[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2020/04/06 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
[2020/04/06 22:29:28 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2020/04/06 22:27:37 | 000,214,496 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamChameleon.sys
[2020/04/06 22:27:35 | 000,248,968 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamswissarmy.sys
[2020/04/06 22:27:27 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2020/04/06 22:27:26 | 3387,408,384 | -HS- | M] () -- C:\hiberfil.sys
[2020/04/06 01:45:05 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2020/03/29 22:14:13 | 001,453,622 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2020/03/29 22:14:13 | 000,702,820 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2020/03/29 22:14:13 | 000,482,994 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2020/03/29 22:14:13 | 000,134,062 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2020/03/29 22:14:13 | 000,133,094 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2020/03/29 01:56:24 | 000,002,032 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2020/03/29 01:55:36 | 000,153,312 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2020/03/29 01:55:31 | 000,020,936 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamElam.sys
[2020/03/29 01:52:35 | 001,957,784 | ---- | M] (Malwarebytes) -- C:\Users\Owner\Desktop\MBSetup.exe
[2020/03/29 00:55:28 | 008,199,856 | ---- | M] (Malwarebytes) -- C:\Users\Owner\Desktop\adwcleaner_8.0.3.exe
[2020/03/28 04:01:27 | 000,003,420 | ---- | M] () -- C:\Users\Owner\Desktop\ccleaner.ini
[2020/03/25 02:06:18 | 000,000,017 | ---- | M] () -- C:\Users\Owner\AppData\Local\resmon.resmoncfg
[2020/03/23 02:30:34 | 000,001,281 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2020/03/22 20:56:57 | 000,391,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdFilter.sys
[2020/03/22 20:56:57 | 000,059,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdNisDrv.sys
[2020/03/22 20:56:57 | 000,045,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdBoot.sys
[2020/03/13 02:49:16 | 000,000,010 | ---- | M] () -- C:\Users\Owner\Desktop\portable.dat
[2020/03/13 02:49:02 | 022,256,824 | ---- | M] (Piriform Software Ltd) -- C:\Users\Owner\Desktop\CCleaner64.exe
[2020/03/13 02:49:00 | 018,233,016 | ---- | M] (Piriform Software Ltd) -- C:\Users\Owner\Desktop\CCleaner.exe
[2020/03/13 02:45:39 | 000,000,998 | ---- | M] () -- C:\Users\Owner\Desktop\ccsetup564.zip - ショートカット.lnk
[2020/03/13 02:41:30 | 000,000,940 | ---- | M] () -- C:\Users\Owner\Desktop\geek.zip - ショートカット.lnk
[2020/03/13 02:25:15 | 025,444,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Hydrogen.dll
[2020/03/13 02:25:15 | 001,610,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramCompositor.dll
[2020/03/13 02:25:12 | 000,689,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2020/03/13 02:25:08 | 001,398,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2020/03/13 02:25:08 | 001,077,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2020/03/13 02:25:07 | 006,520,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2020/03/13 02:25:06 | 007,604,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2020/03/13 02:25:05 | 009,930,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2020/03/13 01:02:16 | 000,480,992 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2020/03/12 00:43:47 | 009,711,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2020/03/12 00:43:45 | 011,607,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2020/03/12 00:43:07 | 000,952,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2020/03/12 00:43:06 | 002,315,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2020/03/12 00:43:06 | 001,417,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2020/03/12 00:43:06 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
[2020/03/12 00:43:06 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacEncoder.dll
[2020/03/12 00:43:05 | 001,867,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2020/03/12 00:43:05 | 001,555,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2020/03/12 00:43:05 | 001,012,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2020/03/12 00:43:05 | 000,757,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2020/03/12 00:43:04 | 001,108,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2020/03/12 00:43:04 | 001,098,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2020/03/12 00:42:59 | 019,812,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramWorld.dll
[2020/03/12 00:42:57 | 002,494,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2020/03/12 00:42:57 | 001,770,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2020/03/12 00:42:56 | 001,835,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2020/03/12 00:42:56 | 001,282,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2020/03/12 00:42:56 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll
[2020/03/12 00:42:56 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacEncoder.dll
[2020/03/12 00:42:55 | 002,956,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2020/03/12 00:42:55 | 002,072,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2020/03/12 00:42:54 | 004,129,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2020/03/12 00:42:53 | 001,490,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2020/03/12 00:42:47 | 003,243,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Mirage.dll
[2020/03/12 00:42:47 | 000,701,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Mirage.Internal.dll
[2020/03/12 00:42:46 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2020/03/12 00:42:46 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msimsg.dll
[2020/03/12 00:42:45 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\odbc32.dll
[2020/03/12 00:42:45 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iemigplugin.dll
[2020/03/12 00:42:44 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2020/03/12 00:42:44 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2020/03/12 00:42:43 | 005,911,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2020/03/12 00:42:43 | 000,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll
[2020/03/12 00:42:42 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IndexedDbLegacy.dll
[2020/03/12 00:42:39 | 019,850,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2020/03/12 00:42:39 | 000,843,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webplatstorageserver.dll
[2020/03/12 00:42:39 | 000,667,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EdgeManager.dll
[2020/03/12 00:42:36 | 000,883,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll
[2020/03/12 00:42:36 | 000,525,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsecedit.dll
[2020/03/12 00:42:36 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\udhisapi.dll
[2020/03/12 00:42:36 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\upnpcont.exe
[2020/03/12 00:42:34 | 004,348,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Mirage.dll
[2020/03/12 00:42:34 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Mirage.Internal.dll
[2020/03/12 00:42:34 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvSysprep.dll
[2020/03/12 00:42:33 | 002,180,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2020/03/12 00:42:33 | 000,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFolders.exe
[2020/03/12 00:42:32 | 002,031,104 | ---- | M] () -- C:\WINDOWS\SysNative\rdpnano.dll
[2020/03/12 00:42:32 | 001,273,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2020/03/12 00:42:32 | 000,835,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2020/03/12 00:42:32 | 000,225,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFoldersShell.dll
[2020/03/12 00:42:31 | 001,540,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2020/03/12 00:42:31 | 001,214,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2020/03/12 00:42:31 | 000,097,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2020/03/12 00:42:31 | 000,042,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe
[2020/03/12 00:42:31 | 000,032,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys
[2020/03/12 00:42:31 | 000,019,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.exe
[2020/03/12 00:42:30 | 004,580,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2020/03/12 00:42:30 | 002,224,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.dll
[2020/03/12 00:42:30 | 000,510,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2020/03/12 00:42:30 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngOnline.dll
[2020/03/12 00:42:30 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimsg.dll
[2020/03/12 00:42:28 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\odbc32.dll
[2020/03/12 00:42:28 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iemigplugin.dll
[2020/03/12 00:42:26 | 004,855,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2020/03/12 00:42:26 | 000,705,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2020/03/12 00:42:25 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2020/03/12 00:42:25 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll
[2020/03/12 00:42:24 | 007,755,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2020/03/12 00:42:23 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IndexedDbLegacy.dll
[2020/03/12 00:42:19 | 001,319,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webplatstorageserver.dll
[2020/03/12 00:42:19 | 000,923,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EdgeManager.dll
[2020/03/12 00:42:18 | 025,900,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2020/03/12 00:42:13 | 001,284,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2020/03/12 00:42:13 | 001,088,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll
[2020/03/12 00:42:12 | 000,668,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsecedit.dll
[2020/03/12 00:42:12 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2020/03/12 00:42:12 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EnterpriseDesktopAppMgmtCSP.dll
[2020/03/12 00:42:11 | 001,218,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe
[2020/03/12 00:42:11 | 000,669,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\computecore.dll
[2020/03/12 00:42:05 | 001,283,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2020/03/12 00:42:04 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth12.bin
[2020/03/12 00:42:04 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth11.bin
[2020/03/12 00:42:04 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth10.bin
[2020/03/12 00:42:00 | 000,783,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcblaunch.exe
[2020/03/12 00:42:00 | 000,210,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcbloader.dll
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth9.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth8.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth7.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth6.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth5.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth4.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth3.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth2.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth1.bin
[2020/03/12 00:41:59 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\udhisapi.dll
[2020/03/12 00:41:59 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\upnpcont.exe
[2020/03/12 00:41:59 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dusmtask.exe
[2020/03/12 00:41:58 | 003,860,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtmpltfm.dll
[2020/03/12 00:41:58 | 001,190,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Graphics.Display.DisplayEnhancementService.dll
[2020/03/12 00:41:58 | 000,358,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dusmsvc.dll
[2020/03/12 00:41:58 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dusmapi.dll
[2020/03/12 00:41:57 | 000,980,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtmpal.dll
[2020/03/12 00:41:57 | 000,915,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtmcodecs.dll
[2020/03/12 00:41:57 | 000,732,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ortcengine.dll
[2020/03/12 00:41:57 | 000,055,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtmmvrortc.dll
[2020/03/12 00:41:56 | 000,105,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OpenWith.exe
[2020/03/12 00:41:55 | 000,516,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtrmgr.dll
[2020/03/12 00:41:55 | 000,214,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scecli.dll
[2020/03/12 00:41:55 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtm.dll
[2020/03/12 00:41:55 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtprio.dll
[2020/03/12 00:41:54 | 001,031,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XpsPrint.dll
[2020/03/12 00:41:54 | 000,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XpsDocumentTargetPrint.dll
[2020/03/12 00:41:54 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\afunix.sys
[2020/03/12 00:41:53 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgeIso.dll
[2020/03/12 00:41:53 | 000,251,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msIso.dll
[2020/03/12 00:41:53 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MicrosoftAccountTokenProvider.dll
[2020/03/12 00:41:53 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msauserext.dll
[2020/03/12 00:41:51 | 001,458,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2020/03/12 00:41:51 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2020/03/12 00:41:51 | 000,895,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2020/03/12 00:41:51 | 000,646,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Management.dll
[2020/03/12 00:41:51 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DMAlertListener.ProxyStub.dll
[2020/03/12 00:41:50 | 000,199,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2020/03/12 00:41:50 | 000,136,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\omadmapi.dll
[2020/03/12 00:41:50 | 000,130,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmcmnutils.dll
[2020/03/12 00:41:50 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\enterpriseresourcemanager.dll
[2020/03/12 00:41:50 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf3216.dll
[2020/03/12 00:41:50 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werdiagcontroller.dll
[2020/03/12 00:41:49 | 000,892,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2020/03/12 00:41:49 | 000,868,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windowsperformancerecordercontrol.dll
[2020/03/12 00:41:49 | 000,680,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2020/03/12 00:41:49 | 000,193,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2020/03/12 00:41:48 | 002,584,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2020/03/12 00:41:48 | 000,307,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2020/03/12 00:41:47 | 000,935,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Taskmgr.exe
[2020/03/12 00:41:47 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2020/03/12 00:41:47 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchTM.exe
[2020/03/12 00:41:46 | 001,264,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2020/03/12 00:41:45 | 002,800,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2020/03/12 00:41:45 | 000,469,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\daxexec.dll
[2020/03/12 00:41:45 | 000,324,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2020/03/12 00:41:45 | 000,089,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2020/03/12 00:41:44 | 002,740,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\directml.dll
[2020/03/12 00:41:44 | 001,985,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2020/03/12 00:41:44 | 000,748,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2020/03/12 00:41:44 | 000,668,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2020/03/12 00:41:44 | 000,120,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\profext.dll
[2020/03/12 00:41:39 | 006,084,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2020/03/12 00:41:38 | 002,875,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2020/03/12 00:41:38 | 001,729,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallService.dll
[2020/03/12 00:41:38 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallServiceTasks.dll
[2020/03/12 00:41:37 | 002,561,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2020/03/12 00:41:37 | 002,305,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2020/03/12 00:41:37 | 001,260,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpsharercom.dll
[2020/03/12 00:41:36 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2020/03/12 00:41:36 | 000,283,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Search.ProtocolHandler.MAPI2.dll
[2020/03/12 00:41:36 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2020/03/12 00:41:36 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssitlb.dll
[2020/03/12 00:41:35 | 002,021,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2020/03/12 00:41:35 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActivationManager.dll
[2020/03/12 00:41:35 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GraphicsCapture.dll
[2020/03/12 00:41:35 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msscntrs.dll
[2020/03/12 00:41:34 | 000,526,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidprov.dll
[2020/03/12 00:41:34 | 000,279,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2020/03/12 00:41:34 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmWmiPl.dll
[2020/03/12 00:41:34 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSManMigrationPlugin.dll
[2020/03/12 00:41:34 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmRes.dll
[2020/03/12 00:41:34 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsmprovhost.exe
[2020/03/12 00:41:34 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSManHTTPConfig.exe
[2020/03/12 00:41:34 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAgent.dll
[2020/03/12 00:41:34 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsmplpxy.dll
[2020/03/12 00:41:33 | 005,112,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2020/03/12 00:41:33 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAuto.dll
[2020/03/12 00:41:33 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2020/03/12 00:41:32 | 000,627,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicensingWinRT.dll
[2020/03/12 00:41:32 | 000,213,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditionUpgradeManagerObj.dll
[2020/03/12 00:41:32 | 000,068,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DeviceReactivation.dll
[2020/03/12 00:41:32 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxstrace.exe
[2020/03/12 00:41:31 | 003,971,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2020/03/12 00:41:31 | 000,287,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppcomapi.dll
[2020/03/12 00:41:31 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditionUpgradeHelper.dll
[2020/03/12 00:41:31 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dot3api.dll
[2020/03/12 00:41:31 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dot3msm.dll
[2020/03/12 00:41:30 | 000,836,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TpmCoreProvisioning.dll
[2020/03/12 00:41:30 | 000,042,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tbs.dll
[2020/03/12 00:41:30 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TpmCertResources.dll
[2020/03/12 00:41:29 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2020/03/12 00:41:28 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vpnike.dll
[2020/03/12 00:41:28 | 000,595,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2020/03/12 00:41:28 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scecli.dll
[2020/03/12 00:41:26 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtrmgr.dll
[2020/03/12 00:41:26 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtm.dll
[2020/03/12 00:41:26 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtprio.dll
[2020/03/12 00:41:23 | 001,688,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XpsPrint.dll
[2020/03/12 00:41:23 | 000,355,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XpsDocumentTargetPrint.dll
[2020/03/12 00:41:22 | 001,412,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2020/03/12 00:41:22 | 000,518,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll
[2020/03/12 00:41:22 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
[2020/03/12 00:41:22 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceUpdateAgent.dll
[2020/03/12 00:41:22 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnpclean.dll
[2020/03/12 00:41:22 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\afunix.sys
[2020/03/12 00:41:21 | 000,613,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netprofmsvc.dll
[2020/03/12 00:41:21 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\NdisImPlatform.sys
[2020/03/12 00:41:21 | 000,133,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ImplatSetup.dll
[2020/03/12 00:41:21 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\npmproxy.dll
[2020/03/12 00:41:21 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmproxy.dll
[2020/03/12 00:41:21 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmsprep.dll
[2020/03/12 00:41:13 | 000,291,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2020/03/12 00:41:13 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LanguageComponentsInstaller.dll
[2020/03/12 00:41:13 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AxInstUI.exe
[2020/03/12 00:41:13 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msauserext.dll
[2020/03/12 00:41:12 | 000,734,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetup.exe
[2020/03/12 00:41:12 | 000,443,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgeIso.dll
[2020/03/12 00:41:12 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msIso.dll
[2020/03/12 00:41:12 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpremove.exe
[2020/03/12 00:41:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MUILanguageCleanup.dll
[2020/03/12 00:41:12 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LangCleanupSysprepAction.dll
[2020/03/12 00:41:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetupproxyserv.dll
[2020/03/12 00:41:09 | 001,697,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2020/03/12 00:41:09 | 001,647,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2020/03/12 00:41:09 | 001,097,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2020/03/12 00:41:08 | 000,921,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Management.dll
[2020/03/12 00:41:08 | 000,898,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MdmDiagnostics.dll
[2020/03/12 00:41:08 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmclient.exe
[2020/03/12 00:41:08 | 000,164,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmapi.dll
[2020/03/12 00:41:08 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceMetadataRetrievalClient.dll
[2020/03/12 00:41:08 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterpriseresourcemanager.dll
[2020/03/12 00:41:08 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DMAlertListener.ProxyStub.dll
[2020/03/12 00:41:07 | 001,835,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2020/03/12 00:41:07 | 000,329,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DiagnosticLogCSP.dll
[2020/03/12 00:41:07 | 000,165,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcmnutils.dll
[2020/03/12 00:40:48 | 000,929,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthService.exe
[2020/03/12 00:40:48 | 000,320,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthAgent.dll
[2020/03/12 00:40:48 | 000,063,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthHost.exe
[2020/03/12 00:40:47 | 000,107,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthProxyStub.dll
[2020/03/12 00:40:46 | 000,845,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2020/03/12 00:40:46 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf3216.dll
[2020/03/12 00:40:45 | 000,098,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys
[2020/03/12 00:40:45 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimg32.dll
[2020/03/12 00:40:34 | 000,477,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2020/03/12 00:40:33 | 002,768,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2020/03/12 00:40:32 | 000,605,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sechost.dll
[2020/03/12 00:40:32 | 000,133,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\profapi.dll
[2020/03/12 00:40:30 | 001,999,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2020/03/12 00:40:29 | 003,799,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2020/03/12 00:40:29 | 000,877,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2020/03/12 00:40:29 | 000,248,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2020/03/12 00:40:29 | 000,221,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2020/03/12 00:40:29 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\utcutil.dll
[2020/03/12 00:40:29 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2020/03/12 00:40:28 | 001,153,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windowsperformancerecordercontrol.dll
[2020/03/12 00:40:28 | 000,796,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2020/03/12 00:40:28 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pacjsworker.exe
[2020/03/12 00:40:27 | 006,436,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2020/03/12 00:40:27 | 003,371,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2020/03/12 00:40:27 | 001,394,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2020/03/12 00:40:27 | 000,435,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2020/03/12 00:40:27 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2020/03/12 00:40:26 | 001,260,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2020/03/12 00:40:25 | 000,741,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicensingWinRT.dll
[2020/03/12 00:40:25 | 000,636,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sxs.dll
[2020/03/12 00:40:25 | 000,234,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll
[2020/03/12 00:40:25 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeHelper.dll
[2020/03/12 00:40:25 | 000,089,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceReactivation.dll
[2020/03/12 00:40:25 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sxstrace.exe
[2020/03/12 00:40:24 | 001,743,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2020/03/12 00:40:24 | 000,460,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slui.exe
[2020/03/12 00:40:24 | 000,353,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2020/03/12 00:40:24 | 000,307,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcomapi.dll
[2020/03/12 00:40:23 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SppExtComObj.Exe
[2020/03/12 00:40:22 | 004,898,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtmpltfm.dll
[2020/03/12 00:40:21 | 001,354,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtmpal.dll
[2020/03/12 00:40:21 | 001,091,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtmcodecs.dll
[2020/03/12 00:40:21 | 001,032,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ortcengine.dll
[2020/03/12 00:40:21 | 000,056,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtmmvrortc.dll
[2020/03/12 00:40:18 | 003,552,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2020/03/12 00:40:18 | 000,120,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OpenWith.exe
[2020/03/12 00:40:17 | 001,396,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2020/03/12 00:40:17 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2020/03/12 00:40:16 | 001,757,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2020/03/12 00:40:16 | 001,366,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2020/03/12 00:40:16 | 001,182,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2020/03/12 00:40:16 | 000,457,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\cldflt.sys
[2020/03/12 00:40:15 | 001,513,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2020/03/12 00:40:14 | 001,972,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys
[2020/03/12 00:40:14 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\refsutil.exe
[2020/03/12 00:40:14 | 000,765,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll
[2020/03/12 00:40:13 | 004,048,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2020/03/12 00:40:13 | 001,071,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Taskmgr.exe
[2020/03/12 00:40:13 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchTM.exe
[2020/03/12 00:40:13 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tier2punctuations.dll
[2020/03/12 00:40:12 | 000,838,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Language.dll
[2020/03/12 00:40:10 | 006,168,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2020/03/12 00:40:09 | 004,140,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2020/03/12 00:40:08 | 001,083,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2020/03/12 00:40:08 | 000,522,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2020/03/12 00:40:08 | 000,459,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotifyIcon.exe
[2020/03/12 00:40:08 | 000,448,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsEnvironment.Desktop.dll
[2020/03/12 00:40:08 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Taskbar.dll
[2020/03/12 00:40:07 | 001,823,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2020/03/12 00:40:07 | 001,480,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocoreworker.exe
[2020/03/12 00:40:07 | 000,605,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2020/03/12 00:40:07 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.UXRes.dll
[2020/03/12 00:40:07 | 000,535,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usosvc.dll
[2020/03/12 00:40:06 | 003,728,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2020/03/12 00:40:06 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\daxexec.dll
[2020/03/12 00:40:06 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll
[2020/03/12 00:40:06 | 000,201,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wcifs.sys
[2020/03/12 00:40:06 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wci.dll
[2020/03/12 00:40:05 | 001,657,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2020/03/12 00:40:05 | 000,127,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32u.dll
[2020/03/12 00:40:02 | 001,609,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2020/03/12 00:40:02 | 000,263,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnservice.dll
[2020/03/12 00:40:01 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2020/03/12 00:40:01 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VPNv2CSP.dll
[2020/03/12 00:39:58 | 000,908,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2020/03/12 00:39:58 | 000,146,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\profext.dll
[2020/03/12 00:39:57 | 007,905,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2020/03/12 00:39:56 | 003,260,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2020/03/12 00:39:56 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallServiceTasks.dll
[2020/03/12 00:39:55 | 002,453,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallService.dll
[2020/03/12 00:39:55 | 001,481,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpsharercom.dll
[2020/03/12 00:39:55 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2020/03/12 00:39:55 | 000,642,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2020/03/12 00:39:55 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2020/03/12 00:39:54 | 004,471,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2020/03/12 00:39:54 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2020/03/12 00:39:54 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2020/03/12 00:39:53 | 003,263,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2020/03/12 00:39:53 | 002,870,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2020/03/12 00:39:52 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Search.ProtocolHandler.MAPI2.dll
[2020/03/12 00:39:52 | 000,368,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2020/03/12 00:39:52 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2020/03/12 00:39:52 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2020/03/12 00:39:52 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2020/03/12 00:39:51 | 001,764,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2020/03/12 00:39:51 | 000,945,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2020/03/12 00:39:51 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2020/03/12 00:39:51 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GraphicsCapture.dll
[2020/03/12 00:39:51 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssitlb.dll
[2020/03/12 00:39:51 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msscntrs.dll
[2020/03/12 00:39:49 | 002,715,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2020/03/12 00:39:49 | 000,874,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2020/03/12 00:39:49 | 000,802,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2020/03/12 00:39:49 | 000,441,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2020/03/12 00:39:49 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngcpopkeysrv.dll
[2020/03/12 00:39:49 | 000,265,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2020/03/12 00:39:48 | 003,143,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\directml.dll
[2020/03/12 00:39:47 | 002,474,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2020/03/12 00:39:47 | 001,027,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipSVC.dll
[2020/03/12 00:39:47 | 000,914,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2020/03/12 00:39:46 | 002,522,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2020/03/12 00:39:46 | 002,157,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2020/03/12 00:39:46 | 000,749,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActivationManager.dll
[2020/03/12 00:39:46 | 000,649,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidprov.dll
[2020/03/12 00:39:45 | 001,751,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2020/03/12 00:39:45 | 001,149,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ApplyTrustOffline.exe
[2020/03/12 00:39:45 | 000,433,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountExtension.dll
[2020/03/12 00:39:45 | 000,273,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountCloudAP.dll
[2020/03/12 00:39:45 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountTokenProvider.dll
[2020/03/12 00:39:45 | 000,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll
[2020/03/12 00:39:45 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CustomInstallExec.exe
[2020/03/12 00:39:45 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAProfileNotificationHandler.dll
[2020/03/12 00:39:44 | 002,289,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2020/03/12 00:39:43 | 003,708,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2020/03/12 00:39:43 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2020/03/12 00:39:43 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2020/03/12 00:39:43 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSManMigrationPlugin.dll
[2020/03/12 00:39:43 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmRes.dll
[2020/03/12 00:39:43 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsmprovhost.exe
[2020/03/12 00:39:43 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSManHTTPConfig.exe
[2020/03/12 00:39:43 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAgent.dll
[2020/03/12 00:39:43 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsmplpxy.dll
[2020/03/12 00:39:42 | 000,833,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pkeyhelper.dll
[2020/03/12 00:39:42 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2020/03/12 00:39:42 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAuto.dll
[2020/03/12 00:39:42 | 000,066,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlrmdr.exe
[2020/03/12 00:39:42 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mpnotify.exe
[2020/03/12 00:39:41 | 004,622,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2020/03/12 00:39:41 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dot3msm.dll
[2020/03/12 00:39:41 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dot3api.dll
[2020/03/12 00:39:41 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiredNetworkCSP.dll
[2020/03/12 00:39:40 | 001,057,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2020/03/12 00:39:40 | 000,782,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2020/03/12 00:39:40 | 000,259,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2020/03/12 00:39:40 | 000,128,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2020/03/12 00:39:40 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cellulardatacapabilityhandler.dll
[2020/03/12 00:39:39 | 001,092,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmCoreProvisioning.dll
[2020/03/12 00:39:39 | 000,048,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tbs.dll
[2020/03/12 00:39:39 | 000,029,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tbs.sys
[2020/03/12 00:39:39 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmCertResources.dll
[2020/03/12 00:39:38 | 000,379,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2020/03/12 00:39:38 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2020/03/12 00:39:38 | 000,271,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2020/03/12 00:39:38 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2020/03/12 00:39:38 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provpackageapidll.dll
[2020/03/12 00:39:38 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2020/03/12 00:39:38 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2020/03/12 00:39:38 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2020/03/12 00:39:38 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2020/03/12 00:39:37 | 001,180,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2020/03/12 00:39:37 | 000,863,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2020/03/12 00:39:37 | 000,637,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2020/03/12 00:39:37 | 000,540,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2020/03/12 00:39:37 | 000,291,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceDirectoryClient.dll
[2020/03/12 00:39:37 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2020/03/12 00:39:37 | 000,180,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2020/03/12 00:39:37 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2020/03/12 00:39:37 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2020/03/12 00:39:37 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2020/03/12 00:39:37 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2020/03/12 00:39:37 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FaxPrinterInstaller.dll
[2020/03/12 00:39:36 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Acx01000.sys
[2020/03/12 00:39:36 | 000,250,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\winnat.sys
[2020/03/12 00:39:36 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TetheringMgr.dll
[2020/03/12 00:39:36 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TelephonyInteractiveUser.dll
[2020/03/12 00:39:36 | 000,131,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DTUHandler.exe
[2020/03/12 00:39:36 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
[2020/03/12 00:39:36 | 000,067,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsManagementServiceWinRt.ProxyStub.dll
[2020/03/12 00:39:36 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autopilotdiag.dll
[2020/03/12 00:39:36 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TelephonyInteractiveUserRes.dll
[2020/03/12 00:39:32 | 000,878,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Service.dll
[2020/03/12 00:39:32 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2020/03/12 00:39:32 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autopilot.dll
[2020/03/12 00:39:32 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\KNetPwrDepBroker.sys
[2020/03/12 00:39:28 | 000,250,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys
[2020/03/12 00:39:28 | 000,131,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\UsbXhciCompanion.dll
[2020/03/12 00:39:28 | 000,028,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmbuspipe.dll
[2020/03/12 00:39:27 | 000,531,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2020/03/12 00:39:27 | 000,174,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storahci.sys
[2020/03/12 00:39:27 | 000,141,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2020/03/12 00:39:27 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthMini.SYS
[2020/03/12 00:39:26 | 000,355,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2020/03/12 00:39:26 | 000,222,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ataport.sys
[2020/03/12 00:39:26 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\RdpIdd.dll
[2020/03/12 00:39:26 | 000,056,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pciidex.sys
[2020/03/12 00:39:25 | 000,047,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\SecureUSBVideo.dll
[2020/03/12 00:09:43 | 000,390,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe
[2020/03/12 00:09:42 | 000,492,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe
[2020/03/12 00:07:39 | 000,001,070 | ---- | M] () -- C:\Users\Owner\Desktop\ccsetup564.exe - ショートカット.lnk
[2020/03/12 00:02:52 | 000,001,070 | ---- | M] () -- C:\Users\Owner\Desktop\HijackThis.exe - ショートカット.lnk
[2020/03/11 00:28:24 | 000,000,000 | ---- | M] () -- C:\History
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2020/03/29 01:56:24 | 000,002,032 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2020/03/25 23:12:29 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2020/03/25 02:06:18 | 000,000,017 | ---- | C] () -- C:\Users\Owner\AppData\Local\resmon.resmoncfg
[2020/03/23 02:30:34 | 000,001,293 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2020/03/23 02:30:34 | 000,001,281 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2020/03/13 03:07:33 | 000,003,420 | ---- | C] () -- C:\Users\Owner\Desktop\ccleaner.ini
[2020/03/13 02:45:39 | 000,000,998 | ---- | C] () -- C:\Users\Owner\Desktop\ccsetup564.zip - ショートカット.lnk
[2020/03/13 02:41:30 | 000,000,940 | ---- | C] () -- C:\Users\Owner\Desktop\geek.zip - ショートカット.lnk
[2020/03/12 00:42:31 | 002,031,104 | ---- | C] () -- C:\WINDOWS\SysNative\rdpnano.dll
[2020/03/12 00:42:04 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth12.bin
[2020/03/12 00:42:04 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth11.bin
[2020/03/12 00:42:04 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth10.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth9.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth8.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth7.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth6.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth5.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth4.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth3.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth2.bin
[2020/03/12 00:42:00 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth1.bin
[2020/03/12 00:07:39 | 000,001,070 | ---- | C] () -- C:\Users\Owner\Desktop\ccsetup564.exe - ショートカット.lnk
[2020/03/12 00:02:52 | 000,001,070 | ---- | C] () -- C:\Users\Owner\Desktop\HijackThis.exe - ショートカット.lnk
[2020/03/11 00:28:24 | 000,000,000 | ---- | C] () -- C:\History
[2019/11/07 02:52:36 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2019/11/07 02:40:30 | 001,101,312 | ---- | C] () -- C:\WINDOWS\SysWow64\TextInputMethodFormatter.dll
[2019/03/19 13:49:45 | 000,003,103 | ---- | C] () -- C:\WINDOWS\SysWow64\mmc.exe.config
[2019/03/19 13:49:45 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2019/03/19 13:49:44 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2019/03/19 13:46:09 | 000,019,485 | ---- | C] () -- C:\WINDOWS\SysWow64\srms-apr.dat
[2019/03/19 13:46:04 | 000,518,144 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2019/03/19 13:45:59 | 000,053,248 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2019/03/19 13:45:19 | 000,002,404 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2019/03/19 13:45:16 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2019/03/19 13:45:16 | 000,046,656 | ---- | C] () -- C:\WINDOWS\SysWow64\umpdc.dll
[2019/03/19 13:45:13 | 003,577,856 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.Analysis.dll
[2019/03/19 13:45:13 | 000,208,384 | ---- | C] () -- C:\WINDOWS\SysWow64\HeatCore.dll
[2019/03/19 13:45:13 | 000,107,008 | ---- | C] () -- C:\WINDOWS\SysWow64\WindowsDefaultHeatProcessor.dll
[2019/03/19 13:45:13 | 000,064,000 | ---- | C] () -- C:\WINDOWS\SysWow64\xboxgipsynthetic.dll
[2019/03/19 13:45:13 | 000,054,784 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.WARP.JITService.exe
[2019/03/19 13:45:07 | 000,330,752 | ---- | C] () -- C:\WINDOWS\SysWow64\ssdm.dll
[2019/03/19 13:44:58 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2019/03/19 13:44:30 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2014/04/18 16:46:28 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[color=#E56717]========== ZeroAccess Check ==========[/color]
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2020/03/12 00:39:57 | 007,905,784 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2020/03/12 00:41:39 | 006,084,344 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2019/03/19 13:43:54 | 001,031,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2019/03/19 13:45:12 | 000,810,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2019/03/19 13:44:00 | 000,532,992 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
[color=#E56717]========== Custom Scans ==========[/color]
[2020/03/25 23:17:25 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2017/10/27 02:20:40 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2013/06/14 19:04:05 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2020/04/04 00:33:27 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2013/06/14 19:13:09 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\MediaShow\6.0
[2013/06/14 19:46:32 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\MediaSync\1.0
[2014/04/23 17:17:46 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\PRINTER
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Settings
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\RetailDemo
[2019/11/08 01:39:53 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2019/11/07 04:10:30 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2013/06/14 19:13:09 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\MediaShow\6.0
[2013/06/14 19:46:32 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\MediaSync\1.0
[2014/04/23 17:17:46 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\PRINTER
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Settings
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\RetailDemo
[2019/11/08 01:39:53 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2019/11/07 03:38:14 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData
[2017/12/23 04:23:12 | 000,000,000 | -H-D | M] -- C:\Users\Owner\MicrosoftEdgeBackups
[2014/04/18 21:21:11 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2014/04/18 13:31:23 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
[2019/11/07 04:17:41 | 000,000,000 | RH-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\Burn\Burn
[2020/03/27 00:05:24 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCache\Content.MSO
[2020/03/27 00:05:25 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCache\Content.Word
[2019/11/08 00:46:03 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2016/05/18 02:46:12 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2016/05/18 02:46:12 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2014/12/25 15:30:48 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Local\VirtualStore\ProgramData
[2019/11/07 03:49:12 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2020/03/13 01:05:34 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2019/11/07 03:22:28 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2020/03/29 01:55:53 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Windows\LanguageOverlayCache
[2013/06/14 19:45:18 | 000,000,000 | -H-D | M] -- C:\Windows\msdownld.tmp
[2019/11/07 02:53:49 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2019/11/07 02:53:49 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData
[2019/11/07 03:22:28 | 000,000,000 | -H-D | M] -- C:\WINDOWS\SysNative\GroupPolicy
[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2020/04/06 01:45:05 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[color=#E56717]========== Drive Information ==========[/color]
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MQ01ABD100
Partitions: 6
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 450.00MB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 260.00MB
Starting Offset: 472907776
Hidden sectors: 0
DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 864.00GB
Starting Offset: 879755264
Hidd
- ちゃっくり
- 2020/04/07 (Tue) 01:13:33