Memoria llena

**pachuly autalan** · 16/09/17, 02:19:52

# AdwCleaner 7.0.2.1 - Logfile created on Sat Sep 16 05

06 2017
# Updated on 2017/29/08 by Malwarebytes
# Running on Windows 7 Ultimate (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [948 B] - [2017/9/16 5

51]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017
Ran by Usurio (16-09-2017 03:06:52)
Running from D:\Usuario\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2017-06-25 01:18:12)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrador (S-1-5-21-865420550-542592396-761937010-500 - Administrator - Disabled)
Invitado (S-1-5-21-865420550-542592396-761937010-501 - Limited - Enabled)
Usurio (S-1-5-21-865420550-542592396-761937010-1004 - Administrator - Enabled) => C:\Users\Usurio

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.13.1897, 26.06.2017 - AIMP DevTeam)
Argente - Registry Cleaner 3.1.1.0 (HKLM-x32\...\Argente - Registry Cleaner_is1) (Version: 3.1.1.0 - Raúl Argente)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
ATI Catalyst Install Manager (HKLM\...\{2A13EF26-4D68-B2D7-A486-DBBD2FDE366B}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Avira (HKLM-x32\...\{1B48601D-0537-4589-9952-A8989BE8249A}) (Version: 1.2.96.16095 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{7c01a3b4-3454-446e-8473-8a245f962c28}) (Version: 1.2.96.16095 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.30.29 - Avira Operations GmbH & Co. KG)
ccc-core-static (HKLM-x32\...\{8ADE5280-35CA-CF98-A456-F66B98C77244}) (Version: 2010.0210.2206.39615 - Nombre de su organización) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Complemento Guardar como PDF o XPS de Microsoft para programas de Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0C0A-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version: - )
CyberLink PowerDVD 15 (HKLM-x32\...\{DE85B8F3-D088-4D6E-A970-EE0BC7883A66}) (Version: 15.0.2003.58 - CyberLink Corp.)
Glary Utilities 5.82 (HKLM-x32\...\Glary Utilities 5) (Version: 5.82.0.103 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
K-Lite Mega Codec Pack 9.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - )
Malwarebytes versión 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Mario Party 9 versión 2.0 (HKLM-x32\...\{973C9B56-7591-427E-844A-D8A78A9D620C}_is1) (Version: 2.0 - JUEGOS PC)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x86 es-AR) (HKLM-x32\...\Mozilla Firefox 55.0.2 (x86 es-AR)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0.1 - Mozilla)
Nero 8 Lite 8.1.1.3 (HKLM-x32\...\Nero8Lite_is1) (Version: 8.1.1.3 - Updatepack.nl)
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - )
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2017-07-29] (AIMP DevTeam)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-09-14] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2017-07-29] (AIMP DevTeam)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-10] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-11-14] (Intel Corporation)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-09-14] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0114DCBB-3564-496D-9B5F-71B1367A4527} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {0213B4C1-6A38-42F0-B429-FCC49CD27325} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {0297D316-70E3-4629-A388-473DDFED2B65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)
Task: {18738401-E2CF-424B-9C6F-984825E41A4A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2017-08-20] (Glarysoft Ltd)
Task: {5DF9729B-F14D-4846-A570-8A54A37242A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-09-16 02:34 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2014-02-15 03:29 - 2010-03-15 11:28 - 000166400 _____ () C:\Program Files\WinRAR\rarext.dll
2017-06-27 20:11 - 2007-09-02 13:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2017-07-21 17:03 - 2010-08-11 11:32 - 000078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 000386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 000105584 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 064643696 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2017-06-24 22:46 - 2017-06-24 22:46 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2017-06-27 20:11 - 2007-09-02 13:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2017-08-20 22:40 - 2017-08-20 22:40 - 000087032 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2009-06-10 18:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-865420550-542592396-761937010-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Usurio\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BF14CADD-0C64-416B-96D3-32EB95D29F7F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD.exe
FirewallRules: [{9FFA503A-29F0-4D9E-86ED-EF3B23E1D5E4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\CLMSServerPDVD15.exe
FirewallRules: [{277FD67B-93F7-4B94-BF3D-129E142B8EA9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe
FirewallRules: [{6F9B8C16-C61C-4D2E-A403-C85B8726AFC7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVDMovie.exe
FirewallRules: [{AB0810E7-11BF-4F2E-AF3E-7394D3ADD787}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{AEC3CA37-D3EB-4CF2-A153-7A869D4016CD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F57E2CCD-3D9B-40CB-B7DA-982D6571E571}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{46884A3F-0C58-481B-9FCF-5F80C021E209}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

15-09-2017 21:14:51 Punto de control programado
16-09-2017 02:18:53 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/16/2017 03:07:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x8b4
Hora de inicio de la aplicación con errores: 0x01d32eb1ff82805a
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 40ae10a0-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:06:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x11a0
Hora de inicio de la aplicación con errores: 0x01d32eb1ed99e60e
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 2eb72e13-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:06:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0xfc4
Hora de inicio de la aplicación con errores: 0x01d32eb1dbb14bc2
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 1cd0f527-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:05:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x12fc
Hora de inicio de la aplicación con errores: 0x01d32eb1c9c65016
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 0ace2bb8-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:05:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x12ac
Hora de inicio de la aplicación con errores: 0x01d32eb1b7d8f30a
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: fa16418f-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:04:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x2a8
Hora de inicio de la aplicación con errores: 0x01d32eb1a5ecedb4
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: e6f98c17-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:04:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0xf2c
Hora de inicio de la aplicación con errores: 0x01d32eb19404f8d8
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: d5df954c-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:03:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x60c
Hora de inicio de la aplicación con errores: 0x01d32eb18215cc2e
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: c447ffca-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:03:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x4ec
Hora de inicio de la aplicación con errores: 0x01d32eb170289b5c
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: b1a5ad21-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:02:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x135c
Hora de inicio de la aplicación con errores: 0x01d32eb15e3cca1f
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 9f9f9cc2-9aa4-11e7-8ddd-38d54777ed25

System errors:
=============
Error: (09/16/2017 03:07:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 29 veces.

Error: (09/16/2017 03:06:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 28 veces.

Error: (09/16/2017 03:06:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 27 veces.

Error: (09/16/2017 03:05:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 26 veces.

Error: (09/16/2017 03:05:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 25 veces.

Error: (09/16/2017 03:04:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 24 veces.

Error: (09/16/2017 03:04:02 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 23 veces.

Error: (09/16/2017 03:03:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 22 veces.

Error: (09/16/2017 03:03:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 21 veces.

Error: (09/16/2017 03:02:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 20 veces.

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 250 Processor
Percentage of memory in use: 39%
Total physical RAM: 3838.12 MB
Available physical RAM: 2320.97 MB
Total Virtual: 7674.42 MB
Available Virtual: 5588.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:116.44 GB) (Free:81.36 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:116.45 GB) (Free:31.98 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 94AC94AC)
Partition 1: (Active) - (Size=116.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=116.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 16/9/17
Hora del análisis: 2:36
Archivo de registro: 08fa8aca-9aa1-11e7-a01c-38d54777ed25.json
Administrador: Sí

-Información del software-
Versión: 3.2.2.2029
Versión de los componentes: 1.0.188
Versión del paquete de actualización: 1.0.2816
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: Usurio-PC\Usurio

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Resultado: Completado
Objetos analizados: 300982
Amenazas detectadas: 4
Amenazas en cuarentena: 4
Tiempo transcurrido: 8 min, 21 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 2
Hijack.SecurityRun, HKLM\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SAFER\CODEIDENTIFIERS\0\PATHS\{e369c37c-561a-461a-8674-d7ad40f88fb5}, En cuarentena, [13498], [233257],1.0.2816
Hijack.SecurityRun, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\WINDOWS\SAFER\CODEIDENTIFIERS\0\PATHS\{e369c37c-561a-461a-8674-d7ad40f88fb5}, En cuarentena, [13498], [233257],1.0.2816

Valor del registro: 2
Hijack.SecurityRun, HKLM\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SAFER\CODEIDENTIFIERS\0\PATHS\{e369c37c-561a-461a-8674-d7ad40f88fb5}|ITEMDATA, En cuarentena, [13498], [233257],1.0.2816
Hijack.SecurityRun, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\WINDOWS\SAFER\CODEIDENTIFIERS\0\PATHS\{e369c37c-561a-461a-8674-d7ad40f88fb5}|ITEMDATA, En cuarentena, [13498], [233257],1.0.2816

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

(end)

**pachuly autalan** · 16/09/17, 02:24:24

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2017
Ran by Usurio (administrator) on USURIO-PC (16-09-2017 03:05:04)
Running from D:\Usuario\Desktop
Loaded Profiles: Usurio (Available Profiles: Usurio)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [919032 2017-09-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA)
HKLM-x32\...\Run: [ArgenteRC] => C:\Program Files (x86)\Argente - Registry Cleaner\ArgenteRC.exe [6888448 2015-02-16] (Raúl Argente)
HKLM Group Policy restriction on software: C:\Windows\system32\svchost.exe -k netsvcs <==== ATTENTION
HKU\S-1-5-21-865420550-542592396-761937010-1004\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-865420550-542592396-761937010-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-865420550-542592396-761937010-1004\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44016 2017-08-20] (Glarysoft Ltd)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-03-23] (Microsoft Corporation)
BootExecute: autocheck autochk *
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1787DF6C-9FCB-4A37-BC2F-EA0AE4B4DDF1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)

FireFox:
========
FF DefaultProfile: cgq6r6tr.default-1500306488626
FF ProfilePath: C:\Users\Usurio\AppData\Roaming\Mozilla\Firefox\Profiles\cgq6r6tr.default-1500306488626 [2017-09-16]
FF Extension: (InstaDown: Instagram Image & Video Downloader) - C:\Users\Usurio\AppData\Roaming\Mozilla\Firefox\Profiles\cgq6r6tr.default-1500306488626\Extensions\@instadown.xpi [2017-08-19]
FF Extension: (Adblock Plus) - C:\Users\Usurio\AppData\Roaming\Mozilla\Firefox\Profiles\cgq6r6tr.default-1500306488626\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-08-17]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-15] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-15] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://facebook.com/","hxxp://start.iminent.com/?appId=67A469E5-F87B-4BC5-9CFB-4A0FAFB4BF94"
CHR Profile: C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default [2017-09-16]
CHR Extension: (Presentaciones de Google) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-06-24]
CHR Extension: (Google Docs) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-06-24]
CHR Extension: (Google Drive) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-24]
CHR Extension: (Adguard AdBlocker) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-08-17]
CHR Extension: (YouTube) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-24]
CHR Extension: (Adblock Plus) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-08-24]
CHR Extension: (Tampermonkey) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-08-24]
CHR Extension: (Top Bong Da) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkdglefbjhbpnopoihilggbofahjjphn [2017-08-24]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-06-24]
CHR Extension: (Supernova) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegpgpjbmbggplclldecdbpcmopmlbll [2017-08-24]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-17]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Adblock Pro) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-08-24]
CHR Extension: (Gmail) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-24]
CHR Extension: (Chrome Media Router) - C:\Users\Usurio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-09-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-09-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-09-14] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1525240 2017-09-14] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [402768 2017-08-30] (Avira Operations GmbH & Co. KG)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-10-22] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-25] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [194912 2017-09-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [151128 2017-09-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-06-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-06-25] (Avira Operations GmbH & Co. KG)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-08-24] ()
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2017-08-31] (Glarysoft Ltd)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [192960 2017-09-16] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [101824 2017-09-16] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [45472 2017-09-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253888 2017-09-16] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-09-16] (Malwarebytes)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 {687703DE-DC6D-4649-892B-B8497854A6AB}; C:\Program Files (x86)\CyberLink\PowerDVD15\Common\NavFilter\000.fcl [29896 2015-08-03] (CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-16 03:04 - 2017-09-16 03:05 - 000000000 ____D C:\FRST
2017-09-16 02:34 - 2017-09-16 02:51 - 000253888 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-09-16 02:34 - 2017-09-16 02:51 - 000101824 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-09-16 02:34 - 2017-09-16 02:51 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-09-16 02:34 - 2017-09-16 02:51 - 000045472 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-09-16 02:34 - 2017-09-16 02:34 - 000192960 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-09-16 02:34 - 2017-09-16 02:34 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-09-16 02:34 - 2017-09-16 02:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-09-16 02:34 - 2017-08-24 11:27 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-09-16 02:33 - 2017-09-16 02:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-09-16 02:33 - 2017-09-16 02:33 - 000000000 ____D C:\Program Files\Malwarebytes
2017-09-16 02:08 - 2017-09-16 02:10 - 000000000 ____D C:\AdwCleaner
2017-09-13 14:06 - 2017-09-13 14:06 - 000000000 __SHD C:\found.001
2017-09-12 16:17 - 2017-09-12 16:17 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger
2017-09-12 16:17 - 2017-09-12 16:17 - 000001120 _____ C:\Users\Public\Desktop\Avira.lnk
2017-09-06 00:22 - 2017-09-06 00:22 - 000000000 ____D C:\Windows\system32\appmgmt
2017-09-06 00:20 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-09-06 00:20 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-09-06 00:20 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-09-06 00:20 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-09-06 00:20 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-09-06 00:20 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-09-06 00:20 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-09-06 00:20 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-09-06 00:20 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-09-06 00:20 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-09-06 00:19 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-09-06 00:19 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-09-06 00:19 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-09-06 00:19 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-09-06 00:19 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-09-06 00:19 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-09-06 00:19 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-09-06 00:19 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-09-06 00:19 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-09-06 00:19 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-09-06 00:19 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-09-06 00:19 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-09-06 00:19 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-09-06 00:19 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-09-06 00:19 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-09-06 00:19 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-09-06 00:19 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-09-06 00:19 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-09-06 00:19 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-09-06 00:19 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-09-06 00:19 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-09-06 00:19 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-09-06 00:19 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-09-06 00:19 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-09-06 00:19 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-09-06 00:19 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-09-06 00:19 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-09-06 00:19 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-09-06 00:19 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-09-06 00:19 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-09-06 00:19 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-09-06 00:19 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-09-06 00:19 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-09-06 00:19 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-09-06 00:19 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-09-06 00:19 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-09-06 00:19 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-09-06 00:19 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-09-06 00:19 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-09-06 00:19 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-09-06 00:19 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-09-06 00:19 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-09-06 00:19 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-09-06 00:19 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-09-06 00:19 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-09-06 00:19 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-09-06 00:19 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-09-06 00:19 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-09-06 00:19 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-09-06 00:19 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-09-06 00:19 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-09-06 00:19 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-09-06 00:19 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-09-06 00:19 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-09-06 00:19 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-09-06 00:19 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-09-06 00:19 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-09-06 00:19 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-09-06 00:19 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-09-06 00:19 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-09-06 00:19 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-09-06 00:19 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-09-06 00:19 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-09-06 00:19 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-09-06 00:19 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-09-06 00:19 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-09-06 00:19 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-09-06 00:19 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-09-06 00:19 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-09-06 00:19 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-09-06 00:19 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-09-06 00:19 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-09-06 00:18 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-09-06 00:18 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-09-06 00:18 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-09-06 00:18 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-09-06 00:18 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-09-06 00:18 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-09-06 00:18 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-09-06 00:18 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-09-06 00:18 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-09-06 00:18 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-09-06 00:18 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-09-06 00:18 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-09-06 00:18 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-09-06 00:18 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-09-06 00:18 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-09-06 00:18 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-09-06 00:18 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-09-06 00:18 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-09-06 00:18 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-09-06 00:18 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-09-06 00:18 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-09-06 00:18 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-09-06 00:18 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-09-06 00:18 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-09-06 00:18 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-09-06 00:18 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-09-06 00:18 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-09-06 00:18 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-09-06 00:18 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-09-06 00:18 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-09-06 00:18 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-09-06 00:18 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-09-06 00:18 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-09-06 00:18 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-09-06 00:18 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-09-06 00:18 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-09-06 00:18 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-09-06 00:18 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-09-06 00:15 - 2017-09-06 00:20 - 000000000 ____D C:\Windows\SysWOW64\directx
2017-09-06 00:14 - 2017-09-06 00:14 - 000001146 _____ C:\Users\Public\Desktop\Mario Party 9.lnk
2017-09-06 00:14 - 2017-09-06 00:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mario Party 9
2017-09-06 00:12 - 2017-09-06 00:12 - 000000000 ____D C:\Program Files (x86)\Mario Party 9
2017-09-05 23:52 - 2017-09-06 00:04 - 000000000 ____D C:\mario party 9
2017-09-04 18:33 - 2017-09-04 18:33 - 000000000 ___SD C:\Windows\system32\CompatTel
2017-09-04 18:33 - 2017-09-04 18:33 - 000000000 ____D C:\Windows\system32\appraiser
2017-09-04 16:08 - 2015-07-30 10:13 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-09-04 16:08 - 2015-07-30 10:13 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-09-04 15:21 - 2017-09-04 15:21 - 002990912 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-09-04 13:45 - 2012-07-26 00:08 - 000744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2017-09-04 13:45 - 2012-07-26 00:08 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2017-09-04 13:45 - 2012-07-26 00:08 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2017-09-04 13:45 - 2012-07-26 00:08 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2017-09-04 13:45 - 2012-07-26 00:08 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2017-09-04 13:45 - 2012-07-25 23:26 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2017-09-04 13:45 - 2012-07-25 23:26 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2017-09-04 13:45 - 2012-06-02 11:57 - 000000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2017-09-04 13:08 - 2012-03-01 03:46 - 000023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2017-09-04 13:08 - 2012-03-01 03:28 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2017-09-04 13:08 - 2012-03-01 02:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2017-09-04 12:50 - 2014-06-30 19:24 - 000008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2017-09-04 12:50 - 2014-06-30 19:14 - 000008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2017-09-04 12:50 - 2014-06-06 03:16 - 000035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2017-09-04 12:50 - 2014-06-06 03:12 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2017-09-04 12:50 - 2014-03-09 18:48 - 001389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2017-09-04 12:50 - 2014-03-09 18:48 - 000171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2017-09-04 12:50 - 2014-03-09 18:47 - 000619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2017-09-04 12:50 - 2014-03-09 18:47 - 000099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2017-09-04 12:46 - 2017-07-21 11:26 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-09-04 12:46 - 2017-07-21 11:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-09-04 12:46 - 2017-07-08 12:00 - 003224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-09-04 12:46 - 2017-07-07 12:33 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-09-04 12:46 - 2017-07-01 10:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-09-04 12:46 - 2017-07-01 10:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-09-04 12:46 - 2017-07-01 10:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-09-04 12:46 - 2017-07-01 10:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-09-04 12:46 - 2017-06-09 12:33 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-09-04 12:46 - 2017-05-30 01:56 - 001895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-09-04 12:46 - 2017-05-10 12:29 - 014183936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-09-04 12:46 - 2017-05-10 12:29 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-09-04 12:46 - 2017-05-10 12:29 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-09-04 12:46 - 2017-05-10 12:29 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-09-04 12:46 - 2017-05-10 12:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-09-04 12:46 - 2017-05-10 12:14 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-09-04 12:46 - 2017-05-10 12:13 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-09-04 12:46 - 2017-05-10 12:13 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-09-04 12:46 - 2017-05-10 12:13 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-09-04 12:46 - 2017-05-10 12:13 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-09-04 12:46 - 2017-05-10 12:13 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-09-04 12:46 - 2017-05-10 12:13 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-09-04 12:46 - 2017-05-10 12:12 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-09-04 12:46 - 2017-05-10 12:12 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-09-04 12:46 - 2017-05-10 12:00 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-09-04 12:46 - 2017-05-10 12:00 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-09-04 12:46 - 2017-05-10 12:00 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-09-04 12:46 - 2017-04-27 19:50 - 003550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-09-04 12:46 - 2017-04-17 12:37 - 002065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-09-04 12:46 - 2017-04-12 10:05 - 004296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:36 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-09-04 12:46 - 2017-01-18 12:35 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll

**pachuly autalan** · 16/09/17, 02:26:51

2017-09-04 12:46 - 2017-01-11 15:01 - 001887744 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-09-04 12:46 - 2016-11-09 13:33 - 003244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2017-09-04 12:46 - 2016-11-09 13:17 - 002365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2017-09-04 12:46 - 2016-10-07 12:32 - 003649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2017-09-04 12:46 - 2016-09-15 11:56 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2017-09-04 12:46 - 2016-08-22 13:19 - 001386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-09-04 12:46 - 2016-08-12 14:02 - 014632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-09-04 12:46 - 2016-08-12 13:47 - 011410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-09-04 12:46 - 2016-08-06 12:31 - 002023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-09-04 12:46 - 2016-06-14 14:16 - 004121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-09-04 12:46 - 2016-06-14 14:16 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2017-09-04 12:46 - 2016-06-14 14:16 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2017-09-04 12:46 - 2016-06-14 12:21 - 003209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-09-04 12:46 - 2016-06-14 12:21 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2017-09-04 12:46 - 2016-06-14 12:21 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2017-09-04 12:45 - 2017-07-29 11:56 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-09-04 12:45 - 2017-07-21 11:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
2017-09-04 12:45 - 2017-07-21 11:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-09-04 12:45 - 2017-07-14 12:29 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-09-04 12:45 - 2017-07-14 12:12 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-09-04 12:45 - 2017-07-14 12:12 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-09-04 12:45 - 2017-07-14 12:11 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-09-04 12:45 - 2017-07-14 12:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-09-04 12:45 - 2017-07-14 12:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-09-04 12:45 - 2017-07-14 12:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-09-04 12:45 - 2017-07-14 12:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-09-04 12:45 - 2017-07-14 11:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-09-04 12:45 - 2017-07-14 11:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-09-04 12:45 - 2017-07-14 11:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-09-04 12:45 - 2017-07-14 11:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-09-04 12:45 - 2017-07-14 11:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2017-09-04 12:45 - 2017-07-08 12:34 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-09-04 12:45 - 2017-07-07 12:37 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-09-04 12:45 - 2017-07-07 12:33 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-09-04 12:45 - 2017-07-07 12:33 - 000363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-09-04 12:45 - 2017-07-07 12:33 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-09-04 12:45 - 2017-07-07 12:33 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-09-04 12:45 - 2017-07-07 12:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

**pachuly autalan** · 16/09/17, 02:27:21

2017-09-04 12:45 - 2017-07-07 12:15 - 004001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-09-04 12:45 - 2017-07-07 12:15 - 003945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-09-04 12:45 - 2017-07-07 12:13 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-09-04 12:45 - 2017-07-07 12:11 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 12:02 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-09-04 12:45 - 2017-07-07 12:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-09-04 12:45 - 2017-07-07 12:01 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-09-04 12:45 - 2017-07-07 12:01 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-09-04 12:45 - 2017-07-07 11:58 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-09-04 12:45 - 2017-07-07 11:57 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-09-04 12:45 - 2017-07-07 11:54 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-09-04 12:45 - 2017-07-07 11:54 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-09-04 12:45 - 2017-07-07 11:54 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-09-04 12:45 - 2017-07-07 11:53 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-09-04 12:45 - 2017-07-07 11:53 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-09-04 12:45 - 2017-07-07 11:51 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-09-04 12:45 - 2017-07-07 11:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-09-04 12:45 - 2017-07-07 11:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-09-04 12:45 - 2017-07-07 11:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-09-04 12:45 - 2017-07-07 11:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-09-04 12:45 - 2017-07-07 11:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-09-04 12:45 - 2017-07-07 11:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 11:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 11:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-04 12:45 - 2017-07-07 11:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-09-04 12:45 - 2017-07-01 10:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-09-04 12:45 - 2017-06-15 17:23 - 000753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-09-04 12:45 - 2017-06-12 19:49 - 001363456 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2017-09-04 12:45 - 2017-06-12 19:49 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2017-09-04 12:45 - 2017-06-12 19:49 - 000475136 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2017-09-04 12:45 - 2017-06-12 19:49 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2017-09-04 12:45 - 2017-06-12 19:29 - 001227264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2017-09-04 12:45 - 2017-06-12 19:29 - 000444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2017-09-04 12:45 - 2017-06-12 19:29 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2017-09-04 12:45 - 2017-06-12 19:28 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll
2017-09-04 12:45 - 2017-06-12 19:14 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2017-09-04 12:45 - 2017-06-12 19:14 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2017-09-04 12:45 - 2017-06-12 19:14 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2017-09-04 12:45 - 2017-06-12 19:06 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2017-09-04 12:45 - 2017-06-12 19:06 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe
2017-09-04 12:45 - 2017-06-12 19:06 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2017-09-04 12:45 - 2017-06-10 12:59 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-09-04 12:45 - 2017-06-10 12:39 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-09-04 12:45 - 2017-06-06 12:30 - 001867264 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-09-04 12:45 - 2017-06-06 12:12 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-09-04 12:45 - 2017-06-02 05:10 - 000733696 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-09-04 12:45 - 2017-05-30 01:56 - 000377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-09-04 12:45 - 2017-05-30 01:56 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-09-04 12:45 - 2017-05-21 01:24 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-09-04 12:45 - 2017-05-21 01:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-09-04 12:45 - 2017-05-16 12:35 - 000986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-09-04 12:45 - 2017-05-16 12:35 - 000265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-09-04 12:45 - 2017-05-16 12:30 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-09-04 12:45 - 2017-05-12 15:26 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-09-04 12:45 - 2017-05-12 15:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-09-04 12:45 - 2017-05-12 15:07 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-09-04 12:45 - 2017-05-12 15:03 - 000629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-09-04 12:45 - 2017-05-12 15:03 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-09-04 12:45 - 2017-05-12 15:03 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-09-04 12:45 - 2017-05-12 15:03 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-09-04 12:45 - 2017-05-12 15:03 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-09-04 12:45 - 2017-05-12 14:43 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-09-04 12:45 - 2017-05-10 12:33 - 000091368 _____ (Microsoft Corporation) C:\Windows\system32\MigAutoPlay.exe
2017-09-04 12:45 - 2017-05-10 12:16 - 000091368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MigAutoPlay.exe
2017-09-04 12:45 - 2017-05-10 12:00 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-09-04 12:45 - 2017-05-09 12:30 - 000757248 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-09-04 12:45 - 2017-05-09 12:29 - 000970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-09-04 12:45 - 2017-05-09 12:15 - 000071680 _____ C:\Windows\system32\PrintBrmUi.exe
2017-09-04 12:45 - 2017-05-09 12:11 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2017-09-04 12:45 - 2017-05-07 12:33 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2017-09-04 12:45 - 2017-05-07 12:29 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2017-09-04 12:45 - 2017-04-21 12:34 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-09-04 12:45 - 2017-04-21 12:15 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-09-04 12:45 - 2017-04-17 12:37 - 000876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-09-04 12:45 - 2017-04-17 12:37 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-09-04 12:45 - 2017-04-17 12:37 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-09-04 12:45 - 2017-04-17 12:37 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-09-04 12:45 - 2017-04-17 12:12 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-09-04 12:45 - 2017-04-17 12:12 - 000581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-09-04 12:45 - 2017-04-17 12:12 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-09-04 12:45 - 2017-04-17 11:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-09-04 12:45 - 2017-04-12 12:32 - 001483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-09-04 12:45 - 2017-04-12 12:32 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-09-04 12:45 - 2017-04-12 12:32 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-09-04 12:45 - 2017-04-12 12:32 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-09-04 12:45 - 2017-04-12 12:26 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-09-04 12:45 - 2017-04-12 12:25 - 001176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-09-04 12:45 - 2017-04-12 12:25 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-09-04 12:45 - 2017-04-12 12:25 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-09-04 12:45 - 2017-04-05 11:55 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-09-04 12:45 - 2017-04-05 11:55 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-09-04 12:45 - 2017-04-05 11:55 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-09-04 12:45 - 2017-04-04 11:53 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-09-04 12:45 - 2017-03-30 12:03 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2017-09-04 12:45 - 2017-03-30 11:58 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
2017-09-04 12:45 - 2017-03-10 13:32 - 001389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-09-04 12:45 - 2017-03-10 13:32 - 000300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-09-04 12:45 - 2017-03-10 13:20 - 001508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-09-04 12:45 - 2017-03-10 13:20 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-09-04 12:45 - 2017-03-10 12:57 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-09-04 12:45 - 2017-03-10 12:55 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-09-04 12:45 - 2017-03-10 12:55 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-09-04 12:45 - 2017-03-07 13:30 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-09-04 12:45 - 2017-03-07 13:17 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2017-09-04 12:45 - 2017-03-03 22:27 - 001574912 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-09-04 12:45 - 2017-03-03 22:27 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2017-09-04 12:45 - 2017-03-03 22:14 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-09-04 12:45 - 2017-03-03 22:14 - 000077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2017-09-04 12:45 - 2017-02-09 13:32 - 000769536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-09-04 12:45 - 2017-02-09 13:32 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2017-09-04 12:45 - 2017-02-09 13:32 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2017-09-04 12:45 - 2017-02-09 13:31 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2017-09-04 12:45 - 2017-02-09 13:31 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-09-04 12:45 - 2017-02-09 13:14 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2017-09-04 12:45 - 2017-02-09 13:14 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-09-04 12:45 - 2017-02-09 13:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2017-09-04 12:45 - 2017-02-09 12:51 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2017-09-04 12:45 - 2017-01-13 15:00 - 000976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-09-04 12:45 - 2017-01-13 15:00 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-09-04 12:45 - 2017-01-13 14:45 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-09-04 12:45 - 2017-01-13 14:45 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2017-09-04 12:45 - 2017-01-11 15:01 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2017-09-04 12:45 - 2017-01-11 14:43 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-09-04 12:45 - 2017-01-11 14:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2017-09-04 12:45 - 2016-11-21 15:12 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2017-09-04 12:45 - 2016-11-20 13:19 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2017-09-04 12:45 - 2016-11-20 11:07 - 000467392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-09-04 12:45 - 2016-11-10 13:32 - 001009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-09-04 12:45 - 2016-11-10 13:19 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-09-04 12:45 - 2016-11-09 13:41 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2017-09-04 12:45 - 2016-11-09 13:33 - 001941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-09-04 12:45 - 2016-11-09 13:33 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2017-09-04 12:45 - 2016-11-09 13:33 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2017-09-04 12:45 - 2016-11-09 13:33 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2017-09-04 12:45 - 2016-11-09 13:17 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2017-09-04 12:45 - 2016-11-09 13:17 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2017-09-04 12:45 - 2016-11-09 13:17 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2017-09-04 12:45 - 2016-11-09 13:02 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2017-09-04 12:45 - 2016-11-09 12:55 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2017-09-04 12:45 - 2016-10-11 12:32 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2017-09-04 12:45 - 2016-10-11 12:31 - 001148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2017-09-04 12:45 - 2016-10-11 12:31 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-09-04 12:45 - 2016-10-11 12:31 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2017-09-04 12:45 - 2016-10-11 12:31 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-09-04 12:45 - 2016-10-11 12:31 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2017-09-04 12:45 - 2016-10-11 12:31 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 001027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2017-09-04 12:45 - 2016-10-11 12:18 - 000829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-09-04 12:45 - 2016-10-11 12:18 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2017-09-04 12:45 - 2016-10-11 12:18 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-09-04 12:45 - 2016-10-11 12:18 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2017-09-04 12:45 - 2016-10-11 12:18 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2017-09-04 12:45 - 2016-10-11 11:55 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2017-09-04 12:45 - 2016-10-11 10:18 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2017-09-04 12:45 - 2016-10-11 10:17 - 000419648 _____ C:\Windows\system32\locale.nls
2017-09-04 12:45 - 2016-10-08 10:06 - 000633296 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-09-04 12:45 - 2016-10-07 12:12 - 002291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2017-09-04 12:45 - 2016-10-05 11:54 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2017-09-04 12:45 - 2016-09-12 18:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2017-09-04 12:45 - 2016-09-12 17:49 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2017-09-04 12:45 - 2016-09-08 17:34 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2017-09-04 12:45 - 2016-09-08 17:34 - 000208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2017-09-04 12:45 - 2016-09-08 17:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2017-09-04 12:45 - 2016-09-08 17:34 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2017-09-04 12:45 - 2016-09-08 11:55 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2017-09-04 12:45 - 2016-09-08 11:55 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-09-04 12:45 - 2016-08-12 14:02 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-09-04 12:45 - 2016-08-12 14:02 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-09-04 12:45 - 2016-08-12 14:02 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-09-04 12:45 - 2016-08-12 14:02 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-09-04 12:45 - 2016-08-12 13:47 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-09-04 12:45 - 2016-08-12 13:31 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-09-04 12:45 - 2016-08-12 13:31 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-09-04 12:45 - 2016-08-12 13:31 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-09-04 12:45 - 2016-08-12 13:26 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2017-09-04 12:45 - 2016-08-06 12:31 - 000347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2017-09-04 12:45 - 2016-08-06 12:31 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-09-04 12:45 - 2016-08-06 12:31 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2017-09-04 12:45 - 2016-08-06 12:31 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2017-09-04 12:45 - 2016-08-06 12:31 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2017-09-04 12:45 - 2016-08-06 12:15 - 001178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-09-04 12:45 - 2016-08-06 12:15 - 000249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2017-09-04 12:45 - 2016-08-06 12:15 - 000214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-09-04 12:45 - 2016-08-06 12:15 - 000146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2017-09-04 12:45 - 2016-08-06 12:15 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2017-09-04 12:45 - 2016-08-06 12:01 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2017-09-04 12:45 - 2016-08-06 12:01 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2017-09-04 12:45 - 2016-08-06 11:53 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2017-09-04 12:45 - 2016-08-06 11:53 - 000012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2017-09-04 12:45 - 2016-08-06 11:53 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2017-09-04 12:45 - 2016-06-14 14:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-09-04 12:45 - 2016-06-14 14:11 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2017-09-04 12:45 - 2016-06-14 12:21 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2017-09-04 12:45 - 2016-06-14 12:21 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2017-09-04 12:45 - 2016-06-14 12:15 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2017-09-04 12:45 - 2016-06-14 12:15 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-09-04 12:45 - 2016-06-14 12:15 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-09-04 12:45 - 2016-06-14 12:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2017-09-04 12:45 - 2016-06-14 12:05 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2017-09-04 12:45 - 2016-06-14 12:00 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2017-09-04 12:45 - 2016-06-14 12:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2017-09-04 12:45 - 2016-05-12 10:05 - 000297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-09-04 12:45 - 2016-05-12 10:04 - 000249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2017-09-04 12:45 - 2016-03-23 19:43 - 000457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-09-04 12:45 - 2016-03-23 19:40 - 000546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-09-04 12:44 - 2015-07-22 21:02 - 000879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2017-09-04 12:44 - 2015-07-22 14:53 - 000635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2017-09-04 12:43 - 2016-03-16 15:50 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2017-09-04 12:43 - 2016-03-16 15:28 - 000176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2017-09-04 12:43 - 2016-03-16 15:28 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2017-09-04 12:43 - 2015-05-25 15:19 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2017-09-04 12:43 - 2015-05-25 15:18 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2017-09-04 12:43 - 2015-05-25 15:18 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2017-09-04 12:43 - 2015-05-25 15:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2017-09-04 12:43 - 2015-05-25 15:18 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2017-09-04 12:43 - 2015-05-25 15:18 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2017-09-04 12:43 - 2015-05-25 15:01 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2017-09-04 12:43 - 2015-05-25 15:00 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2017-09-04 12:43 - 2015-05-25 15:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2017-09-04 12:43 - 2015-05-25 15:00 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2017-09-04 12:43 - 2015-05-25 15:00 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2017-09-04 12:43 - 2015-05-25 15:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2017-09-04 12:42 - 2016-01-22 03:18 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-09-04 12:42 - 2016-01-22 03:18 - 000723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2017-09-04 12:42 - 2016-01-22 03:04 - 000642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-09-04 12:42 - 2016-01-22 03:04 - 000535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2017-09-04 12:42 - 2015-07-15 15:10 - 001743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2017-09-04 12:42 - 2015-07-15 00:19 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2017-09-04 12:41 - 2014-07-16 23:07 - 001118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-09-04 12:41 - 2014-07-16 23:07 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-09-04 12:41 - 2014-07-16 23:07 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2017-09-04 12:41 - 2014-07-16 23:07 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2017-09-04 12:41 - 2014-07-16 22:40 - 000157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2017-09-04 12:41 - 2014-07-16 22:39 - 001051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-09-04 12:41 - 2014-07-16 22:21 - 000212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2017-09-04 12:41 - 2014-07-16 22:21 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-09-04 12:41 - 2013-12-03 23:27 - 000488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2017-09-04 12:41 - 2013-12-03 23:27 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2017-09-04 12:41 - 2013-12-03 23:27 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2017-09-04 12:41 - 2013-12-03 23:27 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2017-09-04 12:41 - 2013-12-03 23:26 - 000528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2017-09-04 12:41 - 2013-12-03 23:16 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2017-09-04 12:41 - 2013-12-03 23:16 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2017-09-04 12:41 - 2013-12-03 23:16 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2017-09-04 12:41 - 2013-12-03 23:16 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2017-09-04 12:41 - 2013-12-03 23:03 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2017-09-04 12:41 - 2013-12-03 23:03 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2017-09-04 12:41 - 2013-12-03 23:03 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2017-09-04 12:41 - 2013-12-03 23:03 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2017-09-04 12:41 - 2013-12-03 23:02 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2017-09-04 12:41 - 2013-12-03 22:54 - 000594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2017-09-04 12:41 - 2013-12-03 22:54 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2017-09-04 12:41 - 2013-12-03 22:54 - 000510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2017-09-04 12:41 - 2013-12-03 22:54 - 000508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2017-09-04 12:41 - 2012-04-26 02:41 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2017-09-04 12:41 - 2012-04-26 02:34 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2017-09-04 12:40 - 2014-11-11 00:08 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2017-09-04 12:40 - 2014-11-10 23:44 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2017-09-04 12:40 - 2012-12-07 10:20 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2017-09-04 12:40 - 2012-12-07 10:15 - 002746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2017-09-04 12:40 - 2012-12-07 09:26 - 000308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2017-09-04 12:40 - 2012-12-07 09:20 - 002576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2017-09-04 12:40 - 2012-12-07 08:20 - 000045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2017-09-04 12:40 - 2012-12-07 08:20 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2017-09-04 12:40 - 2012-12-07 08:19 - 000015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2017-09-04 12:40 - 2012-12-07 07:46 - 000015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2017-09-04 12:39 - 2015-12-08 18:54 - 001620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 001568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 001325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-09-04 12:39 - 2015-12-08 18:54 - 000739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2017-09-04 12:39 - 2015-12-08 18:54 - 000154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2017-09-04 12:39 - 2015-12-08 18:53 - 000829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2017-09-04 12:39 - 2015-12-08 18:53 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2017-09-04 12:39 - 2015-12-08 18:53 - 000153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2017-09-04 12:39 - 2015-12-08 18:53 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2017-09-04 12:39 - 2015-12-08 18:53 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2017-09-04 12:39 - 2015-12-08 18:53 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 001955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 001307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 001232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 001026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 000978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 000292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2017-09-04 12:39 - 2015-12-08 16:07 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2017-09-04 12:39 - 2015-12-08 16:07 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2017-09-04 12:39 - 2015-12-08 16:06 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2017-09-04 12:39 - 2015-12-08 15:54 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2017-09-04 12:39 - 2015-12-08 15:12 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2017-09-04 12:39 - 2015-12-08 15:11 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2017-09-04 12:39 - 2014-03-04 06:44 - 000722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2017-09-04 12:39 - 2014-03-04 06:44 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2017-09-04 12:39 - 2014-03-04 06:43 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2017-09-04 12:39 - 2014-03-04 06:43 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2017-09-04 12:39 - 2014-03-04 06:43 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2017-09-04 12:39 - 2014-03-04 06:43 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2017-09-04 12:39 - 2014-03-04 06:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2017-09-04 12:39 - 2014-03-04 06:17 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2017-09-04 12:37 - 2014-10-13 23:13 - 000683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-09-04 12:37 - 2014-08-01 08:53 - 001031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-09-04 12:37 - 2014-08-01 08:35 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-09-04 12:36 - 2015-07-09 14:57 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2017-09-04 12:36 - 2015-07-09 14:57 - 000193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2017-09-04 12:36 - 2015-07-09 14:42 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2017-09-04 12:35 - 2016-08-29 12:04 - 003229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-09-04 12:35 - 2016-08-29 11:55 - 002972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-09-04 12:35 - 2015-08-27 15:18 - 002004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-09-04 12:35 - 2015-08-27 15:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2017-09-04 12:35 - 2015-08-27 14:58 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-09-04 12:35 - 2015-08-27 14:51 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2017-09-04 12:35 - 2013-10-03 23:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-09-04 12:35 - 2013-10-03 23:25 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2017-09-04 12:35 - 2013-10-03 22:58 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

**pachuly autalan** · 16/09/17, 02:28:17

2017-09-04 12:35 - 2013-10-03 22:56 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2017-09-04 12:35 - 2013-05-13 02:50 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2017-09-04 12:35 - 2013-05-13 00:43 - 001192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-09-04 12:35 - 2013-05-13 00:08 - 000903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-09-04 12:35 - 2013-05-13 00:08 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2017-09-04 12:34 - 2016-05-12 14:15 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2017-09-04 12:34 - 2016-05-12 14:14 - 000373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2017-09-04 12:34 - 2016-05-12 14:14 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2017-09-04 12:34 - 2016-05-12 12:18 - 000591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2017-09-04 12:34 - 2016-05-12 12:18 - 000274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2017-09-04 12:34 - 2016-05-12 12:18 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-09-04 12:34 - 2016-05-12 12:18 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2017-09-04 12:34 - 2016-05-12 12:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2017-09-04 12:34 - 2016-05-12 12:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2017-09-04 12:34 - 2016-05-12 11:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2017-09-04 12:34 - 2016-05-12 11:57 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2017-09-04 12:34 - 2016-02-05 15:56 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2017-09-04 12:34 - 2016-02-05 15:54 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2017-09-04 12:34 - 2016-02-05 14:33 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2017-09-04 12:34 - 2015-07-10 14:51 - 003722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-09-04 12:34 - 2015-07-10 14:51 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2017-09-04 12:34 - 2015-07-10 14:51 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-09-04 12:34 - 2015-07-10 14:34 - 003221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-09-04 12:34 - 2015-07-10 14:34 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-09-04 12:34 - 2015-07-10 14:33 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2017-09-04 12:34 - 2015-06-03 17:21 - 000451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 001943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 001131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 000156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 000156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 000081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2017-09-04 12:34 - 2014-06-18 19:23 - 000073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2017-09-04 12:34 - 2014-06-17 23:18 - 000692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2017-09-04 12:34 - 2014-06-17 22:51 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2017-09-04 12:34 - 2013-07-25 23:24 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-09-04 12:34 - 2013-07-25 22:55 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2017-09-04 12:34 - 2013-06-25 19:55 - 000785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-09-04 12:34 - 2012-10-09 15:17 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-09-04 12:34 - 2012-10-09 15:17 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2017-09-04 12:34 - 2012-10-09 14:40 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2017-09-04 12:34 - 2012-10-09 14:40 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2017-09-04 12:34 - 2012-10-03 14:44 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2017-09-04 12:34 - 2012-10-03 14:44 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2017-09-04 12:34 - 2012-10-03 14:44 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2017-09-04 12:34 - 2012-10-03 14:44 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2017-09-04 12:34 - 2012-10-03 14:42 - 000569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-09-04 12:34 - 2012-10-03 13:42 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2017-09-04 12:34 - 2012-10-03 13:42 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2017-09-04 12:34 - 2012-01-04 07:44 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2017-09-04 12:34 - 2012-01-04 05:58 - 000442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2017-09-04 12:33 - 2016-05-11 14:02 - 000483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-09-04 12:33 - 2016-05-11 12:19 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-09-04 12:33 - 2016-03-09 16:00 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-09-04 12:33 - 2016-03-09 15:40 - 000316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-09-04 12:33 - 2016-02-04 22:19 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-09-04 12:33 - 2016-02-04 15:41 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-09-04 12:33 - 2016-02-03 15:07 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2017-09-04 12:33 - 2016-01-20 21:51 - 000073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2017-09-04 12:33 - 2015-11-05 16:05 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2017-09-04 12:33 - 2015-11-05 16:02 - 000014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2017-09-04 12:33 - 2015-11-05 06:53 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2017-09-04 12:33 - 2015-11-03 16:04 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2017-09-04 12:33 - 2015-11-03 15:55 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2017-09-04 12:33 - 2015-10-13 01:57 - 000950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-09-04 12:33 - 2015-08-05 14:56 - 001110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2017-09-04 12:33 - 2015-07-09 14:58 - 001632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-09-04 12:33 - 2015-07-09 14:58 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2017-09-04 12:33 - 2015-07-09 14:42 - 001372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-09-04 12:33 - 2015-07-09 14:42 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2017-09-04 12:33 - 2015-06-11 14:56 - 001112576 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-09-04 12:33 - 2015-06-11 14:16 - 000162816 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-09-04 12:33 - 2015-06-11 14:15 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-09-04 12:33 - 2015-06-01 21:07 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2017-09-04 12:33 - 2015-06-01 20:47 - 000210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2017-09-04 12:33 - 2015-04-11 00:19 - 000069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2017-09-04 12:33 - 2015-02-03 00:31 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-09-04 12:33 - 2015-02-03 00:12 - 000171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2017-09-04 12:33 - 2015-01-29 00:19 - 002543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2017-09-04 12:33 - 2015-01-29 00:02 - 002311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2017-09-04 12:33 - 2014-12-19 00:06 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-09-04 12:33 - 2014-09-04 02:23 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-09-04 12:33 - 2014-09-04 02:04 - 000372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2017-09-04 12:33 - 2013-10-18 23:18 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2017-09-04 12:33 - 2013-10-18 22:36 - 000159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2017-09-04 12:33 - 2013-08-04 23:25 - 000155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2017-09-04 12:33 - 2013-07-03 01:05 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2017-09-04 12:33 - 2013-07-03 01:05 - 000032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2017-09-04 12:33 - 2013-05-10 02:49 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2017-09-04 12:33 - 2013-05-10 00:20 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2017-09-04 12:33 - 2013-01-24 03:01 - 000223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-09-04 12:33 - 2012-08-21 18:01 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2017-09-04 12:33 - 2012-07-04 19:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2017-09-04 12:33 - 2012-07-04 19:13 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2017-09-04 12:33 - 2012-07-04 19:13 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2017-09-04 12:33 - 2012-07-04 18:16 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2017-09-04 12:33 - 2012-07-04 18:14 - 000041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2017-09-04 12:33 - 2011-08-27 02:37 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-09-04 12:33 - 2011-08-27 01:26 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-09-04 12:33 - 2011-06-16 02:49 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2017-09-04 12:33 - 2011-06-16 01:33 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2017-09-04 12:32 - 2017-05-03 12:34 - 000094952 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-09-04 12:32 - 2017-05-03 12:29 - 001206272 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000620544 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-09-04 12:32 - 2017-05-03 10:05 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-09-04 12:32 - 2017-03-22 23:06 - 001691136 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2017-09-04 12:32 - 2016-07-07 12:08 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-09-04 12:32 - 2016-05-11 14:02 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-09-04 12:32 - 2016-05-11 14:02 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2017-09-04 12:32 - 2016-05-11 14:02 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2017-09-04 12:32 - 2016-05-11 12:19 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-09-04 12:32 - 2016-05-11 12:19 - 000231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2017-09-04 12:32 - 2016-05-11 12:19 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2017-09-04 12:32 - 2016-05-11 12:11 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2017-09-04 12:32 - 2016-05-11 12:01 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2017-09-04 12:32 - 2016-05-11 11:58 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-09-04 12:32 - 2016-03-09 15:54 - 000275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2017-09-04 12:32 - 2016-03-09 15:34 - 000216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2017-09-04 12:32 - 2016-02-09 06:55 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2017-09-04 12:32 - 2015-11-13 20:09 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2017-09-04 12:32 - 2015-11-13 20:09 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2017-09-04 12:32 - 2015-11-13 20:08 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2017-09-04 12:32 - 2015-11-13 19:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2017-09-04 12:32 - 2015-11-13 19:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2017-09-04 12:32 - 2015-11-13 19:49 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2017-09-04 12:32 - 2015-10-29 14:50 - 000342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2017-09-04 12:32 - 2015-10-29 14:50 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2017-09-04 12:32 - 2015-10-29 14:50 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2017-09-04 12:32 - 2015-10-29 14:50 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2017-09-04 12:32 - 2015-10-29 14:50 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2017-09-04 12:32 - 2015-10-29 14:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2017-09-04 12:32 - 2015-10-29 14:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2017-09-04 12:32 - 2015-04-13 00:28 - 000328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-09-04 12:32 - 2014-12-11 14:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-09-04 12:32 - 2014-12-06 01:17 - 000303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2017-09-04 12:32 - 2014-12-06 00:50 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2017-09-04 12:32 - 2014-12-06 00:50 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2017-09-04 12:32 - 2014-02-03 23:35 - 000274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-09-04 12:32 - 2014-02-03 23:35 - 000190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-09-04 12:32 - 2014-02-03 23:35 - 000027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2017-09-04 12:32 - 2014-02-03 23:28 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2017-09-04 12:32 - 2014-02-03 23:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2017-09-04 12:32 - 2014-01-27 23:32 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-09-04 12:32 - 2013-11-26 22:41 - 000343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-09-04 12:32 - 2013-11-26 22:41 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-09-04 12:32 - 2013-10-29 23:32 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2017-09-04 12:32 - 2013-10-29 23:19 - 000301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2017-09-04 12:32 - 2013-07-12 07:41 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2017-09-04 12:32 - 2013-03-19 02:53 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2017-09-04 12:32 - 2012-09-25 19:47 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2017-09-04 12:32 - 2012-09-25 19:46 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2017-09-04 12:32 - 2012-07-04 17:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2017-09-04 12:32 - 2012-02-17 03:38 - 001031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-09-04 12:32 - 2012-02-17 02:34 - 000826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-09-04 12:32 - 2012-02-17 01:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2017-09-04 12:32 - 2011-08-17 02:26 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2017-09-04 12:32 - 2011-08-17 02:25 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2017-09-04 12:32 - 2011-08-17 01:24 - 000465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2017-09-04 12:32 - 2011-08-17 01:19 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2017-09-04 12:32 - 2011-06-15 07:02 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2017-09-04 12:32 - 2011-06-15 07:02 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2017-09-04 12:32 - 2011-06-15 07:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2017-09-04 12:32 - 2011-06-15 07:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2017-09-04 12:32 - 2011-06-15 05:55 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2017-09-04 12:32 - 2011-06-15 05:55 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2017-09-04 12:32 - 2011-06-15 05:55 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2017-09-04 12:32 - 2011-06-15 05:55 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2017-09-04 12:32 - 2011-06-15 05:55 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2017-09-04 12:32 - 2011-03-11 03:34 - 001395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2017-09-04 12:32 - 2011-03-11 03:34 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2017-09-04 12:32 - 2011-03-11 02:33 - 001164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2017-09-04 12:32 - 2011-03-11 02:33 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2017-09-04 12:32 - 2010-12-23 07:42 - 001118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-09-04 12:32 - 2010-12-23 07:36 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2017-09-04 12:32 - 2010-12-23 02:54 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-09-04 12:32 - 2010-12-23 02:50 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2017-09-04 12:31 - 2016-06-25 21:27 - 000344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-09-04 12:31 - 2016-06-25 21:27 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-09-04 12:31 - 2016-06-25 21:27 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2017-09-04 12:31 - 2016-06-25 16:53 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2017-09-04 12:31 - 2016-06-25 16:53 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-09-04 12:31 - 2016-06-25 16:53 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-09-04 12:31 - 2016-06-25 16:41 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2017-09-04 12:31 - 2015-12-08 18:53 - 000509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2017-09-04 12:31 - 2015-12-08 16:07 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-09-04 12:31 - 2015-11-11 15:53 - 001735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-09-04 12:31 - 2015-11-11 15:53 - 000525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2017-09-04 12:31 - 2015-11-11 15:39 - 001242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2017-09-04 12:31 - 2015-11-11 15:39 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2017-09-04 12:31 - 2015-04-24 15:17 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2017-09-04 12:31 - 2015-04-24 14:56 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2017-09-04 12:31 - 2015-03-04 01:41 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2017-09-04 12:31 - 2015-03-04 01:10 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2017-09-04 12:31 - 2014-12-08 00:09 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2017-09-04 12:31 - 2014-12-07 23:46 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2017-09-04 12:31 - 2014-10-29 23:03 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2017-09-04 12:31 - 2014-10-29 22:45 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2017-09-04 12:31 - 2014-10-24 22:57 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2017-09-04 12:31 - 2014-10-24 22:32 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2017-09-04 12:31 - 2013-10-11 23:32 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2017-09-04 12:31 - 2013-10-11 23:31 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2017-09-04 12:31 - 2013-10-11 23:04 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2017-09-04 12:31 - 2013-10-11 23:03 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2017-09-04 12:31 - 2013-10-11 22:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2017-09-04 12:31 - 2013-10-11 22:33 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2017-09-04 12:31 - 2013-10-11 22:15 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2017-09-04 12:31 - 2013-10-11 22:15 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2017-09-04 12:31 - 2013-02-12 01:12 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2017-09-04 12:31 - 2012-11-02 02:59 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2017-09-04 12:31 - 2012-11-02 02:11 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2017-09-04 12:31 - 2012-03-17 04:58 - 000075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-09-04 12:31 - 2011-12-30 03:26 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2017-09-04 12:31 - 2011-12-30 02:27 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2017-09-04 12:31 - 2011-12-16 05:46 - 000634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2017-09-04 12:31 - 2011-12-16 04:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2017-09-04 12:31 - 2011-05-24 08:42 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2017-09-04 12:31 - 2011-05-24 07:40 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2017-09-04 12:31 - 2011-05-24 07:40 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2017-09-04 12:31 - 2011-05-24 07:39 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2017-09-04 12:31 - 2011-05-24 07:37 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2017-09-04 12:31 - 2011-03-03 03:24 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-09-04 12:31 - 2011-03-03 03:24 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-09-04 12:31 - 2011-03-03 03:21 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2017-09-04 12:31 - 2011-03-03 02:38 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-09-04 12:31 - 2011-03-03 02:36 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2017-09-04 12:31 - 2011-02-12 08:34 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2017-09-04 12:31 - 2011-02-05 14:10 - 000020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2017-09-04 12:31 - 2011-02-05 14:10 - 000019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2017-09-04 12:31 - 2011-02-05 14:10 - 000017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2017-09-04 12:28 - 2011-02-18 07:51 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2017-09-04 12:28 - 2011-02-18 02:39 - 000031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2017-09-04 11:50 - 2013-10-11 23:30 - 000830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-09-04 11:50 - 2013-10-11 23:29 - 000859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-09-04 11:50 - 2013-10-11 23:29 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2017-09-04 11:50 - 2013-10-11 23:03 - 000656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-09-04 11:50 - 2013-10-11 23:01 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2017-09-02 19:39 - 2017-09-02 19:39 - 000000000 ____D C:\Users\Usurio\AppData\Local\Microsoft Help
2017-09-02 13:14 - 2017-09-02 13:14 - 000000000 ____D C:\ProgramData\GlarySoft
2017-09-01 15:27 - 2013-10-14 18:00 - 000028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2017-09-01 15:19 - 2017-09-01 15:19 - 000940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-01 15:19 - 2017-09-01 15:19 - 000194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 024917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 019607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 014404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 012829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 006026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 004305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 002885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-09-01 15:18 - 2017-09-01 15:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-09-01 15:18 - 2017-09-01 15:18 - 002426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 002278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 002125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-09-01 15:18 - 2017-09-01 15:18 - 002052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-09-01 15:18 - 2017-09-01 15:18 - 001950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 001309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2017-09-01 15:18 - 2017-09-01 15:18 - 000616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2017-09-01 15:18 - 2017-09-01 15:18 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-09-01 15:18 - 2017-09-01 15:18 - 000389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-09-01 15:18 - 2017-09-01 15:18 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-09-01 15:18 - 2017-09-01 15:18 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-09-01 15:18 - 2017-09-01 15:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

**pachuly autalan** · 16/09/17, 02:29:41

2017-09-01 15:18 - 2017-09-01 15:18 - 000056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2017-09-01 15:18 - 2017-09-01 15:18 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2017-09-01 15:18 - 2017-09-01 15:18 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-09-01 15:16 - 2017-09-01 15:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2017-09-01 15:13 - 2017-09-01 15:13 - 003928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 003419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 002776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 002565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 002284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 001080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-09-01 15:13 - 2017-09-01 15:13 - 000002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-09-01 15:12 - 2017-09-01 15:12 - 001887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-09-01 15:12 - 2017-09-01 15:12 - 001505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-08-31 16:41 - 2017-09-16 02:53 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-08-31 16:41 - 2017-09-02 13:15 - 000000000 ____D C:\Users\Usurio\AppData\Roaming\GlarySoft
2017-08-31 16:41 - 2017-08-31 16:41 - 000020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2017-08-31 16:41 - 2017-08-31 16:41 - 000003316 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2017-08-31 16:41 - 2017-08-31 16:41 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-08-31 16:41 - 2017-08-31 16:41 - 000001076 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2017-08-31 16:41 - 2017-08-31 16:41 - 000000000 ____D C:\Users\Usurio\AppData\Roaming\DiskDefrag
2017-08-31 16:41 - 2017-08-31 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2017-08-31 16:35 - 2017-08-31 16:36 - 000000000 ____D C:\Program Files (x86)\Argente - Registry Cleaner
2017-08-31 16:35 - 2017-08-31 16:35 - 000001134 _____ C:\Users\Public\Desktop\Argente - Registry Cleaner.lnk
2017-08-31 16:35 - 2017-08-31 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argente - Registry Cleaner
2017-08-31 16:29 - 2017-08-31 16:29 - 000002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-08-31 16:29 - 2017-08-31 16:29 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-31 16:29 - 2017-08-31 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-31 16:29 - 2017-08-31 16:29 - 000000000 ____D C:\Program Files\CCleaner
2017-08-31 13:14 - 2017-09-10 00:42 - 000000000 ____D C:\FSTool
2017-08-24 12:45 - 2017-08-24 12:45 - 000000000 ____D C:\Users\Usurio\AppData\Roaming\Google
2017-08-18 12:10 - 2017-08-18 12:10 - 000043832 ____N C:\bootsqm.dat
2017-08-18 12:09 - 2017-08-18 12:09 - 000000000 __SHD C:\found.000

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-16 03:00 - 2017-06-24 22:28 - 000078736 _____ C:\Users\Usurio\AppData\Local\GDIPFONTCACHEV1.DAT
2017-09-16 02:58 - 2009-07-14 01:45 - 000013424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-16 02:58 - 2009-07-14 01:45 - 000013424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-16 02:56 - 2017-03-22 13:59 - 000705070 _____ C:\Windows\system32\prfh0416.dat
2017-09-16 02:56 - 2017-03-22 13:59 - 000407968 _____ C:\Windows\system32\perfh011.dat
2017-09-16 02:56 - 2017-03-22 13:59 - 000146910 _____ C:\Windows\system32\prfc0416.dat
2017-09-16 02:56 - 2017-03-22 13:59 - 000121354 _____ C:\Windows\system32\perfc011.dat
2017-09-16 02:56 - 2009-07-14 06:31 - 000746992 _____ C:\Windows\system32\perfh00A.dat
2017-09-16 02:56 - 2009-07-14 06:31 - 000158464 _____ C:\Windows\system32\perfc00A.dat
2017-09-16 02:56 - 2009-07-14 02:13 - 003057738 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-16 02:56 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2017-09-16 02:55 - 2017-08-03 14:17 - 000000000 ____D C:\Windows\Minidump
2017-09-16 02:50 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-15 21:15 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
2017-09-14 12:49 - 2017-06-24 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-09-14 12:46 - 2017-06-24 22:26 - 000194912 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2017-09-14 12:46 - 2017-06-24 22:26 - 000151128 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2017-09-13 14:26 - 2017-06-26 15:18 - 000001456 _____ C:\Users\Usurio\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2017-09-12 16:17 - 2017-03-24 12:35 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-09 21:37 - 2014-02-14 23:19 - 000000000 ____D C:\Windows\Panther
2017-09-04 18:37 - 2009-07-14 01:45 - 000322608 _____ C:\Windows\system32\FNTCACHE.DAT
2017-09-04 18:33 - 2009-07-14 07:11 - 000000000 ____D C:\Windows\ShellNew
2017-09-04 18:33 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\Windows Defender
2017-09-04 18:33 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-09-04 18:33 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2017-09-04 18:33 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\Dism
2017-09-04 18:33 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2017-09-04 18:33 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\AppCompat
2017-09-04 18:33 - 2009-07-14 00:20 - 000000000 ____D C:\Program Files\Common Files\System
2017-09-04 18:32 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\DVD Maker
2017-09-04 18:32 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2017-09-04 18:32 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\migwiz
2017-09-04 18:32 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2017-09-04 13:05 - 2017-03-22 21:11 - 000000000 ____D C:\Windows\system32\MRT
2017-09-04 13:02 - 2017-03-22 21:10 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-09-01 20:31 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF
2017-09-01 20:01 - 2017-06-24 22:18 - 000001393 _____ C:\Users\Usurio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-08-31 16:46 - 2017-07-29 15:20 - 000000000 ____D C:\Users\Usurio\AppData\Roaming\AIMP
2017-08-28 23:43 - 2017-03-22 11:08 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-28 23:43 - 2017-03-22 11:08 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-18 12:29 - 2009-07-14 02:08 - 000032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-08-17 21:30 - 2017-06-24 22:19 - 000000000 ____D C:\Users\Usurio\AppData\Local\Google
2017-08-17 16:34 - 2017-06-24 23:32 - 000000000 ____D C:\Users\Usurio\AppData\LocalLow\Mozilla

==================== Files in the root of some directories =======

2017-06-26 15:18 - 2017-09-13 14:26 - 000001456 _____ () C:\Users\Usurio\AppData\Local\Adobe Guardar para Web 13.0 Prefs

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-15 21:07

==================== End of FRST.txt ============================

**pachuly autalan** · 16/09/17, 02:32:00

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017
Ran by Usurio (16-09-2017 03:06:52)
Running from D:\Usuario\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2017-06-25 01:18:12)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrador (S-1-5-21-865420550-542592396-761937010-500 - Administrator - Disabled)
Invitado (S-1-5-21-865420550-542592396-761937010-501 - Limited - Enabled)
Usurio (S-1-5-21-865420550-542592396-761937010-1004 - Administrator - Enabled) => C:\Users\Usurio

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.13.1897, 26.06.2017 - AIMP DevTeam)
Argente - Registry Cleaner 3.1.1.0 (HKLM-x32\...\Argente - Registry Cleaner_is1) (Version: 3.1.1.0 - Raúl Argente)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
ATI Catalyst Install Manager (HKLM\...\{2A13EF26-4D68-B2D7-A486-DBBD2FDE366B}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Avira (HKLM-x32\...\{1B48601D-0537-4589-9952-A8989BE8249A}) (Version: 1.2.96.16095 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{7c01a3b4-3454-446e-8473-8a245f962c28}) (Version: 1.2.96.16095 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.30.29 - Avira Operations GmbH & Co. KG)
ccc-core-static (HKLM-x32\...\{8ADE5280-35CA-CF98-A456-F66B98C77244}) (Version: 2010.0210.2206.39615 - Nombre de su organización) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Complemento Guardar como PDF o XPS de Microsoft para programas de Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0C0A-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version: - )
CyberLink PowerDVD 15 (HKLM-x32\...\{DE85B8F3-D088-4D6E-A970-EE0BC7883A66}) (Version: 15.0.2003.58 - CyberLink Corp.)
Glary Utilities 5.82 (HKLM-x32\...\Glary Utilities 5) (Version: 5.82.0.103 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
K-Lite Mega Codec Pack 9.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - )
Malwarebytes versión 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Mario Party 9 versión 2.0 (HKLM-x32\...\{973C9B56-7591-427E-844A-D8A78A9D620C}_is1) (Version: 2.0 - JUEGOS PC)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x86 es-AR) (HKLM-x32\...\Mozilla Firefox 55.0.2 (x86 es-AR)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0.1 - Mozilla)
Nero 8 Lite 8.1.1.3 (HKLM-x32\...\Nero8Lite_is1) (Version: 8.1.1.3 - Updatepack.nl)
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - )
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2017-07-29] (AIMP DevTeam)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-09-14] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2017-07-29] (AIMP DevTeam)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-10] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-11-14] (Intel Corporation)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2016-06-22] (Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-09-14] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0114DCBB-3564-496D-9B5F-71B1367A4527} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {0213B4C1-6A38-42F0-B429-FCC49CD27325} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {0297D316-70E3-4629-A388-473DDFED2B65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)
Task: {18738401-E2CF-424B-9C6F-984825E41A4A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2017-08-20] (Glarysoft Ltd)
Task: {5DF9729B-F14D-4846-A570-8A54A37242A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-09-16 02:34 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2014-02-15 03:29 - 2010-03-15 11:28 - 000166400 _____ () C:\Program Files\WinRAR\rarext.dll
2017-06-27 20:11 - 2007-09-02 13:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2017-07-21 17:03 - 2010-08-11 11:32 - 000078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 000386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 000105584 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2017-07-21 17:03 - 2010-08-11 11:32 - 064643696 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2017-06-24 22:46 - 2017-06-24 22:46 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2017-06-27 20:11 - 2007-09-02 13:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2017-08-20 22:40 - 2017-08-20 22:40 - 000087032 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2009-06-10 18:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-865420550-542592396-761937010-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Usurio\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BF14CADD-0C64-416B-96D3-32EB95D29F7F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD.exe
FirewallRules: [{9FFA503A-29F0-4D9E-86ED-EF3B23E1D5E4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\CLMSServerPDVD15.exe
FirewallRules: [{277FD67B-93F7-4B94-BF3D-129E142B8EA9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe
FirewallRules: [{6F9B8C16-C61C-4D2E-A403-C85B8726AFC7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVDMovie.exe
FirewallRules: [{AB0810E7-11BF-4F2E-AF3E-7394D3ADD787}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{AEC3CA37-D3EB-4CF2-A153-7A869D4016CD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F57E2CCD-3D9B-40CB-B7DA-982D6571E571}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{46884A3F-0C58-481B-9FCF-5F80C021E209}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

15-09-2017 21:14:51 Punto de control programado
16-09-2017 02:18:53 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/16/2017 03:07:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x8b4
Hora de inicio de la aplicación con errores: 0x01d32eb1ff82805a
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 40ae10a0-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:06:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x11a0
Hora de inicio de la aplicación con errores: 0x01d32eb1ed99e60e
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 2eb72e13-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:06:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0xfc4
Hora de inicio de la aplicación con errores: 0x01d32eb1dbb14bc2
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 1cd0f527-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:05:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x12fc
Hora de inicio de la aplicación con errores: 0x01d32eb1c9c65016
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 0ace2bb8-9aa5-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:05:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x12ac
Hora de inicio de la aplicación con errores: 0x01d32eb1b7d8f30a
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: fa16418f-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:04:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x2a8
Hora de inicio de la aplicación con errores: 0x01d32eb1a5ecedb4
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: e6f98c17-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:04:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0xf2c
Hora de inicio de la aplicación con errores: 0x01d32eb19404f8d8
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: d5df954c-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:03:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x60c
Hora de inicio de la aplicación con errores: 0x01d32eb18215cc2e
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: c447ffca-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:03:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x4ec
Hora de inicio de la aplicación con errores: 0x01d32eb170289b5c
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: b1a5ad21-9aa4-11e7-8ddd-38d54777ed25

Error: (09/16/2017 03:02:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TrustedInstaller.exe, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7989b
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23864, marca de tiempo: 0x595fa942
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000002e5da
Id. del proceso con errores: 0x135c
Hora de inicio de la aplicación con errores: 0x01d32eb15e3cca1f
Ruta de acceso de la aplicación con errores: C:\Windows\servicing\TrustedInstaller.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Id. del informe: 9f9f9cc2-9aa4-11e7-8ddd-38d54777ed25

System errors:
=============
Error: (09/16/2017 03:07:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 29 veces.

Error: (09/16/2017 03:06:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 28 veces.

Error: (09/16/2017 03:06:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 27 veces.

Error: (09/16/2017 03:05:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 26 veces.

Error: (09/16/2017 03:05:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 25 veces.

Error: (09/16/2017 03:04:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 24 veces.

Error: (09/16/2017 03:04:02 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 23 veces.

Error: (09/16/2017 03:03:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 22 veces.

Error: (09/16/2017 03:03:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 21 veces.

Error: (09/16/2017 03:02:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Instalador de módulos de Windows se terminó de manera inesperada. Esto ha sucedido 20 veces.

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 250 Processor
Percentage of memory in use: 39%
Total physical RAM: 3838.12 MB
Available physical RAM: 2320.97 MB
Total Virtual: 7674.42 MB
Available Virtual: 5588.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:116.44 GB) (Free:81.36 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:116.45 GB) (Free:31.98 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 94AC94AC)
Partition 1: (Active) - (Size=116.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=116.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

**@MiguelRiaguel** · 16/09/17, 05:31:06

Hola de nuevo

Necesitaría poder analizar el reporte que te ha ofrecido JRT. Déjame ese reporte en tu próxima contestación.

Respecto a Malwarebytes, me hubiese gustado que hubieras realiza un Análisis Personalizado, tal y como te comenté, ya que realiza un análisis mucho más profundo del sistema que el Análisis de Amenazas, que realiza la herramienta por defecto. Para descartar que no quede alguna otra infección, vuelve a repetir este análisis y recuerda ejecutar un Análisis Personalizado.

Sobre FRST, veo que has ejecutado la herramienta desde la ubicación D:\Usuario\Desktop, pero en cambio veo que tienes tu sistema operativo instalado en C:

La herramienta guarda los respaldos que crea el programa antes de cada reparación, y para ello es importante que esté la aplicación en una ubicación correcta. ¿La tienes situada en el escritorio de la partición de tu sistema? Si no es así, cambia la ubicación de la herramienta, y me dejas los reportes que te solicité anteriormente.

Saludos.

**pachuly autalan** · 18/09/17, 11:48:20

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Ultimate x64
Ran by Usurio (Administrator) on 18/09/2017 at 12:36:29,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 8

Successfully deleted: C:\Users\Usurio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10I7A7HF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Usurio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUK0IOTA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Usurio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S2RGLS5W (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Usurio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SZA9OYJW (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10I7A7HF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUK0IOTA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S2RGLS5W (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SZA9OYJW (Temporary Internet Files Folder)

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 18/09/2017 at 12:38:59,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

**pachuly autalan** · 18/09/17, 15:18:29

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 18/9/17
Hora del análisis: 13:39
Archivo de registro: fea9fc22-9c8f-11e7-b0bf-38d54777ed25.json
Administrador: Sí

-Información del software-
Versión: 3.2.2.2029
Versión de los componentes: 1.0.188
Versión del paquete de actualización: 1.0.2834
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: Usurio-PC\Usurio

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Resultado: Completado
Objetos analizados: 322197
Amenazas detectadas: 3
Amenazas en cuarentena: 3
Tiempo transcurrido: 1 hr, 23 min, 53 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 3
CrackTool.Agent.Keygen, D:\INS\CRACK ACAD2010\SISTEMAS DE 64 BITS\KEYGEN AUTODESK 2010 X64.EXE, En cuarentena, [331], [365258],1.0.2834
CrackTool.Agent.Keygen, D:\INS\CRACK ACAD2010\SISTEMAS DE 32 BITS\KEYGEN AUTODESK 2010 X32.EXE, En cuarentena, [331], [355559],1.0.2834
Trojan.Nyetya, D:\USUARIO\DOWNLOADS\CCSETUP533.EXE, En cuarentena, [8819], [436221],1.0.2834

Sector físico: 0
(No hay elementos maliciosos detectados)

(end)

Memoria llena

Herramientas

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena

Re: Memoria llena