-10-02 20:07 - 2019-05-01 23:58 - 000000000 ____D C:\Users\Eliecer\AppData\Local\D3DSCache 2019-10-02 19:51 - 2019-05-01 06:51 - 000000000 ____D C:\Users\Eliecer\AppData\Local\Packages 2019-10-02 19:26 - 2017-08-06 16:15 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-10-02 19:26 - 2015-08-08 18:34 - 000000000 ___RD C:\Users\Eliecer\3D Objects 2019-10-02 19:15 - 2019-03-19 07:01 - 000000000 ___SD C:\WINDOWS\system32\AppV 2019-10-02 19:15 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-10-02 19:15 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2019-10-02 19:15 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2019-10-02 19:15 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2019-10-02 18:44 - 2019-05-01 06:46 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-09-29 22:32 - 2019-05-03 22:08 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\vlc 2019-09-29 22:09 - 2019-05-02 20:54 - 000000000 ____D C:\Users\Eliecer\AppData\Local\AVAST Software 2019-09-29 20:58 - 2019-07-10 04:11 - 000000000 ____D C:\Users\Eliecer 2019-09-24 18:36 - 2019-05-02 21:08 - 000000000 ____D C:\Users\Eliecer\AppData\Roaming\MPC-HC 2019-09-22 20:56 - 2016-08-11 00:50 - 000000000 ____D C:\Users\Eliecer\Downloads\PELICULAS