Премини към съдържанието

Eden Ilko

Потребител
  • Публикации

    30
  • Регистрация

  • Последно онлайн

Всичко публикувано от Eden Ilko

  1. Здравейте, искам да попитам как мога да разбера с какъв вид вирус имам работа , защото лаптопа ми скоро го преинсталирах и му сложих няколко игри . И сега от време на време (често) работи бавно и сайтоввете понякога ги зарежда твърде бавно... Бях пуснал Eset Smart Security 9 да сканира , намери няколко неща и ги изтри , но проблема си остана ... Също така антивирусната ми изкарва известия ,че е блокирала някакви си сайтове без да съм влизал там. А лаптопа е Acer aspire V3-772G intel i5 4200M 2.5-3.1GHZ 4GB Ram video : Nvidia GeFroce GTX 760M След малко ще кача и файловете Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:24-01-2016 Ran by ilknur8 (administrator) on ILKNUR (25-01-2016 17:23:55) Running from C:\Users\ilknur8\Downloads Loaded Profiles: ilknur8 (Available Profiles: ilknur8) Platform: Windows 8.1 Enterprise (X64) Language: Английски (Съединени щати) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (BitTorrent Inc.) C:\Users\ilknur8\AppData\Roaming\uTorrent\uTorrent.exe (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe (BitTorrent Inc.) C:\Users\ilknur8\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (BitTorrent Inc.) C:\Users\ilknur8\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-16] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [404376 2015-08-09] () HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [uTorrent] => C:\Users\ilknur8\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-26] (BitTorrent Inc.) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50378880 2015-12-17] (Skype Technologies S.A.) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98def-ab64-11e5-825d-342387243a48} - "F:\OriginInstaller.exe" HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98ff3-ab64-11e5-825d-342387243a48} - "G:\autorun.exe" HKU\S-1-5-18\...\Run: [uTorrent] => C:\Windows\system32\config\systemprofile\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2015-12-16] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153392 2015-12-16] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{20C286A0-4331-4680-82C9-E2EE12AEC046}: [DhcpNameServer] 192.168.11.1 Tcpip\..\Interfaces\{A37C3B08-AF97-44A1-BF1D-1CAD103E8527}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-25] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-25] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\ilknur8\AppData\Roaming\Mozilla\Firefox\Profiles\7jcej0ec.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-25] () FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-25] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-25] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-17] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-25] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-25] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=sy&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Презентации) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-26] CHR Extension: (Google Документи) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-26] CHR Extension: (Google Диск) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-26] CHR Extension: (YouTube) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-26] CHR Extension: (Google Търсене) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-26] CHR Extension: (Електронни таблици от Google) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-26] CHR Extension: (Google Документи офлайн) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-26] CHR Extension: (Video Downloader All) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpaglkhbmbmhlnpnehlffkgaaapoicnk [2015-12-26] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-26] CHR Extension: (NeoBux AdAlert) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen [2016-01-06] CHR Extension: (Gmail) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-26] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2521080 2015-11-19] (ESET) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2013-04-22] (ELAN Microelectronics Corp.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-16] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-16] (NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8185464 2015-12-16] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-16] (NVIDIA Corporation) S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3905536 2014-08-11] (Qualcomm Atheros Communications, Inc.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-26] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47160 2015-12-26] (Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263528 2015-12-08] (ESET) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-27] (ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-27] (ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-27] (ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-11-27] (ESET) R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-11-27] (ESET) R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-11-27] (ESET) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-12-16] (NVIDIA Corporation) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [465624 2014-01-03] (Realsil Semiconductor Corporation) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-10-01] (Synaptics Incorporated) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-25 17:23 - 2016-01-25 17:25 - 00016454 _____ C:\Users\ilknur8\Downloads\FRST.txt 2016-01-25 17:23 - 2016-01-25 17:23 - 00000000 ____D C:\FRST 2016-01-25 17:19 - 2016-01-25 17:19 - 02370560 _____ (Farbar) C:\Users\ilknur8\Downloads\FRST64.exe 2016-01-25 00:59 - 2016-01-25 01:00 - 00000000 ____D C:\Users\ilknur8\Documents\NFSTR 2016-01-25 00:40 - 2016-01-25 00:40 - 00000000 ____D C:\Program Files (x86)\Need for Speed The Run 2016-01-24 17:31 - 2016-01-24 17:31 - 00243273 _____ C:\Users\ilknur8\Downloads\i_bpk2007.exe 2016-01-24 14:21 - 2016-01-25 13:40 - 00000000 ____D C:\Users\ilknur8\AppData\LocalLow\uTorrent 2016-01-24 14:21 - 2016-01-24 14:21 - 00077122 _____ C:\Users\ilknur8\Downloads\Need.For.Speed.The.Run-RELOADED.torrent 2016-01-22 07:14 - 2016-01-22 07:14 - 00003315 _____ C:\Users\ilknur8\Desktop\Нов текстов документ.txt 2016-01-21 22:12 - 2016-01-22 00:24 - 00000000 ____D C:\Users\ilknur8\Desktop\car 2016-01-21 21:28 - 2016-01-21 21:28 - 00003915 _____ C:\Users\ilknur8\Desktop\Untitled1.cpp 2016-01-21 00:51 - 2016-01-21 00:51 - 00000550 _____ C:\Users\ilknur8\Desktop\bg.txt 2016-01-21 00:38 - 2016-01-21 00:38 - 00003254 _____ C:\Users\ilknur8\Desktop\soc.txt 2016-01-20 02:50 - 2016-01-20 02:50 - 00001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAW - The Video Game.lnk 2016-01-20 02:50 - 2016-01-20 02:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAW - The Video Game 2016-01-20 02:50 - 2016-01-20 02:50 - 00000000 ____D C:\Program Files (x86)\SAW - The Video Game 2016-01-19 20:11 - 2016-01-19 20:11 - 00016389 _____ C:\Users\ilknur8\Downloads\SAW-RELOADED.torrent 2016-01-19 19:57 - 2016-01-19 19:57 - 00077116 _____ C:\Users\ilknur8\Downloads\SAW-The.Video.Game.Repack.torrent 2016-01-16 19:56 - 2016-01-25 13:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-01-16 19:40 - 2016-01-16 19:40 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Macromedia 2016-01-16 14:37 - 2016-01-16 15:14 - 00000000 ____D C:\Program Files\Call of Duty Black Ops III 2016-01-16 14:37 - 2016-01-16 14:37 - 00000749 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Black Ops III.lnk 2016-01-14 15:52 - 2016-01-14 15:52 - 00001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - Modern Warfare 2.lnk 2016-01-14 15:52 - 2016-01-14 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - Modern Warfare 2 2016-01-14 15:01 - 2016-01-18 14:44 - 00001631 _____ C:\Users\ilknur8\Desktop\pics - Пряк път.lnk 2016-01-14 14:59 - 2016-01-14 15:00 - 09020931 _____ C:\Users\ilknur8\Desktop\10898484_635051529954067_1677927440_n.mp4 2016-01-14 14:39 - 2016-01-21 16:19 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1451080468 2016-01-14 14:28 - 2016-01-14 15:52 - 00000000 ____D C:\Program Files (x86)\Call of Duty - Modern Warfare 2 2016-01-14 00:23 - 2016-01-14 00:23 - 00000000 ____D C:\Users\ilknur8\AppData\Local\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\ProgramData\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\Program Files\ESET 2016-01-13 21:12 - 2016-01-13 21:12 - 00086449 _____ C:\Users\ilknur8\Downloads\codmw2.iso.torrent 2016-01-13 19:25 - 2015-12-10 02:40 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-01-13 19:25 - 2015-11-17 23:07 - 01380864 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-01-13 19:24 - 2015-12-11 06:38 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-01-13 19:24 - 2015-12-11 06:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-01-13 19:24 - 2015-12-11 05:55 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-01-13 19:24 - 2015-12-11 05:50 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-01-13 19:24 - 2015-12-11 05:45 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-01-13 19:24 - 2015-12-11 05:21 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-01-13 19:24 - 2015-12-11 05:18 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-01-13 19:24 - 2015-12-11 05:09 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-01-13 19:24 - 2015-12-11 05:09 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-01-13 19:24 - 2015-12-11 05:03 - 14456832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-01-13 19:24 - 2015-12-11 04:59 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-01-13 19:24 - 2015-12-11 04:43 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-01-13 19:24 - 2015-12-11 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-01-13 19:24 - 2015-12-11 04:38 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-01-13 19:24 - 2015-12-11 04:37 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-01-13 19:24 - 2015-12-11 04:35 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-01-13 19:24 - 2015-12-11 04:26 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-01-13 19:24 - 2015-12-11 04:14 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-01-13 19:24 - 2015-12-11 04:12 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-01-13 19:24 - 2015-12-11 04:08 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-01-13 19:24 - 2015-12-11 04:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-01-13 19:22 - 2015-12-30 21:32 - 07453016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-01-13 19:22 - 2015-12-30 21:32 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-01-13 19:22 - 2015-12-30 21:32 - 01499912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-01-13 19:22 - 2015-12-07 12:56 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-01-13 19:22 - 2015-12-04 17:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-01-13 19:22 - 2015-12-03 20:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-01-13 19:22 - 2015-12-03 20:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-01-13 19:22 - 2015-12-03 20:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-01-13 19:22 - 2015-12-03 20:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-01-13 19:22 - 2015-12-03 20:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:58 - 00378880 ____C (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll 2016-01-13 19:22 - 2015-12-03 19:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-01-13 19:22 - 2015-12-03 19:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-01-13 19:22 - 2015-12-03 19:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-01-13 19:22 - 2015-12-03 19:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-01-13 19:22 - 2015-12-03 19:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-01-13 19:22 - 2015-12-03 19:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-01-13 19:22 - 2015-12-03 19:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-01-13 19:22 - 2015-12-03 18:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-01-13 19:22 - 2015-12-03 18:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-01-13 19:22 - 2015-12-02 17:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-01-13 19:22 - 2015-12-02 17:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-01-13 19:21 - 2015-12-08 21:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-01-13 19:21 - 2015-12-08 21:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-01-13 19:21 - 2015-12-03 21:42 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00106960 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2016-01-13 19:21 - 2015-12-03 21:41 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-01-13 19:21 - 2015-12-03 20:52 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-01-13 19:21 - 2015-12-03 20:52 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-01-13 19:21 - 2015-12-03 20:52 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll 2016-01-13 19:21 - 2015-12-03 20:28 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-01-13 19:21 - 2015-12-03 20:28 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-01-13 19:21 - 2015-12-03 19:51 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-01-13 19:21 - 2015-12-03 19:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-01-13 19:21 - 2015-12-03 19:13 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-01-13 19:21 - 2015-12-03 19:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-01-13 19:21 - 2015-12-03 18:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-01-10 18:32 - 2016-01-10 18:32 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-01-10 18:10 - 2016-01-10 18:10 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\TeamViewer 2016-01-10 15:32 - 2016-01-10 15:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2016-01-10 15:23 - 2016-01-10 15:23 - 00001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\fifa14-3dm - Пряк път.lnk 2016-01-10 15:08 - 2016-01-10 15:08 - 00000000 ____D C:\Users\ilknur8\Tracing 2016-01-10 14:56 - 2013-09-21 00:46 - 00000000 ____D C:\Program Files\FIFA 14 2016-01-10 14:09 - 2016-01-10 14:09 - 00032303 _____ C:\Users\ilknur8\Downloads\3DMGAME-FIFA.14.PC.Multi14.Ultimate.Edition-3DM.torrent 2016-01-10 14:09 - 2016-01-10 14:09 - 00018812 _____ C:\Users\ilknur8\Downloads\FIFA UPDATE 1&2.torrent 2016-01-07 09:29 - 2016-01-07 09:30 - 00007011 _____ C:\Users\ilknur8\Downloads\Source2.cpp 2016-01-06 18:07 - 2016-01-06 18:07 - 00000000 ____D C:\Program Files (x86)\ESET 2016-01-06 18:06 - 2016-01-06 18:07 - 02870984 _____ (ESET) C:\Users\ilknur8\Downloads\esetsmartinstaller_bgr.exe 2016-01-05 23:21 - 2016-01-05 23:21 - 00000000 ____D C:\Program Files\Common Files\Atheros 2016-01-04 20:10 - 2016-01-04 20:10 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-01-04 10:09 - 2016-01-06 00:46 - 00000401 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-01-04 10:07 - 2016-01-04 10:07 - 00000724 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk 2016-01-04 10:07 - 2016-01-04 10:07 - 00000000 ____D C:\Temp 2016-01-04 10:06 - 2016-01-04 10:06 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Intel_Corporation 2016-01-04 10:05 - 2014-09-04 15:31 - 00212660 _____ C:\Windows\system32\resTHA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00203812 _____ C:\Windows\system32\resELL.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00199652 _____ C:\Windows\system32\resRUS.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00182356 _____ C:\Windows\system32\resARA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00181828 _____ C:\Windows\system32\resJPN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00181364 _____ C:\Windows\system32\resHEB.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00176116 _____ C:\Windows\system32\resFRA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00176052 _____ C:\Windows\system32\resHUN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00174340 _____ C:\Windows\system32\resKOR.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00174004 _____ C:\Windows\system32\resDEU.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173748 _____ C:\Windows\system32\resITA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173492 _____ C:\Windows\system32\resROM.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173460 _____ C:\Windows\system32\resESN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173444 _____ C:\Windows\system32\resSKY.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173044 _____ C:\Windows\system32\resPLK.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00172676 _____ C:\Windows\system32\resNLD.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171876 _____ C:\Windows\system32\resPTB.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171860 _____ C:\Windows\system32\resTRK.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171796 _____ C:\Windows\system32\resCSY.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171332 _____ C:\Windows\system32\resPTG.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171156 _____ C:\Windows\system32\resFIN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170548 _____ C:\Windows\system32\resHRV.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170020 _____ C:\Windows\system32\resSLV.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170004 _____ C:\Windows\system32\resSVE.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00168788 _____ C:\Windows\system32\resNOR.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00168132 _____ C:\Windows\system32\resDAN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00166660 _____ C:\Windows\system32\resENU.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00164836 _____ C:\Windows\system32\resCHT.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00163652 _____ C:\Windows\system32\resCHS.cui 2016-01-04 10:04 - 2016-01-04 10:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-01-04 10:04 - 2015-08-09 14:50 - 02048512 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00707584 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00355232 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00324512 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00296432 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00288688 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00257968 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00240128 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll 2016-01-04 10:04 - 2014-09-04 15:31 - 00453872 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2016-01-04 10:04 - 2014-09-04 15:31 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3907.dll 2016-01-04 10:04 - 2014-09-04 15:31 - 00000895 _____ C:\Windows\system32\Gfxv2_0.exe.config 2016-01-04 10:04 - 2014-09-04 15:31 - 00000895 _____ C:\Windows\system32\DPTopologyAppv2_0.exe.config 2016-01-04 09:53 - 2015-08-09 14:50 - 00404376 _____ C:\Windows\system32\igfxTray.exe 2016-01-04 09:53 - 2013-04-23 02:04 - 00109056 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3131.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 08901632 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 02384896 _____ C:\Windows\system32\GfxRes.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00353280 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00108032 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00001806 _____ C:\Windows\system32\GfxUIEx.exe.config 2016-01-04 09:53 - 2013-04-23 01:56 - 00000935 _____ C:\Windows\system32\CustomModeApp.exe.config 2016-01-04 09:52 - 2016-01-04 10:07 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-01-04 09:52 - 2016-01-04 09:52 - 00964342 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-01-04 09:52 - 2016-01-04 09:52 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Intel Corporation 2016-01-04 09:43 - 2013-08-21 15:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2016-01-04 00:59 - 2016-01-04 00:59 - 00002990 _____ C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____D C:\Users\ilknur8\Intel 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____D C:\Program Files\Synaptics 2016-01-04 00:58 - 2014-10-01 08:24 - 00751344 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00566000 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2016-01-04 00:58 - 2014-10-01 08:24 - 00408304 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00255216 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00212208 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo20.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00031472 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2016-01-04 00:53 - 2016-01-04 00:53 - 00000000 ____D C:\Program Files\Elantech 2016-01-04 00:52 - 2013-04-22 09:09 - 00367504 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\Drivers\ETD.sys 2016-01-04 00:49 - 2016-01-04 00:51 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros 2016-01-04 00:49 - 2016-01-04 00:50 - 00000000 ____D C:\ProgramData\Qualcomm Atheros 2016-01-04 00:49 - 2016-01-04 00:49 - 00000000 ____D C:\Windows\Options 2016-01-04 00:49 - 2014-08-11 01:39 - 03905536 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwbx.sys 2016-01-01 19:34 - 2016-01-01 19:34 - 00000912 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3.lnk 2016-01-01 19:25 - 2016-01-01 19:34 - 00000000 ____D C:\Program Files (x86)\Crysis 3 2015-12-31 19:46 - 2016-01-13 21:32 - 00000000 ____D C:\Windows\system32\appraiser 2015-12-31 14:40 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-31 14:40 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-31 14:01 - 2016-01-20 17:55 - 00000000 ____D C:\Windows\system32\MRT 2015-12-30 19:23 - 2015-12-30 19:23 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Notepad++ 2015-12-30 16:30 - 2015-09-29 14:24 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys 2015-12-30 16:30 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2015-12-30 16:30 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2015-12-30 16:30 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll 2015-12-30 16:30 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-12-30 16:30 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2015-12-30 16:30 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys 2015-12-30 16:30 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe 2015-12-30 16:30 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe 2015-12-30 16:29 - 2015-09-04 21:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys 2015-12-30 16:29 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-12-30 16:29 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-12-30 16:29 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-12-30 16:29 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-12-30 16:29 - 2015-08-29 00:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe 2015-12-30 16:29 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-12-30 16:29 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2015-12-30 16:29 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-12-30 16:29 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-12-30 16:29 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys 2015-12-30 16:29 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll 2015-12-30 16:29 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll 2015-12-30 16:29 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll 2015-12-30 16:29 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll 2015-12-30 16:28 - 2015-11-05 10:59 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2015-12-30 16:28 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-12-30 16:28 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-12-30 16:28 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-12-30 16:28 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-12-30 16:28 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-12-30 16:28 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-12-30 16:28 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-12-30 16:28 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-12-30 16:28 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-12-30 16:28 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-12-30 16:28 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-12-30 16:28 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-12-30 16:28 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-12-30 16:28 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2015-12-30 16:28 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2015-12-30 16:28 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2015-12-30 16:28 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2015-12-30 16:28 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2015-12-30 16:28 - 2015-05-11 20:17 - 01201664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2015-12-30 16:28 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll 2015-12-30 16:28 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2015-12-30 16:28 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll 2015-12-30 16:28 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll 2015-12-30 16:28 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll 2015-12-30 16:28 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll 2015-12-30 16:28 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys 2015-12-30 16:28 - 2015-01-30 05:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys 2015-12-30 16:27 - 2015-10-13 19:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2015-12-30 16:27 - 2015-10-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2015-12-30 16:27 - 2015-08-27 04:43 - 22372152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-12-30 16:27 - 2015-08-27 04:42 - 19795904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-12-30 16:26 - 2015-11-11 17:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-12-30 16:26 - 2015-11-11 17:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-12-30 16:26 - 2015-11-10 02:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-12-30 16:26 - 2015-11-10 02:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-12-30 16:26 - 2015-11-10 02:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-12-30 16:26 - 2015-11-10 01:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-12-30 16:26 - 2015-11-10 01:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-12-30 16:26 - 2015-11-10 01:36 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-12-30 16:26 - 2015-11-10 01:25 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2015-12-30 16:26 - 2015-11-09 00:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-12-30 16:26 - 2015-11-09 00:02 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-12-30 16:26 - 2015-11-08 23:32 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-12-30 16:26 - 2015-11-08 23:32 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-12-30 16:26 - 2015-11-08 23:18 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-12-30 16:26 - 2015-11-08 23:16 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-12-30 16:26 - 2015-11-08 23:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-12-30 16:26 - 2015-11-08 23:13 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-12-30 16:26 - 2015-11-08 22:53 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2015-12-30 16:26 - 2015-10-10 19:20 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll 2015-12-30 16:26 - 2015-09-10 19:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-12-30 16:26 - 2015-09-10 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-12-30 16:26 - 2015-09-10 18:17 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-12-30 16:26 - 2015-09-10 18:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-12-30 16:26 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-12-30 16:26 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-12-30 16:26 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-12-30 16:26 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2015-12-30 16:26 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-12-30 16:26 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2015-12-30 16:26 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-12-30 16:26 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-12-30 16:26 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-12-30 16:26 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-12-30 16:26 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll 2015-12-30 16:26 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll 2015-12-30 16:26 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll 2015-12-30 16:26 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2015-12-30 16:26 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2015-12-30 16:26 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2015-12-30 16:24 - 2015-10-03 21:41 - 01385280 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2015-12-30 16:24 - 2015-10-03 21:41 - 01124384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2015-12-30 16:24 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2015-12-30 16:24 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2015-12-30 16:24 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2015-12-30 16:24 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2015-12-30 16:24 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2015-12-30 16:24 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2015-12-30 16:24 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2015-12-30 16:24 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2015-12-30 16:24 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2015-12-30 16:24 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2015-12-30 16:24 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2015-12-30 16:24 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2015-12-30 16:24 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2015-12-30 16:24 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2015-12-30 16:24 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll 2015-12-30 16:24 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll 2015-12-30 16:24 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2015-12-30 16:24 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2015-12-30 16:24 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2015-12-30 16:24 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2015-12-30 16:24 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll 2015-12-30 16:21 - 2015-11-22 08:59 - 01659568 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-12-30 16:21 - 2015-11-22 08:59 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2015-12-30 16:21 - 2015-11-22 08:59 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-12-30 16:21 - 2015-11-22 08:59 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2015-12-30 16:21 - 2015-11-21 20:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-12-30 16:21 - 2015-11-21 19:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-12-30 16:21 - 2015-11-21 18:59 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2015-12-30 16:21 - 2015-11-21 18:49 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2015-12-30 16:21 - 2015-11-21 18:47 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2015-12-30 16:21 - 2015-11-21 18:40 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2015-12-30 16:21 - 2015-11-09 02:41 - 01540728 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2015-12-30 16:21 - 2015-11-09 00:30 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-12-30 16:21 - 2015-11-08 23:23 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-12-30 16:21 - 2015-11-08 23:13 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-12-30 16:21 - 2015-11-08 23:01 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2015-12-30 16:21 - 2015-11-08 22:52 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-12-30 16:21 - 2015-11-08 22:48 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2015-12-30 16:21 - 2015-11-08 22:42 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2015-12-30 16:21 - 2015-09-07 18:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2015-12-30 16:21 - 2015-09-07 18:21 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll 2015-12-30 16:21 - 2015-09-07 18:17 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll 2015-12-30 16:21 - 2015-09-07 17:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2015-12-30 16:21 - 2015-09-07 17:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2015-12-30 16:21 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-12-30 16:21 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-12-30 16:21 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-12-30 16:21 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-12-30 16:21 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2015-12-30 16:21 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2015-12-30 16:21 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-12-30 16:21 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-12-30 16:21 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll 2015-12-30 16:21 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-12-30 16:21 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-12-30 16:21 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2015-12-30 16:20 - 2015-11-21 00:47 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-12-30 16:20 - 2015-11-20 20:18 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-12-30 16:20 - 2015-11-20 18:58 - 03706880 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-12-30 16:20 - 2015-11-20 18:47 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-12-30 16:20 - 2015-11-20 18:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-12-30 16:20 - 2015-11-20 18:44 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2015-12-30 16:20 - 2015-11-20 18:44 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-12-30 16:20 - 2015-11-20 18:43 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-12-30 16:20 - 2015-11-20 18:42 - 02243584 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-12-30 16:20 - 2015-11-20 18:30 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-12-30 16:20 - 2015-11-20 18:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-12-30 16:20 - 2015-11-20 18:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-12-30 16:20 - 2015-11-20 18:27 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-12-30 16:20 - 2015-10-15 18:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-12-30 16:20 - 2015-10-15 17:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-12-30 16:20 - 2015-09-24 19:51 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe 2015-12-30 16:20 - 2015-09-24 19:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll 2015-12-30 16:20 - 2015-09-24 19:30 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll 2015-12-30 16:20 - 2015-09-24 18:42 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2015-12-30 16:20 - 2015-09-24 18:40 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2015-12-30 16:20 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-12-30 16:20 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-12-30 16:20 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-12-30 16:20 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-12-30 16:20 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2015-12-30 16:20 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2015-12-30 16:20 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2015-12-30 16:20 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2015-12-30 16:20 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2015-12-30 16:20 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2015-12-30 16:20 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-12-30 16:20 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2015-12-30 16:20 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2015-12-30 16:20 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2015-12-30 16:20 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2015-12-30 16:20 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-12-30 16:20 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-12-30 16:20 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-12-30 16:20 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2015-12-30 16:20 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll 2015-12-30 16:20 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2015-12-30 16:19 - 2015-10-28 17:49 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-12-30 16:19 - 2015-10-28 17:29 - 02462720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-12-30 16:18 - 2015-10-11 08:34 - 00468824 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2015-12-30 16:18 - 2015-10-11 08:34 - 00462168 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00443224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00092504 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00027992 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2015-12-30 16:18 - 2015-10-10 20:41 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2015-12-30 16:18 - 2015-10-10 20:41 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2015-12-30 16:18 - 2015-10-10 20:40 - 00078848 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys 2015-12-30 16:18 - 2015-10-08 18:11 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll 2015-12-30 16:18 - 2015-10-08 17:50 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll 2015-12-30 16:18 - 2015-09-12 15:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml 2015-12-30 16:18 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-12-30 16:18 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll 2015-12-30 16:18 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2015-12-30 16:18 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll 2015-12-30 16:18 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll 2015-12-30 16:18 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2015-12-30 16:18 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2015-12-30 16:18 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2015-12-30 16:18 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-12-30 16:18 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-12-30 16:18 - 2015-03-09 04:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsp.sys 2015-12-30 16:18 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll 2015-12-30 16:18 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll 2015-12-30 16:17 - 2015-10-05 20:28 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe 2015-12-30 16:17 - 2015-10-05 20:25 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2015-12-30 16:17 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2015-12-30 16:17 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll 2015-12-30 16:17 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll 2015-12-30 16:17 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2015-12-30 16:17 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2015-12-30 16:17 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll 2015-12-30 16:17 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-12-30 16:17 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls 2015-12-30 16:17 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\system32\locale.nls 2015-12-30 16:17 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-12-30 16:17 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2015-12-30 16:17 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2015-12-30 16:17 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2015-12-30 16:17 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2015-12-30 16:17 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2015-12-30 16:17 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2015-12-30 16:17 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2015-12-30 16:17 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2015-12-30 16:17 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2015-12-30 16:17 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2015-12-30 16:17 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2015-12-30 16:17 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2015-12-30 16:17 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2015-12-30 16:17 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2015-12-30 16:17 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2015-12-30 16:17 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2015-12-30 16:17 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2015-12-30 16:17 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-12-30 16:17 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe 2015-12-30 16:17 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2015-12-30 16:17 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll 2015-12-30 16:17 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2015-12-30 16:17 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2015-12-30 16:17 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2015-12-30 16:17 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2015-12-30 16:17 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2015-12-30 16:17 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2015-12-30 16:17 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2015-12-30 16:17 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2015-12-30 16:17 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll 2015-12-30 16:17 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2015-12-30 16:17 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-12-30 16:17 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe 2015-12-30 16:16 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-12-30 16:16 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-12-30 16:16 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-12-30 16:16 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2015-12-30 16:16 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe 2015-12-30 16:16 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-12-30 16:16 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2015-12-30 16:16 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe 2015-12-30 16:16 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-12-30 16:16 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-12-30 16:16 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-12-30 16:16 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-12-30 16:16 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe 2015-12-30 16:16 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe 2015-12-30 16:16 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe 2015-12-30 16:16 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2015-12-30 16:16 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-12-30 16:16 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-12-30 16:15 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe 2015-12-30 16:15 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-12-30 16:15 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2015-12-30 16:15 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2015-12-30 16:15 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2015-12-30 16:15 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-12-30 16:15 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll 2015-12-30 16:15 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2015-12-30 16:15 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-12-30 16:15 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll 2015-12-30 16:15 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2015-12-30 16:15 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2015-12-30 16:14 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-12-30 16:14 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll 2015-12-30 16:14 - 2015-07-10 21:06 - 00118272 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys 2015-12-30 16:13 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll 2015-12-30 16:13 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2015-12-30 16:13 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2015-12-30 15:21 - 2015-12-30 15:21 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\The Creative Assembly 2015-12-30 15:21 - 2015-12-30 15:21 - 00000000 ____D C:\ProgramData\Steam 2015-12-30 15:18 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-12-30 14:58 - 2016-01-06 18:29 - 00000000 ____D C:\Program Files\Total War Attila 2015-12-30 14:58 - 2015-12-30 14:58 - 00000665 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War Attila.lnk 2015-12-30 13:19 - 2015-12-30 13:19 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\MK10 2015-12-30 13:13 - 2015-12-30 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mortal Kombat X - Premium Edition 2015-12-30 12:10 - 2015-12-30 12:57 - 00000000 ____D C:\Program Files (x86)\Mortal Kombat X - Premium Edition 2015-12-28 23:30 - 2015-12-28 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Making History The Great War 2015-12-28 23:27 - 2015-12-28 23:30 - 00000000 ____D C:\Program Files (x86)\Making History The Great War 2015-12-28 22:45 - 2015-12-28 22:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-12-27 23:28 - 2016-01-16 19:38 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Mozilla 2015-12-27 23:28 - 2015-12-27 23:28 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Mozilla 2015-12-27 20:55 - 2015-10-08 18:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2015-12-27 20:55 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2015-12-27 20:55 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2015-12-27 20:55 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2015-12-27 20:55 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2015-12-27 20:55 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2015-12-27 20:55 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-12-27 20:55 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2015-12-27 13:00 - 2016-01-20 02:55 - 00000000 ____D C:\Users\ilknur8\Documents\My Games 2015-12-27 13:00 - 2015-12-27 13:00 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Steam 2015-12-27 12:54 - 2015-12-27 12:54 - 00000000 ____D C:\Users\ilknur8\AppData\LocalLow\Adobe 2015-12-27 12:54 - 2015-12-27 12:54 - 00000000 ____D C:\Users\ilknur8\AppData\Local\CEF 2015-12-27 12:54 - 2015-12-27 12:54 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Adobe 2015-12-27 11:35 - 2015-12-29 00:41 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\NVIDIA 2015-12-27 02:08 - 2016-01-04 00:03 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieUserList 2015-12-27 02:08 - 2016-01-04 00:03 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieBrowserModeList 2015-12-27 02:07 - 2016-01-25 13:43 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8A1F5E07-DB7A-41E0-BE8F-9069BA56B8EA} 2015-12-27 02:07 - 2016-01-04 00:03 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieSiteList 2015-12-27 02:07 - 2015-12-27 02:07 - 00000000 __SHD C:\Users\ilknur8\AppData\Local\EmieUserList 2015-12-27 02:07 - 2015-12-27 02:07 - 00000000 __SHD C:\Users\ilknur8\AppData\Local\EmieSiteList 2015-12-27 02:07 - 2015-12-27 02:07 - 00000000 __SHD C:\Users\ilknur8\AppData\Local\EmieBrowserModeList 2015-12-26 22:25 - 2015-12-26 22:25 - 00000000 ____D C:\Windows\system32\bg 2015-12-26 21:52 - 2015-12-26 21:52 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Opera Software 2015-12-26 21:52 - 2015-12-26 21:52 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Opera Software 2015-12-26 21:51 - 2016-01-05 22:12 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\vlc 2015-12-26 21:51 - 2015-12-26 21:51 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\GRETECH 2015-12-26 21:51 - 2015-12-26 21:51 - 00000000 ____D C:\ProgramData\GRETECH 2015-12-26 15:17 - 2015-12-26 15:17 - 00000000 ____D C:\ProgramData\Origin 2015-12-26 15:13 - 2016-01-08 11:13 - 00000000 ____D C:\Users\ilknur8\AppData\Local\CrashDumps 2015-12-26 15:05 - 2015-12-26 15:18 - 00000000 ____D C:\Program Files (x86)\FIFA 15 2015-12-26 13:11 - 2016-01-24 15:53 - 00885760 ___SH C:\Users\ilknur8\Desktop\Thumbs.db 2015-12-26 13:07 - 2015-12-26 13:07 - 00001008 _____ C:\Users\ilknur8\Desktop\Dev-C++.lnk 2015-12-26 13:07 - 2015-12-26 13:07 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Dev-Cpp 2015-12-26 13:07 - 2015-12-26 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++ 2015-12-26 13:06 - 2015-12-26 13:06 - 00000000 ____D C:\Program Files (x86)\Dev-Cpp 2015-12-26 12:47 - 2009-07-22 10:17 - 00111640 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2015-12-26 12:47 - 2009-07-22 10:17 - 00079896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2015-12-26 12:47 - 2009-07-22 10:17 - 00078872 _____ (Microsoft Corporation) C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2015-12-26 12:47 - 2009-07-22 10:17 - 00050200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2015-12-26 12:46 - 2015-12-26 12:46 - 00000000 ____D C:\Windows\system32\RsFx 2015-12-26 12:46 - 2015-12-26 12:46 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0 2015-12-26 12:45 - 2015-12-26 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2015-12-26 12:41 - 2015-12-26 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework 2015-12-26 12:40 - 2015-12-26 12:40 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2015-12-26 12:40 - 2015-12-26 12:40 - 00000000 ____D C:\Program Files\Microsoft Sync Framework 2015-12-26 12:40 - 2015-12-26 12:40 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2015-12-26 12:40 - 2015-12-26 12:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services 2015-12-26 12:40 - 2015-12-26 12:40 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2015-12-26 12:38 - 2015-12-26 12:38 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2015-12-26 12:37 - 2015-12-26 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK 2015-12-26 12:36 - 2015-12-26 12:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-12-26 12:35 - 2015-12-26 12:35 - 00000000 ____D C:\Program Files\IIS 2015-12-26 12:35 - 2015-12-26 12:35 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2015-12-26 12:35 - 2015-12-26 12:35 - 00000000 ____D C:\Program Files (x86)\IIS 2015-12-26 12:34 - 2016-01-21 22:12 - 00000000 ____D C:\Users\ilknur8\Documents\Visual Studio 2010 2015-12-26 12:34 - 2015-12-26 12:34 - 00000000 ____D C:\Users\ilknur8\Documents\Visual Studio 2008 2015-12-26 12:30 - 2015-12-26 12:45 - 00000000 ____D C:\Windows\SysWOW64\1033 2015-12-26 12:29 - 2015-12-26 12:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0 2015-12-26 12:29 - 2015-12-26 12:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 2015-12-26 12:29 - 2015-12-26 12:32 - 00000000 ____D C:\Program Files (x86)\Microsoft F# 2015-12-26 12:29 - 2015-12-26 12:31 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop 2015-12-26 12:27 - 2015-12-26 12:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0 2015-12-26 12:26 - 2015-12-26 12:45 - 00000000 ____D C:\Windows\system32\1033 2015-12-26 12:26 - 2015-12-26 12:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2015-12-26 12:26 - 2015-12-26 12:26 - 00000000 ____D C:\Windows\symbols 2015-12-26 12:26 - 2015-12-26 12:26 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0 2015-12-26 12:26 - 2015-12-26 12:26 - 00000000 ____D C:\Program Files\Microsoft Help Viewer 2015-12-26 12:18 - 2015-12-26 12:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-12-26 12:18 - 2015-12-26 12:18 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2015-12-26 12:17 - 2015-12-26 12:46 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2015-12-26 12:17 - 2015-12-26 12:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2015-12-26 12:17 - 2015-12-26 12:17 - 00000000 ____D C:\Windows\PCHEALTH 2015-12-26 12:15 - 2015-12-26 12:17 - 00000000 ____D C:\Program Files\Microsoft Office 2015-12-26 12:15 - 2015-12-26 12:15 - 00000000 __RHD C:\MSOCache 2015-12-26 12:15 - 2015-12-26 12:15 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Microsoft Help 2015-12-26 12:15 - 2015-12-26 12:15 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2015-12-26 12:15 - 2015-12-26 12:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2015-12-26 12:15 - 2015-12-26 12:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2015-12-26 07:36 - 2015-12-26 07:36 - 00000000 ____D C:\Windows\$ACER$ 2015-12-26 07:34 - 2015-12-26 07:34 - 00002298 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1581539752-2945848576-281638667-500 2015-12-26 02:31 - 2015-12-26 02:31 - 00255617 _____ C:\Users\ilknur8\Downloads\Call.of.Duty.Black.Ops.III-RELOADED.torrent 2015-12-26 02:30 - 2015-12-26 02:30 - 00013610 _____ C:\Users\ilknur8\Downloads\BOPS3.torrent 2015-12-26 02:19 - 2015-12-26 02:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2015-12-26 02:16 - 2015-12-26 03:15 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-12-26 02:16 - 2015-12-26 02:16 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2015-12-26 02:13 - 2015-12-26 02:13 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Nvidia Corporation 2015-12-26 02:11 - 2015-12-26 02:12 - 00000000 ____D C:\Users\ilknur8\AppData\Local\NVIDIA 2015-12-26 02:11 - 2015-12-26 02:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-12-26 02:11 - 2015-12-16 19:34 - 01846016 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-12-26 02:11 - 2015-12-16 19:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-12-26 02:11 - 2015-12-16 19:34 - 01530240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-12-26 02:11 - 2015-12-16 19:34 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-12-26 02:11 - 2015-12-16 19:34 - 00111520 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2015-12-26 02:10 - 2016-01-06 00:46 - 00000000 ____D C:\Windows\SysWOW64\NV 2015-12-26 02:10 - 2016-01-06 00:46 - 00000000 ____D C:\Windows\system32\NV 2015-12-26 02:10 - 2015-12-16 16:53 - 06359672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 02985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 02554488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 01256240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-12-26 02:10 - 2015-12-16 16:53 - 00523384 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 00385328 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 00075056 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2015-12-26 02:10 - 2015-12-16 16:53 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-12-26 02:10 - 2015-12-16 16:49 - 06090019 _____ C:\Windows\system32\nvcoproc.bin 2015-12-26 02:09 - 2015-12-26 02:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-12-26 02:05 - 2016-01-10 15:24 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Skype 2015-12-26 02:05 - 2015-12-26 02:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-12-26 02:05 - 2015-12-16 19:34 - 42977072 _____ C:\Windows\system32\nvcompiler.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 37609080 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 31061624 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 24895792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 21122456 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 20663816 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 18716176 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 17561432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 17156968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 16981976 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 16286888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 14005408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 12334200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-12-26 02:05 - 2015-12-16 19:34 - 03637352 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 03211760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 03168376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 02755704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 01915696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436143.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 01564976 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436143.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00938104 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00872056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00734512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00681592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00423264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00416376 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00370808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-12-26 02:05 - 2015-12-16 19:34 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-12-26 02:05 - 2015-12-16 19:34 - 00031352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2015-12-26 02:04 - 2015-12-26 02:05 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-12-26 02:04 - 2015-12-26 02:04 - 00000000 ____D C:\ProgramData\Skype 2015-12-26 02:01 - 2015-12-26 02:01 - 00000000 ____D C:\NVIDIA 2015-12-26 01:49 - 2015-12-26 01:49 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Disc_Soft_Ltd 2015-12-26 01:48 - 2015-12-26 01:48 - 00047160 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2015-12-26 01:47 - 2015-12-26 01:47 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2015-12-26 01:45 - 2015-12-26 12:14 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\DAEMON Tools Lite 2015-12-26 01:45 - 2015-12-26 01:48 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2015-12-26 01:45 - 2015-12-26 01:48 - 00000000 ____D C:\Program Files\DAEMON Tools Lite 2015-12-26 01:45 - 2015-12-26 01:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2015-12-26 01:44 - 2015-12-26 01:45 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2015-12-26 01:38 - 2015-12-26 02:09 - 00000000 ____D C:\Users\ilknur8\Downloads\FIFA.15.Ultimate.Team.Edition-CPY 2015-12-26 01:33 - 2015-12-26 01:33 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Macromedia 2015-12-26 01:32 - 2016-01-25 17:24 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\uTorrent 2015-12-26 01:25 - 2016-01-04 10:09 - 00015832 _____ C:\Windows\system32\results.xml 2015-12-26 01:21 - 2015-12-26 01:21 - 00000000 ____D C:\ProgramData\IntelDLM 2015-12-26 01:11 - 2016-01-04 10:04 - 00000000 ____D C:\ProgramData\Intel 2015-12-26 01:10 - 2015-12-26 15:13 - 00000000 ____D C:\ProgramData\Package Cache 2015-12-26 01:10 - 2015-12-26 01:10 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Intel 2015-12-26 01:10 - 2015-12-26 01:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility 2015-12-26 01:10 - 2015-12-26 01:10 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility 2015-12-26 00:59 - 2015-12-26 01:10 - 00000376 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2015-12-26 00:45 - 2015-12-26 00:45 - 00000000 ____D C:\Windows\SysWOW64\sda 2015-12-26 00:44 - 2016-01-04 00:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-12-26 00:44 - 2015-12-26 00:44 - 00000880 _____ C:\Users\ilknur8\Desktop\Downloads.lnk 2015-12-26 00:44 - 2015-12-26 00:44 - 00000000 ____D C:\Program Files (x86)\Realtek 2015-12-26 00:44 - 2014-01-07 08:10 - 00313048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys 2015-12-26 00:44 - 2014-01-03 10:34 - 00465624 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys 2015-12-26 00:44 - 2014-01-03 10:08 - 00291544 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys 2015-12-26 00:44 - 2014-01-03 07:33 - 00271064 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys 2015-12-26 00:44 - 2014-01-03 05:14 - 00331992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUVStor.sys 2015-12-26 00:44 - 2013-04-25 12:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll 2015-12-26 00:41 - 2015-12-26 02:10 - 00000000 ____D C:\ProgramData\NVIDIA 2015-12-26 00:39 - 2015-12-26 01:14 - 00000000 ____D C:\Program Files (x86)\DriverToolkit 2015-12-26 00:39 - 2015-12-26 00:39 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\WinRAR 2015-12-26 00:39 - 2015-12-26 00:39 - 00000000 ____D C:\Users\ilknur8\AppData\Local\DriverToolkit 2015-12-26 00:38 - 2015-12-26 02:11 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-12-26 00:38 - 2015-12-26 02:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-12-26 00:32 - 2016-01-05 22:11 - 00007661 _____ C:\Users\ilknur8\AppData\Local\Resmon.ResmonCfg 2015-12-26 00:16 - 2016-01-25 13:40 - 00000000 __SHD C:\Users\ilknur8\IntelGraphicsProfiles 2015-12-26 00:14 - 2016-01-06 00:46 - 00000000 ____D C:\Intel 2015-12-26 00:14 - 2016-01-04 10:04 - 00000000 ____D C:\Program Files\Intel 2015-12-26 00:14 - 2016-01-04 10:04 - 00000000 ____D C:\Program Files (x86)\Intel 2015-12-26 00:14 - 2015-08-09 14:50 - 00096752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2015-12-26 00:14 - 2015-08-09 14:50 - 00092648 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2015-12-26 00:12 - 2016-01-25 13:50 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1581539752-2945848576-281638667-1002 2015-12-26 00:07 - 2016-01-23 22:09 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Packages 2015-12-26 00:07 - 2015-12-27 12:54 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Adobe 2015-12-26 00:07 - 2015-12-27 12:11 - 00000000 ____D C:\Users\ilknur8\AppData\Local\VirtualStore 2015-12-26 00:07 - 2015-12-26 02:47 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Google 2015-12-26 00:07 - 2015-12-26 00:07 - 00001442 _____ C:\Users\ilknur8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-12-26 00:07 - 2015-12-26 00:07 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2015-12-26 00:05 - 2016-01-10 15:08 - 00000000 ____D C:\Users\ilknur8 2015-12-26 00:05 - 2015-12-26 00:05 - 00000020 ___SH C:\Users\ilknur8\ntuser.ini 2015-12-26 00:05 - 2015-12-26 00:05 - 00000000 _SHDL C:\Users\ilknur8\My Documents 2015-12-26 00:05 - 2015-12-26 00:05 - 00000000 _SHDL C:\Users\ilknur8\Documents\My Videos 2015-12-26 00:05 - 2015-12-26 00:05 - 00000000 _SHDL C:\Users\ilknur8\Documents\My Pictures 2015-12-26 00:05 - 2015-12-26 00:05 - 00000000 _SHDL C:\Users\ilknur8\Documents\My Music 2015-12-26 00:05 - 2015-12-25 23:47 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Sun 2015-12-26 00:05 - 2014-11-21 09:47 - 00000369 _____ C:\Users\ilknur8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2015-12-26 00:05 - 2014-11-21 09:47 - 00000369 _____ C:\Users\ilknur8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2015-12-26 00:04 - 2015-12-26 00:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-26 00:04 - 2015-12-26 00:04 - 00000000 ____D C:\Program Files\WinRAR 2015-12-26 00:00 - 2015-12-26 00:00 - 00000000 ____D C:\Program Files (x86)\Winamp ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-25 17:23 - 2013-08-22 15:36 - 00000000 ____D C:\Windows 2016-01-25 17:05 - 2015-12-25 23:31 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-25 16:48 - 2015-12-25 23:38 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-25 13:48 - 2015-12-25 23:38 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-25 13:40 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2016-01-25 13:39 - 2015-12-25 23:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-01-25 13:39 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-25 02:50 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-01-21 16:19 - 2015-12-25 23:54 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-01-21 16:19 - 2015-12-25 23:54 - 00000000 ____D C:\Program Files (x86)\Opera 2016-01-20 18:22 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2016-01-20 17:48 - 2015-12-25 22:45 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-01-20 15:26 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports 2016-01-18 15:50 - 2015-07-04 23:13 - 00000000 ____D C:\Users\ilknur8\Documents\FIFA 14 2016-01-15 15:58 - 2015-12-25 23:38 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-01-14 08:45 - 2014-11-21 09:39 - 00957244 _____ C:\Windows\system32\PerfStringBackup.INI 2016-01-14 00:23 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP 2016-01-13 21:32 - 2014-11-21 16:04 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-01-13 20:25 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2016-01-13 19:18 - 2015-12-25 23:03 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2016-01-13 19:17 - 2015-12-25 23:03 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-01-10 18:21 - 2013-08-22 16:44 - 00482952 _____ C:\Windows\system32\FNTCACHE.DAT 2016-01-10 16:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2016-01-07 20:35 - 2013-08-22 15:25 - 00000167 _____ C:\Windows\win.ini 2016-01-07 20:34 - 2014-11-21 09:19 - 00000000 ____D C:\Windows\ShellNew 2016-01-07 20:34 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-01-06 17:06 - 2015-12-08 13:28 - 00000000 ____D C:\Users\ilknur8\Desktop\Aquasafe 2016-01-06 15:58 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-01-05 22:04 - 2014-11-21 16:11 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-01-05 22:04 - 2014-11-21 16:11 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-02 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat 2016-01-01 19:19 - 2015-07-06 21:12 - 00000000 ____D C:\Users\ilknur8\Desktop\Books 2015-12-31 19:47 - 2014-11-21 09:19 - 00000000 ____D C:\Program Files\Windows Journal 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-12-28 22:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF 2015-12-26 22:25 - 2014-11-21 08:54 - 00000000 ____D C:\Windows\SysWOW64\WCN 2015-12-26 22:25 - 2014-11-21 08:54 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2015-12-26 22:25 - 2014-11-21 08:54 - 00000000 ____D C:\Windows\system32\WCN 2015-12-26 22:25 - 2014-11-21 08:54 - 00000000 ____D C:\Windows\system32\slmgr 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System 2015-12-26 22:25 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-12-26 22:25 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe 2015-12-26 22:25 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep 2015-12-26 22:25 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe 2015-12-26 22:25 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing 2015-12-26 14:55 - 2015-11-23 17:43 - 00000000 ____D C:\Users\ilknur8\Documents\Rockstar Games 2015-12-26 14:55 - 2015-10-24 20:05 - 00000000 ____D C:\Users\ilknur8\Documents\RegRun2 2015-12-26 14:55 - 2015-09-30 23:54 - 00000000 ____D C:\Users\ilknur8\Documents\Visual Studio 2015 2015-12-26 14:55 - 2015-09-17 10:40 - 00000000 ____D C:\Users\ilknur8\Documents\Sports Interactive 2015-12-26 14:54 - 2015-07-04 23:41 - 00000000 ___RD C:\Users\ilknur8\Documents\Notes 2015-12-26 14:41 - 2015-11-19 18:34 - 00001935 _____ C:\Users\ilknur8\Desktop\Зимен семестър - Shortcut.lnk 2015-12-26 14:40 - 2015-09-21 16:04 - 00001525 _____ C:\Users\ilknur8\Desktop\University - Shortcut.lnk 2015-12-26 14:39 - 2015-07-05 11:45 - 00000630 _____ C:\Users\ilknur8\Desktop\music - Shortcut.lnk 2015-12-26 14:22 - 2015-11-29 23:34 - 00000000 ____D C:\Users\ilknur8\Documents\Making History II 2015-12-26 14:22 - 2015-09-18 16:24 - 00000000 ____D C:\Users\ilknur8\Documents\KONAMI 2015-12-26 14:17 - 2015-09-18 12:04 - 00000000 ____D C:\Users\ilknur8\Documents\CPY_SAVES 2015-12-26 14:17 - 2015-07-10 09:10 - 00000000 ____D C:\Users\ilknur8\Documents\FIFA 15 2015-12-26 14:15 - 2015-12-18 12:56 - 00000000 ____D C:\Users\ilknur8\Desktop\vankata 2015-12-26 12:37 - 2015-03-09 12:16 - 00000000 ____D C:\Program Files\MSBuild 2015-12-26 12:29 - 2015-03-09 12:16 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-26 12:17 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2015-12-26 07:32 - 2013-08-22 17:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template 2015-12-26 00:17 - 2015-12-25 23:02 - 00000000 ____D C:\ProgramData\Adobe 2015-12-26 00:07 - 2015-03-09 21:13 - 00000000 ____D C:\Windows\Panther 2015-12-26 00:04 - 2013-08-22 16:45 - 00000000 ____D C:\Windows\Setup ==================== Files in the root of some directories ======= 2015-12-26 00:32 - 2016-01-05 22:11 - 0007661 _____ () C:\Users\ilknur8\AppData\Local\Resmon.ResmonCfg Some files in TEMP: ==================== C:\Users\ilknur8\AppData\Local\Temp\ose00000.exe C:\Users\ilknur8\AppData\Local\Temp\ose00001.exe C:\Users\ilknur8\AppData\Local\Temp\perplex.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-01-16 17:50 ==================== End of FRST.txt ============================ Addition.txt
  2. И благодаря много за съветите ,
  3. # DelFix v1.011 - Logfile created 30/01/2016 at 03:35:01 # Updated 18/08/2015 by Xplode # Username : ilknur8 - ILKNUR # Operating System : Windows 8.1 Enterprise (64 bits) ~ Removing disinfection tools ... Deleted : C:\FRST Deleted : C:\AdwCleaner Deleted : C:\SecurityCheck Deleted : C:\Users\ilknur8\Desktop\Addition.txt Deleted : C:\Users\ilknur8\Desktop\Fixlog.txt Deleted : C:\Users\ilknur8\Desktop\FRST.txt Deleted : C:\Users\ilknur8\Desktop\FRST64.exe Deleted : C:\Users\ilknur8\Desktop\JRT.txt Deleted : C:\Users\ilknur8\Downloads\adwcleaner_5.031.exe Deleted : C:\Users\ilknur8\Downloads\JRT.exe Deleted : HKLM\SOFTWARE\AdwCleaner ~ Cleaning system restore ... Deleted : RP #9 [Windows Update | 01/13/2016 18:21:59] Deleted : RP #10 [Windows Update | 01/17/2016 14:10:54] Deleted : RP #11 [Windows Update | 01/20/2016 15:46:45] Deleted : RP #12 [Installed DirectX | 01/24/2016 22:53:38] Deleted : RP #13 [Removed Java 8 Update 66 | 01/26/2016 14:48:28] Deleted : RP #14 [JRT Pre-Junkware Removal | 01/28/2016 12:42:22] Deleted : RP #16 [Restore Point Created by FRST | 01/28/2016 19:48:51] Deleted : RP #18 [Restore Point Created by FRST | 01/28/2016 20:17:06] New restore point created ! ########## - EOF - ##########
  4. Нямам други проблеми , а и сякаш системата се стабилизира ... , Но не съм сигурен на 100%.
  5. Fix result of Farbar Recovery Scan Tool (x64) Version:27-01-2016 Ran by ilknur8 (2016-01-28 22:17:01) Run:2 Running from C:\Users\ilknur8\Desktop Loaded Profiles: ilknur8 (Available Profiles: ilknur8) Boot Mode: Normal ============================================== fixlist content: ***************** start CreateRestorePoint: CloseProcesses: C:\Users\ilknur8\AppData\Local\Temp\ose00000.exe C:\Users\ilknur8\AppData\Local\Temp\ose00001.exe C:\Users\ilknur8\AppData\Local\Temp\perplex.dll C:\Users\ilknur8\AppData\Local\Temp\sqlite3.dll HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98def-ab64-11e5-825d-342387243a48} - "F:\OriginInstaller.exe" HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98ff3-ab64-11e5-825d-342387243a48} - "G:\autorun.exe" cmd: bitsadmin /reset /allusers cmd: netsh winsock reset catalog cmd: ipconfig /flushdns emptytemp: reboot: end ***************** Restore point was successfully created.
  6. опитах 2 пъти, и при двата случая програмата заби(в последствие и системата заби) и чаках дълго но никакъв напредък...
  7. # AdwCleaner v5.031 - Logfile created 28/01/2016 at 14:36:11 # Updated 25/01/2016 by Xplode # Database : 2016-01-25.3 [Server] # Operating system : Windows 8.1 Enterprise (x64) # Username : ilknur8 - ILKNUR # Running from : C:\Users\ilknur8\Downloads\adwcleaner_5.031.exe # Option : Cleaning # Support : http://toolslib.net/forum ***** [ Services ] ***** ***** [ Folders ] ***** [-] Folder Deleted : C:\Program Files (x86)\DriverToolkit [-] Folder Deleted : C:\Users\ilknur8\AppData\Local\DriverToolkit [-] Folder Deleted : C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen ***** [ Files ] ***** [-] File Deleted : C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-keylogger.en.softonic.com_0.localstorage [-] File Deleted : C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-keylogger.en.softonic.com_0.localstorage-journal ***** [ DLLs ] ***** ***** [ Shortcuts ] ***** ***** [ Scheduled tasks ] ***** ***** [ Registry ] ***** [-] Key Deleted : HKCU\Software\DriverToolkit [-] Key Deleted : HKLM\SOFTWARE\Classes\.bdcm [-] Key Deleted : HKLM\SOFTWARE\Classes\.bdcr ***** [ Web browsers ] ***** [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : oursurfing.com [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : oursurfing [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : oursurfing_ [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : free-keylogger.en.softonic.com [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oaepeijninfcgjdnighjnlgdkkgpnaen [-] [C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.oursurfing.com/?type=sy&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX ************************* :: "Tracing" keys removed :: Winsock settings cleared ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2501 bytes] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.2 (01.06.2016) Operating System: Windows 8.1 Enterprise x64 Ran by ilknur8 (Administrator) on зҐвў 28.01.2016 Ј. at 14:42:18,01 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 5 Successfully deleted: C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal (File) Successfully deleted: C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage (File) Successfully deleted: C:\Windows\Tasks\DriverToolkit Autorun.job (Task) Successfully deleted: C:\Windows\prefetch\DRIVERTOOLKIT.EXE-522A3A6D.pf (File) Successfully deleted: C:\Windows\prefetch\DRIVERTOOLKITINSTALLER.TMP-35FDFD00.pf (File) Registry: 0 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on зҐвў 28.01.2016 Ј. at 14:44:19,28 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Съдържанието на FRST Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016 Ran by ilknur8 (administrator) on ILKNUR (28-01-2016 14:46:47) Running from C:\Users\ilknur8\Downloads Loaded Profiles: ilknur8 (Available Profiles: ilknur8) Platform: Windows 8.1 Enterprise (X64) Language: Английски (Съединени щати) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Users\ilknur8\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-16] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [404376 2015-08-09] () HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-12-22] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [uTorrent] => C:\Users\ilknur8\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-26] (BitTorrent Inc.) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.) HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98def-ab64-11e5-825d-342387243a48} - "F:\OriginInstaller.exe" HKU\S-1-5-21-1581539752-2945848576-281638667-1002\...\MountPoints2: {9da98ff3-ab64-11e5-825d-342387243a48} - "G:\autorun.exe" HKU\S-1-5-18\...\Run: [uTorrent] => C:\Windows\system32\config\systemprofile\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2015-12-16] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153392 2015-12-16] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{20C286A0-4331-4680-82C9-E2EE12AEC046}: [DhcpNameServer] 192.168.11.1 Tcpip\..\Interfaces\{A37C3B08-AF97-44A1-BF1D-1CAD103E8527}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_72\bin\ssv.dll [2016-01-26] (Oracle Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-26] (Oracle Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\ilknur8\AppData\Roaming\Mozilla\Firefox\Profiles\7jcej0ec.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-26] () FF Plugin: @java.com/DTPlugin,version=11.72.2 -> C:\Program Files\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll [2016-01-26] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.72.2 -> C:\Program Files\Java\jre1.8.0_72\bin\plugin2\npjp2.dll [2016-01-26] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-26] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-05-21] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-25] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-25] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-05-21] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=sy&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Презентации) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-26] CHR Extension: (Google Документи) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-26] CHR Extension: (Google Диск) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-26] CHR Extension: (YouTube) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-26] CHR Extension: (Google Търсене) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-26] CHR Extension: (Електронни таблици от Google) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-26] CHR Extension: (Google Документи офлайн) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-26] CHR Extension: (Video Downloader All) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpaglkhbmbmhlnpnehlffkgaaapoicnk [2015-12-26] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-26] CHR Extension: (NeoBux AdAlert) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen [2016-01-28] CHR Extension: (Gmail) - C:\Users\ilknur8\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-26] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2521080 2015-11-19] (ESET) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2013-04-22] (ELAN Microelectronics Corp.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-16] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-16] (NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8185464 2015-12-16] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-16] (NVIDIA Corporation) S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3905536 2014-08-11] (Qualcomm Atheros Communications, Inc.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-26] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47160 2015-12-26] (Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263528 2015-12-08] (ESET) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-27] (ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-27] (ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-27] (ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-11-27] (ESET) R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-11-27] (ESET) R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-11-27] (ESET) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-12-16] (NVIDIA Corporation) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [465624 2014-01-03] (Realsil Semiconductor Corporation) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-10-01] (Synaptics Incorporated) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-28 14:46 - 2016-01-28 14:47 - 00016011 _____ C:\Users\ilknur8\Downloads\FRST.txt 2016-01-28 14:46 - 2016-01-28 14:46 - 02370560 _____ (Farbar) C:\Users\ilknur8\Downloads\FRST64.exe 2016-01-28 14:44 - 2016-01-28 14:44 - 00001137 _____ C:\Users\ilknur8\Desktop\JRT.txt 2016-01-28 14:40 - 2016-01-28 14:40 - 01609032 _____ (Malwarebytes) C:\Users\ilknur8\Downloads\JRT.exe 2016-01-28 14:38 - 2016-01-28 14:38 - 00000000 ____D C:\Users\ilknur8\AppData\LocalLow\uTorrent 2016-01-28 14:31 - 2016-01-28 14:36 - 00000000 ____D C:\AdwCleaner 2016-01-28 14:29 - 2016-01-28 14:29 - 01507840 _____ C:\Users\ilknur8\Downloads\adwcleaner_5.031.exe 2016-01-28 00:35 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2016-01-28 00:35 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2016-01-28 00:35 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll 2016-01-28 00:35 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll 2016-01-28 00:33 - 2015-12-16 19:11 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2016-01-28 00:33 - 2015-12-16 18:51 - 00868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2016-01-28 00:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-01-28 00:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL 2016-01-28 00:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-01-28 00:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-01-28 00:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-01-28 00:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL 2016-01-28 00:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-01-28 00:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-01-28 00:33 - 2015-10-22 18:21 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll 2016-01-28 00:33 - 2015-10-22 17:58 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll 2016-01-28 00:33 - 2015-10-22 16:08 - 00513456 _____ C:\Windows\SysWOW64\locale.nls 2016-01-28 00:33 - 2015-10-22 16:08 - 00513456 _____ C:\Windows\system32\locale.nls 2016-01-28 00:33 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2016-01-28 00:33 - 2014-11-17 22:17 - 00273240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2016-01-28 00:33 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2016-01-28 00:33 - 2014-11-14 08:46 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2016-01-28 00:32 - 2015-06-10 00:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2016-01-28 00:32 - 2015-06-10 00:39 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys 2016-01-28 00:32 - 2015-06-10 00:38 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2016-01-28 00:32 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2016-01-28 00:32 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2016-01-28 00:32 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2016-01-27 23:44 - 2016-01-27 23:44 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2016-01-27 23:44 - 2016-01-27 23:44 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2016-01-27 23:27 - 2016-01-27 23:27 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010 2016-01-27 23:27 - 2016-01-27 23:27 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010 2016-01-27 00:06 - 2016-01-28 14:00 - 00083968 ___SH C:\Users\ilknur8\Downloads\Thumbs.db 2016-01-26 22:31 - 2016-01-26 22:31 - 00013805 _____ C:\Users\ilknur8\Downloads\Champion League 2012 Final.torrent 2016-01-26 16:58 - 2016-01-26 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-01-26 16:58 - 2016-01-26 16:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-01-26 16:58 - 2016-01-26 16:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-01-26 16:57 - 2016-01-26 16:57 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-26 16:57 - 2016-01-26 16:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-01-26 16:57 - 2016-01-26 16:56 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-01-26 16:55 - 2016-01-26 16:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2016-01-26 16:53 - 2016-01-26 16:56 - 00000000 ____D C:\Program Files\Java 2016-01-26 16:53 - 2016-01-26 16:53 - 00000000 ____D C:\Users\ilknur8\AppData\LocalLow\Oracle 2016-01-26 16:50 - 2016-01-26 16:57 - 00000000 ____D C:\Users\ilknur8\.oracle_jre_usage 2016-01-26 16:50 - 2016-01-26 16:50 - 00000000 ____D C:\Windows\system32\appmgmt 2016-01-26 16:50 - 2016-01-26 16:50 - 00000000 ____D C:\Users\ilknur8\AppData\LocalLow\Sun 2016-01-26 16:24 - 2016-01-26 16:24 - 00000000 ____D C:\SecurityCheck 2016-01-26 15:29 - 2016-01-26 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-01-26 15:21 - 2016-01-26 15:23 - 00270806 _____ C:\Windows\ntbtlog.txt 2016-01-25 17:23 - 2016-01-28 14:46 - 00000000 ____D C:\FRST 2016-01-25 00:59 - 2016-01-25 01:00 - 00000000 ____D C:\Users\ilknur8\Documents\NFSTR 2016-01-25 00:40 - 2016-01-25 00:40 - 00000000 ____D C:\Program Files (x86)\Need for Speed The Run 2016-01-22 07:14 - 2016-01-27 03:50 - 00001718 _____ C:\Users\ilknur8\Desktop\Нов текстов документ.txt 2016-01-21 22:12 - 2016-01-22 00:24 - 00000000 ____D C:\Users\ilknur8\Desktop\car 2016-01-21 21:28 - 2016-01-21 21:28 - 00003915 _____ C:\Users\ilknur8\Desktop\Untitled1.cpp 2016-01-21 00:51 - 2016-01-21 00:51 - 00000550 _____ C:\Users\ilknur8\Desktop\bg.txt 2016-01-21 00:38 - 2016-01-21 00:38 - 00003254 _____ C:\Users\ilknur8\Desktop\soc.txt 2016-01-20 02:50 - 2016-01-20 02:50 - 00001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAW - The Video Game.lnk 2016-01-20 02:50 - 2016-01-20 02:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAW - The Video Game 2016-01-20 02:50 - 2016-01-20 02:50 - 00000000 ____D C:\Program Files (x86)\SAW - The Video Game 2016-01-16 19:56 - 2016-01-25 13:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-01-16 19:40 - 2016-01-16 19:40 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Macromedia 2016-01-16 14:37 - 2016-01-16 15:14 - 00000000 ____D C:\Program Files\Call of Duty Black Ops III 2016-01-16 14:37 - 2016-01-16 14:37 - 00000749 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Black Ops III.lnk 2016-01-14 15:52 - 2016-01-14 15:52 - 00001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - Modern Warfare 2.lnk 2016-01-14 15:52 - 2016-01-14 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - Modern Warfare 2 2016-01-14 15:01 - 2016-01-18 14:44 - 00001631 _____ C:\Users\ilknur8\Desktop\pics - Пряк път.lnk 2016-01-14 14:59 - 2016-01-14 15:00 - 09020931 _____ C:\Users\ilknur8\Desktop\10898484_635051529954067_1677927440_n.mp4 2016-01-14 14:39 - 2016-01-21 16:19 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1451080468 2016-01-14 14:28 - 2016-01-14 15:52 - 00000000 ____D C:\Program Files (x86)\Call of Duty - Modern Warfare 2 2016-01-14 00:23 - 2016-01-14 00:23 - 00000000 ____D C:\Users\ilknur8\AppData\Local\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\ProgramData\ESET 2016-01-14 00:22 - 2016-01-14 00:22 - 00000000 ____D C:\Program Files\ESET 2016-01-13 19:25 - 2015-12-10 02:40 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-01-13 19:25 - 2015-11-17 23:07 - 01380864 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-01-13 19:25 - 2015-11-17 23:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-01-13 19:24 - 2015-12-11 06:38 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-01-13 19:24 - 2015-12-11 06:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-01-13 19:24 - 2015-12-11 05:55 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-01-13 19:24 - 2015-12-11 05:50 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-01-13 19:24 - 2015-12-11 05:45 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-01-13 19:24 - 2015-12-11 05:21 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-01-13 19:24 - 2015-12-11 05:18 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-01-13 19:24 - 2015-12-11 05:09 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-01-13 19:24 - 2015-12-11 05:09 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-01-13 19:24 - 2015-12-11 05:03 - 14456832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-01-13 19:24 - 2015-12-11 04:59 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-01-13 19:24 - 2015-12-11 04:43 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-01-13 19:24 - 2015-12-11 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-01-13 19:24 - 2015-12-11 04:38 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-01-13 19:24 - 2015-12-11 04:37 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-01-13 19:24 - 2015-12-11 04:35 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-01-13 19:24 - 2015-12-11 04:26 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-01-13 19:24 - 2015-12-11 04:14 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-01-13 19:24 - 2015-12-11 04:12 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-01-13 19:24 - 2015-12-11 04:08 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-01-13 19:24 - 2015-12-11 04:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-01-13 19:22 - 2015-12-30 21:32 - 07453016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-01-13 19:22 - 2015-12-30 21:32 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-01-13 19:22 - 2015-12-30 21:32 - 01499912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-01-13 19:22 - 2015-12-07 12:56 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-01-13 19:22 - 2015-12-05 07:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-01-13 19:22 - 2015-12-05 07:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-01-13 19:22 - 2015-12-04 17:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-01-13 19:22 - 2015-12-03 20:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-01-13 19:22 - 2015-12-03 20:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-01-13 19:22 - 2015-12-03 20:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-01-13 19:22 - 2015-12-03 20:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-01-13 19:22 - 2015-12-03 20:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:58 - 00378880 ____C (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll 2016-01-13 19:22 - 2015-12-03 19:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-01-13 19:22 - 2015-12-03 19:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-01-13 19:22 - 2015-12-03 19:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-01-13 19:22 - 2015-12-03 19:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-01-13 19:22 - 2015-12-03 19:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-01-13 19:22 - 2015-12-03 19:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-01-13 19:22 - 2015-12-03 19:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-01-13 19:22 - 2015-12-03 19:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-01-13 19:22 - 2015-12-03 18:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-01-13 19:22 - 2015-12-03 18:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-01-13 19:22 - 2015-12-02 17:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-01-13 19:22 - 2015-12-02 17:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-01-13 19:21 - 2015-12-08 21:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-01-13 19:21 - 2015-12-08 21:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-01-13 19:21 - 2015-12-03 21:42 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-01-13 19:21 - 2015-12-03 21:42 - 00106960 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2016-01-13 19:21 - 2015-12-03 21:41 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-01-13 19:21 - 2015-12-03 20:52 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-01-13 19:21 - 2015-12-03 20:52 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-01-13 19:21 - 2015-12-03 20:52 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll 2016-01-13 19:21 - 2015-12-03 20:28 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-01-13 19:21 - 2015-12-03 20:28 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-01-13 19:21 - 2015-12-03 19:51 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-01-13 19:21 - 2015-12-03 19:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-01-13 19:21 - 2015-12-03 19:13 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-01-13 19:21 - 2015-12-03 19:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-01-13 19:21 - 2015-12-03 18:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-01-10 18:32 - 2016-01-10 18:32 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-01-10 18:10 - 2016-01-10 18:10 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\TeamViewer 2016-01-10 15:32 - 2016-01-10 15:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2016-01-10 15:23 - 2016-01-10 15:23 - 00001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\fifa14-3dm - Пряк път.lnk 2016-01-10 15:08 - 2016-01-10 15:08 - 00000000 ____D C:\Users\ilknur8\Tracing 2016-01-10 14:56 - 2013-09-21 00:46 - 00000000 ____D C:\Program Files\FIFA 14 2016-01-10 14:09 - 2016-01-10 14:09 - 00032303 _____ C:\Users\ilknur8\Downloads\3DMGAME-FIFA.14.PC.Multi14.Ultimate.Edition-3DM.torrent 2016-01-07 09:29 - 2016-01-07 09:30 - 00007011 _____ C:\Users\ilknur8\Downloads\Source2.cpp 2016-01-06 18:07 - 2016-01-06 18:07 - 00000000 ____D C:\Program Files (x86)\ESET 2016-01-05 23:21 - 2016-01-05 23:21 - 00000000 ____D C:\Program Files\Common Files\Atheros 2016-01-04 20:10 - 2016-01-04 20:10 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-01-04 10:09 - 2016-01-06 00:46 - 00000401 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-01-04 10:07 - 2016-01-04 10:07 - 00000724 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk 2016-01-04 10:07 - 2016-01-04 10:07 - 00000000 ____D C:\Temp 2016-01-04 10:06 - 2016-01-04 10:06 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Intel_Corporation 2016-01-04 10:05 - 2014-09-04 15:31 - 00212660 _____ C:\Windows\system32\resTHA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00203812 _____ C:\Windows\system32\resELL.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00199652 _____ C:\Windows\system32\resRUS.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00182356 _____ C:\Windows\system32\resARA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00181828 _____ C:\Windows\system32\resJPN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00181364 _____ C:\Windows\system32\resHEB.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00176116 _____ C:\Windows\system32\resFRA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00176052 _____ C:\Windows\system32\resHUN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00174340 _____ C:\Windows\system32\resKOR.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00174004 _____ C:\Windows\system32\resDEU.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173748 _____ C:\Windows\system32\resITA.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173492 _____ C:\Windows\system32\resROM.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173460 _____ C:\Windows\system32\resESN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173444 _____ C:\Windows\system32\resSKY.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00173044 _____ C:\Windows\system32\resPLK.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00172676 _____ C:\Windows\system32\resNLD.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171876 _____ C:\Windows\system32\resPTB.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171860 _____ C:\Windows\system32\resTRK.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171796 _____ C:\Windows\system32\resCSY.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171332 _____ C:\Windows\system32\resPTG.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00171156 _____ C:\Windows\system32\resFIN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170548 _____ C:\Windows\system32\resHRV.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170020 _____ C:\Windows\system32\resSLV.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00170004 _____ C:\Windows\system32\resSVE.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00168788 _____ C:\Windows\system32\resNOR.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00168132 _____ C:\Windows\system32\resDAN.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00166660 _____ C:\Windows\system32\resENU.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00164836 _____ C:\Windows\system32\resCHT.cui 2016-01-04 10:05 - 2014-09-04 15:31 - 00163652 _____ C:\Windows\system32\resCHS.cui 2016-01-04 10:04 - 2016-01-04 10:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-01-04 10:04 - 2015-08-09 14:50 - 02048512 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00707584 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00355232 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00324512 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00296432 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll 2016-01-04 10:04 - 2015-08-09 14:50 - 00288688 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00257968 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe 2016-01-04 10:04 - 2015-08-09 14:50 - 00240128 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll 2016-01-04 10:04 - 2014-09-04 15:31 - 00453872 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2016-01-04 10:04 - 2014-09-04 15:31 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3907.dll 2016-01-04 10:04 - 2014-09-04 15:31 - 00000895 _____ C:\Windows\system32\Gfxv2_0.exe.config 2016-01-04 10:04 - 2014-09-04 15:31 - 00000895 _____ C:\Windows\system32\DPTopologyAppv2_0.exe.config 2016-01-04 09:53 - 2015-08-09 14:50 - 00404376 _____ C:\Windows\system32\igfxTray.exe 2016-01-04 09:53 - 2013-04-23 02:04 - 00109056 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3131.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 08901632 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 02384896 _____ C:\Windows\system32\GfxRes.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00353280 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00108032 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2016-01-04 09:53 - 2013-04-23 01:56 - 00001806 _____ C:\Windows\system32\GfxUIEx.exe.config 2016-01-04 09:53 - 2013-04-23 01:56 - 00000935 _____ C:\Windows\system32\CustomModeApp.exe.config 2016-01-04 09:52 - 2016-01-04 10:07 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-01-04 09:52 - 2016-01-04 09:52 - 00964342 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-01-04 09:52 - 2016-01-04 09:52 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Intel Corporation 2016-01-04 09:43 - 2013-08-21 15:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2016-01-04 00:59 - 2016-01-04 00:59 - 00002990 _____ C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____D C:\Users\ilknur8\Intel 2016-01-04 00:59 - 2016-01-04 00:59 - 00000000 ____D C:\Program Files\Synaptics 2016-01-04 00:58 - 2014-10-01 08:24 - 00751344 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00566000 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2016-01-04 00:58 - 2014-10-01 08:24 - 00408304 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00255216 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00212208 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo20.dll 2016-01-04 00:58 - 2014-10-01 08:24 - 00031472 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2016-01-04 00:53 - 2016-01-04 00:53 - 00000000 ____D C:\Program Files\Elantech 2016-01-04 00:52 - 2013-04-22 09:09 - 00367504 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\Drivers\ETD.sys 2016-01-04 00:49 - 2016-01-04 00:51 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros 2016-01-04 00:49 - 2016-01-04 00:50 - 00000000 ____D C:\ProgramData\Qualcomm Atheros 2016-01-04 00:49 - 2016-01-04 00:49 - 00000000 ____D C:\Windows\Options 2016-01-04 00:49 - 2014-08-11 01:39 - 03905536 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwbx.sys 2016-01-01 19:34 - 2016-01-01 19:34 - 00000912 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3.lnk 2016-01-01 19:25 - 2016-01-01 19:34 - 00000000 ____D C:\Program Files (x86)\Crysis 3 2015-12-31 19:46 - 2016-01-13 21:32 - 00000000 ____D C:\Windows\system32\appraiser 2015-12-31 19:46 - 2015-12-31 19:46 - 00000000 ____D C:\Windows\Migration 2015-12-31 14:40 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-31 14:40 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-31 14:01 - 2016-01-20 17:55 - 00000000 ____D C:\Windows\system32\MRT 2015-12-31 01:50 - 2015-12-31 01:50 - 00014191 _____ C:\Users\ilknur8\Desktop\oriz.jpg 2015-12-30 19:23 - 2015-12-30 19:23 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Notepad++ 2015-12-30 16:30 - 2015-09-29 14:24 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys 2015-12-30 16:30 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2015-12-30 16:30 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2015-12-30 16:30 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll 2015-12-30 16:30 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-12-30 16:30 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2015-12-30 16:30 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys 2015-12-30 16:30 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe 2015-12-30 16:30 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe 2015-12-30 16:29 - 2015-09-04 21:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys 2015-12-30 16:29 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-12-30 16:29 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-12-30 16:29 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-12-30 16:29 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-12-30 16:29 - 2015-08-29 00:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe 2015-12-30 16:29 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-12-30 16:29 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2015-12-30 16:29 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-12-30 16:29 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-12-30 16:29 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys 2015-12-30 16:29 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll 2015-12-30 16:29 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll 2015-12-30 16:29 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll 2015-12-30 16:29 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll 2015-12-30 16:28 - 2015-11-05 10:59 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2015-12-30 16:28 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-12-30 16:28 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-12-30 16:28 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-12-30 16:28 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-12-30 16:28 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-12-30 16:28 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-12-30 16:28 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-12-30 16:28 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-12-30 16:28 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-12-30 16:28 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-12-30 16:28 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-12-30 16:28 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-12-30 16:28 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-12-30 16:28 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2015-12-30 16:28 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2015-12-30 16:28 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2015-12-30 16:28 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2015-12-30 16:28 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2015-12-30 16:28 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll 2015-12-30 16:28 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2015-12-30 16:28 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll 2015-12-30 16:28 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll 2015-12-30 16:28 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll 2015-12-30 16:28 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll 2015-12-30 16:28 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys 2015-12-30 16:28 - 2015-01-30 05:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys 2015-12-30 16:27 - 2015-10-13 19:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2015-12-30 16:27 - 2015-10-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2015-12-30 16:27 - 2015-08-27 04:43 - 22372152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-12-30 16:27 - 2015-08-27 04:42 - 19795904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-12-30 16:26 - 2015-11-11 17:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-12-30 16:26 - 2015-11-11 17:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-12-30 16:26 - 2015-11-10 02:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-12-30 16:26 - 2015-11-10 02:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-12-30 16:26 - 2015-11-10 02:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-12-30 16:26 - 2015-11-10 01:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-12-30 16:26 - 2015-11-10 01:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-12-30 16:26 - 2015-11-10 01:36 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-12-30 16:26 - 2015-11-10 01:25 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2015-12-30 16:26 - 2015-11-09 00:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-12-30 16:26 - 2015-11-09 00:02 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-12-30 16:26 - 2015-11-08 23:32 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-12-30 16:26 - 2015-11-08 23:32 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-12-30 16:26 - 2015-11-08 23:18 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-12-30 16:26 - 2015-11-08 23:16 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-12-30 16:26 - 2015-11-08 23:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-12-30 16:26 - 2015-11-08 23:13 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-12-30 16:26 - 2015-11-08 22:53 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2015-12-30 16:26 - 2015-10-10 19:20 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll 2015-12-30 16:26 - 2015-09-10 19:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-12-30 16:26 - 2015-09-10 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-12-30 16:26 - 2015-09-10 18:17 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-12-30 16:26 - 2015-09-10 18:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-12-30 16:26 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-12-30 16:26 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-12-30 16:26 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-12-30 16:26 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2015-12-30 16:26 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-12-30 16:26 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2015-12-30 16:26 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-12-30 16:26 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-12-30 16:26 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-12-30 16:26 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-12-30 16:26 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll 2015-12-30 16:26 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll 2015-12-30 16:26 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll 2015-12-30 16:26 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2015-12-30 16:26 - 2015-03-13 03:58 - 00016303 _____ C:\Windows\system32\ieuinit.inf 2015-12-30 16:26 - 2015-03-13 03:55 - 00016303 _____ C:\Windows\SysWOW64\ieuinit.inf 2015-12-30 16:26 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2015-12-30 16:26 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2015-12-30 16:24 - 2015-10-03 21:41 - 01385280 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2015-12-30 16:24 - 2015-10-03 21:41 - 01124384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2015-12-30 16:24 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2015-12-30 16:24 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2015-12-30 16:24 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2015-12-30 16:24 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2015-12-30 16:24 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2015-12-30 16:24 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2015-12-30 16:24 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2015-12-30 16:24 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2015-12-30 16:24 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2015-12-30 16:24 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2015-12-30 16:24 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2015-12-30 16:24 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2015-12-30 16:24 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2015-12-30 16:24 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2015-12-30 16:24 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll 2015-12-30 16:24 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll 2015-12-30 16:24 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2015-12-30 16:24 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2015-12-30 16:24 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2015-12-30 16:24 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2015-12-30 16:24 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll 2015-12-30 16:21 - 2015-11-22 08:59 - 01659568 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-12-30 16:21 - 2015-11-22 08:59 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2015-12-30 16:21 - 2015-11-22 08:59 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-12-30 16:21 - 2015-11-22 08:59 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2015-12-30 16:21 - 2015-11-21 20:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-12-30 16:21 - 2015-11-21 19:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-12-30 16:21 - 2015-11-21 18:59 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2015-12-30 16:21 - 2015-11-21 18:49 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2015-12-30 16:21 - 2015-11-21 18:47 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2015-12-30 16:21 - 2015-11-21 18:40 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2015-12-30 16:21 - 2015-11-09 02:41 - 01540728 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2015-12-30 16:21 - 2015-11-09 00:30 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-12-30 16:21 - 2015-11-08 23:23 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-12-30 16:21 - 2015-11-08 23:13 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-12-30 16:21 - 2015-11-08 23:01 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2015-12-30 16:21 - 2015-11-08 22:52 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-12-30 16:21 - 2015-11-08 22:48 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2015-12-30 16:21 - 2015-11-08 22:42 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2015-12-30 16:21 - 2015-09-07 18:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2015-12-30 16:21 - 2015-09-07 18:21 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll 2015-12-30 16:21 - 2015-09-07 18:17 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll 2015-12-30 16:21 - 2015-09-07 17:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2015-12-30 16:21 - 2015-09-07 17:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2015-12-30 16:21 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-12-30 16:21 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-12-30 16:21 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-12-30 16:21 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-12-30 16:21 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2015-12-30 16:21 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2015-12-30 16:21 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-12-30 16:21 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-12-30 16:21 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll 2015-12-30 16:21 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-12-30 16:21 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-12-30 16:21 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2015-12-30 16:20 - 2015-11-21 00:47 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-12-30 16:20 - 2015-11-20 20:18 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-12-30 16:20 - 2015-11-20 18:58 - 03706880 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-12-30 16:20 - 2015-11-20 18:47 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-12-30 16:20 - 2015-11-20 18:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-12-30 16:20 - 2015-11-20 18:44 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2015-12-30 16:20 - 2015-11-20 18:44 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-12-30 16:20 - 2015-11-20 18:43 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-12-30 16:20 - 2015-11-20 18:42 - 02243584 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-12-30 16:20 - 2015-11-20 18:30 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-12-30 16:20 - 2015-11-20 18:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-12-30 16:20 - 2015-11-20 18:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-12-30 16:20 - 2015-11-20 18:27 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-12-30 16:20 - 2015-10-15 18:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-12-30 16:20 - 2015-10-15 17:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-12-30 16:20 - 2015-09-24 19:51 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe 2015-12-30 16:20 - 2015-09-24 19:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll 2015-12-30 16:20 - 2015-09-24 19:30 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll 2015-12-30 16:20 - 2015-09-24 18:42 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2015-12-30 16:20 - 2015-09-24 18:40 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2015-12-30 16:20 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-12-30 16:20 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-12-30 16:20 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-12-30 16:20 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-12-30 16:20 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2015-12-30 16:20 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2015-12-30 16:20 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2015-12-30 16:20 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2015-12-30 16:20 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2015-12-30 16:20 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2015-12-30 16:20 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-12-30 16:20 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2015-12-30 16:20 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2015-12-30 16:20 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2015-12-30 16:20 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2015-12-30 16:20 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-12-30 16:20 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-12-30 16:20 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-12-30 16:20 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2015-12-30 16:20 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll 2015-12-30 16:20 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2015-12-30 16:19 - 2015-10-28 17:49 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-12-30 16:19 - 2015-10-28 17:29 - 02462720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-12-30 16:18 - 2015-10-11 08:34 - 00468824 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2015-12-30 16:18 - 2015-10-11 08:34 - 00462168 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00443224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00092504 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2015-12-30 16:18 - 2015-10-11 08:34 - 00027992 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2015-12-30 16:18 - 2015-10-10 20:41 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2015-12-30 16:18 - 2015-10-10 20:41 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2015-12-30 16:18 - 2015-10-10 20:40 - 00078848 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys 2015-12-30 16:18 - 2015-10-08 18:11 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll 2015-12-30 16:18 - 2015-10-08 17:50 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll 2015-12-30 16:18 - 2015-09-12 15:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml 2015-12-30 16:18 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-12-30 16:18 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll 2015-12-30 16:18 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2015-12-30 16:18 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll 2015-12-30 16:18 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll 2015-12-30 16:18 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2015-12-30 16:18 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2015-12-30 16:18 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2015-12-30 16:18 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-12-30 16:18 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-12-30 16:18 - 2015-03-09 04:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsp.sys 2015-12-30 16:18 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll 2015-12-30 16:18 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll 2015-12-30 16:17 - 2015-10-05 20:28 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe 2015-12-30 16:17 - 2015-10-05 20:25 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2015-12-30 16:17 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2015-12-30 16:17 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll 2015-12-30 16:17 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll 2015-12-30 16:17 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2015-12-30 16:17 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2015-12-30 16:17 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll 2015-12-30 16:17 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-12-30 16:17 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-12-30 16:17 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2015-12-30 16:17 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2015-12-30 16:17 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2015-12-30 16:17 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2015-12-30 16:17 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2015-12-30 16:17 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2015-12-30 16:17 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2015-12-30 16:17 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2015-12-30 16:17 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2015-12-30 16:17 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2015-12-30 16:17 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2015-12-30 16:17 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2015-12-30 16:17 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2015-12-30 16:17 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2015-12-30 16:17 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2015-12-30 16:17 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2015-12-30 16:17 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2015-12-30 16:17 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-12-30 16:17 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe 2015-12-30 16:17 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2015-12-30 16:17 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll 2015-12-30 16:17 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2015-12-30 16:17 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2015-12-30 16:17 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2015-12-30 16:17 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2015-12-30 16:17 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2015-12-30 16:17 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2015-12-30 16:17 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2015-12-30 16:17 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2015-12-30 16:17 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll 2015-12-30 16:17 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2015-12-30 16:17 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-12-30 16:17 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe 2015-12-30 16:16 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-12-30 16:16 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-12-30 16:16 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-12-30 16:16 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2015-12-30 16:16 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe 2015-12-30 16:16 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-12-30 16:16 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2015-12-30 16:16 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe 2015-12-30 16:16 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-12-30 16:16 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-12-30 16:16 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-12-30 16:16 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-12-30 16:16 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe 2015-12-30 16:16 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe 2015-12-30 16:16 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe 2015-12-30 16:16 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2015-12-30 16:16 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-12-30 16:16 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-12-30 16:15 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe 2015-12-30 16:15 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-12-30 16:15 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2015-12-30 16:15 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2015-12-30 16:15 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2015-12-30 16:15 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-12-30 16:15 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll 2015-12-30 16:15 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2015-12-30 16:15 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-12-30 16:15 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll 2015-12-30 16:15 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2015-12-30 16:15 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2015-12-30 16:14 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-12-30 16:14 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-12-30 16:14 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll 2015-12-30 16:14 - 2015-07-10 21:06 - 00118272 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys 2015-12-30 16:13 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll 2015-12-30 16:13 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2015-12-30 16:13 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2015-12-30 15:21 - 2015-12-30 15:21 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\The Creative Assembly 2015-12-30 15:21 - 2015-12-30 15:21 - 00000000 ____D C:\ProgramData\Steam 2015-12-30 15:18 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-12-30 15:18 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-12-30 14:58 - 2016-01-06 18:29 - 00000000 ____D C:\Program Files\Total War Attila 2015-12-30 14:58 - 2015-12-30 14:58 - 00000665 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War Attila.lnk 2015-12-30 13:19 - 2015-12-30 13:19 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\MK10 2015-12-30 13:13 - 2015-12-30 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mortal Kombat X - Premium Edition 2015-12-30 12:10 - 2015-12-30 12:57 - 00000000 ____D C:\Program Files (x86)\Mortal Kombat X - Premium Edition ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-28 14:42 - 2015-12-26 01:32 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\uTorrent 2016-01-28 14:42 - 2015-12-26 00:12 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1581539752-2945848576-281638667-1002 2016-01-28 14:38 - 2015-12-26 00:16 - 00000000 __SHD C:\Users\ilknur8\IntelGraphicsProfiles 2016-01-28 14:38 - 2015-12-25 23:38 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-28 14:37 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-28 14:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-01-28 14:28 - 2015-12-26 13:11 - 01261568 ___SH C:\Users\ilknur8\Desktop\Thumbs.db 2016-01-28 14:04 - 2015-12-25 23:31 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-28 13:49 - 2015-12-25 23:38 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-28 13:39 - 2015-12-27 02:07 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8A1F5E07-DB7A-41E0-BE8F-9069BA56B8EA} 2016-01-28 00:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2016-01-28 00:50 - 2013-08-22 16:44 - 00482952 _____ C:\Windows\system32\FNTCACHE.DAT 2016-01-28 00:41 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2016-01-28 00:38 - 2015-12-26 00:04 - 00000000 ____D C:\Program Files\WinRAR 2016-01-28 00:25 - 2015-12-26 12:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-01-28 00:21 - 2013-08-22 15:25 - 00000167 _____ C:\Windows\win.ini 2016-01-28 00:17 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-01-27 23:26 - 2015-12-26 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 2016-01-27 23:23 - 2015-12-26 12:35 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2016-01-27 21:31 - 2015-12-26 02:05 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\Skype 2016-01-27 20:37 - 2015-12-26 15:13 - 00000000 ____D C:\Users\ilknur8\AppData\Local\CrashDumps 2016-01-27 15:36 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2016-01-27 03:40 - 2015-12-26 00:07 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Packages 2016-01-26 18:05 - 2015-12-26 02:10 - 00000000 ____D C:\Windows\SysWOW64\NV 2016-01-26 18:05 - 2015-12-26 02:10 - 00000000 ____D C:\Windows\system32\NV 2016-01-26 17:11 - 2015-12-26 02:04 - 00000000 ____D C:\ProgramData\Skype 2016-01-26 16:59 - 2015-12-26 00:07 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Google 2016-01-26 16:59 - 2015-12-25 23:38 - 00002302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-01-26 16:59 - 2015-12-25 23:38 - 00002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-01-26 16:57 - 2015-12-26 00:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-26 16:55 - 2015-12-25 23:31 - 00003718 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-01-26 16:50 - 2015-12-26 00:05 - 00000000 ____D C:\Users\ilknur8 2016-01-25 13:39 - 2015-12-25 23:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-01-21 22:12 - 2015-12-26 12:34 - 00000000 ____D C:\Users\ilknur8\Documents\Visual Studio 2010 2016-01-21 16:19 - 2015-12-25 23:54 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-01-21 16:19 - 2015-12-25 23:54 - 00000000 ____D C:\Program Files (x86)\Opera 2016-01-20 18:22 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2016-01-20 17:48 - 2015-12-25 22:45 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-01-20 15:26 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports 2016-01-20 02:55 - 2015-12-27 13:00 - 00000000 ____D C:\Users\ilknur8\Documents\My Games 2016-01-18 15:50 - 2015-07-04 23:13 - 00000000 ____D C:\Users\ilknur8\Documents\FIFA 14 2016-01-16 19:38 - 2015-12-27 23:28 - 00000000 ____D C:\Users\ilknur8\AppData\Local\Mozilla 2016-01-14 08:45 - 2014-11-21 09:39 - 00957244 _____ C:\Windows\system32\PerfStringBackup.INI 2016-01-14 00:23 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP 2016-01-13 21:32 - 2014-11-21 16:04 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-01-13 19:18 - 2015-12-25 23:03 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2016-01-13 19:17 - 2015-12-25 23:03 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-01-07 20:34 - 2014-11-21 09:19 - 00000000 ____D C:\Windows\ShellNew 2016-01-06 17:06 - 2015-12-08 13:28 - 00000000 ____D C:\Users\ilknur8\Desktop\Aquasafe 2016-01-06 15:58 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-01-06 00:46 - 2015-12-26 00:14 - 00000000 ____D C:\Intel 2016-01-05 22:12 - 2015-12-26 21:51 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\vlc 2016-01-05 22:11 - 2015-12-26 00:32 - 00007661 _____ C:\Users\ilknur8\AppData\Local\Resmon.ResmonCfg 2016-01-05 22:04 - 2014-11-21 16:11 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-01-05 22:04 - 2014-11-21 16:11 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-04 10:09 - 2015-12-26 01:25 - 00015832 _____ C:\Windows\system32\results.xml 2016-01-04 10:04 - 2015-12-26 01:11 - 00000000 ____D C:\ProgramData\Intel 2016-01-04 10:04 - 2015-12-26 00:14 - 00000000 ____D C:\Program Files\Intel 2016-01-04 10:04 - 2015-12-26 00:14 - 00000000 ____D C:\Program Files (x86)\Intel 2016-01-04 00:49 - 2015-12-26 00:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-01-04 00:03 - 2015-12-27 02:08 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieUserList 2016-01-04 00:03 - 2015-12-27 02:08 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieBrowserModeList 2016-01-04 00:03 - 2015-12-27 02:07 - 00000000 __SHD C:\Users\ilknur8\AppData\LocalLow\EmieSiteList 2016-01-02 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat 2016-01-01 19:19 - 2015-07-06 21:12 - 00000000 ____D C:\Users\ilknur8\Desktop\Books 2015-12-31 19:47 - 2014-11-21 09:19 - 00000000 ____D C:\Program Files\Windows Journal 2015-12-31 19:47 - 2014-11-21 08:54 - 00000000 ____D C:\Windows\system32\Drivers\en-US 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\en-US 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\bg-BG 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\CodeIntegrity 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-12-31 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Internet Explorer 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-12-31 19:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-12-29 00:41 - 2015-12-27 11:35 - 00000000 ____D C:\Users\ilknur8\AppData\Roaming\NVIDIA ==================== Files in the root of some directories ======= 2015-12-26 00:32 - 2016-01-05 22:11 - 0007661 _____ () C:\Users\ilknur8\AppData\Local\Resmon.ResmonCfg Some files in TEMP: ==================== C:\Users\ilknur8\AppData\Local\Temp\ose00000.exe C:\Users\ilknur8\AppData\Local\Temp\ose00001.exe C:\Users\ilknur8\AppData\Local\Temp\perplex.dll C:\Users\ilknur8\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-01-27 04:20 ==================== End of FRST.txt ============================ Addition.txt
  8. Значи няма проблеми в системата ? Всичко е Ок така ли? Благодаря Ви !
  9. Исках да попитам дали това е някакъв вирус , защото не е нормално да го изкарва постоянно.
  10. В безопасен режим мисля ,че няма проблем. а ЕСЕТА е със лиценз до септември 2016 мисля. След като инсалирах Malwarebytes постоянно ми изкарва това прозорче (прикаччения файл). а и след като сканирането приклчучи не ме подкани за рестарт (сам го рестартирах) и имаше само 1 Detected object и го изтрих. ето съдържанието на лог файла Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 26.1.2016 г. Scan Time: 15:31 Logfile: Administrator: Yes Version: 2.2.0.1024 Malware Database: v2016.01.26.03 Rootkit Database: v2016.01.20.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 8.1 CPU: x64 File System: NTFS User: ilknur8 Scan Type: Threat Scan Result: Completed Objects Scanned: 349250 Time Elapsed: 26 min, 14 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 1 PUP.Optional.OpenCandy, C:\Users\ilknur8\AppData\Local\Temp\HYDFABF.tmp.1451086348\HTA\install.1451086348.zip, Quarantined, [dd5eff3f8415a294a31e270d44bece32], Physical Sectors: 0 (No malicious items detected) (end) Това е съдържанието на ckfiles: CKScanner 2.5 - Additional Security Risks - These are not necessarily bad scanner sequence 3.MN.11.CCAPUZ ----- EOF ----- Това е съдържанието на Security check: SecurityCheck by glax24 & Severnyj v.1.4.0.35 [23.01.16] WebSite: www.safezone.cc DateLog: 26.01.2016 16:24:06 Path starting: C:\Users\ilknur8\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe Log directory: C:\SecurityCheck\ IsAdmin: True User: ilknur8 VersionXML: 2.34i-23.01.2016 ___________________________________________________________________________ Windows 8.1(6.3.9600) (x64) Enterprise Lang: English(0409) Installation date OS: 25.12.2015 22:04:15 LicenseStatus: Office 15, OfficeProPlusR_Grace edition Windows is in Notification mode LicenseStatus: Office 15, OfficeProPlusMSDNR_Retail edition Initial grace period ends :13158 minutes LicenseStatus: Windows(R), Enterprise edition Volume activation will expire : 213505 minutes Boot Mode: Normal Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe SystemDrive: C: FS: [NTFS] Capacity: [307.7 Gb] Used: [243.5 Gb] Free: [64.2 Gb] ------------------------------- [ Windows ] ------------------------------- Internet Explorer 11.0.9600.18161 User Account Control enabled Automatic download and scheduled installation Date install updates: 2016-01-20 15:55:47 Windows Update (wuauserv) - The service has stopped Security Center (wscsvc) - The service is running Remote Registry (RemoteRegistry) - The service has stopped ---------------------------- [ Antivirus_WMI ] ---------------------------- ESET Smart Security 9.0.349.15 (enabled and up to date) Windows Defender (disabled and up to date) ---------------------------- [ Firewall_WMI ] ----------------------------- Лична защитна стена на ESET (enabled) --------------------------- [ AntiSpyware_WMI ] --------------------------- Windows Defender (disabled and up to date) ESET Smart Security 9.0.349.15 (enabled and up to date) ---------------------- [ AntiVirusFirewallInstall ] ----------------------- ESET Smart Security v.9.0.349.15 ESET Online Scanner v3 -------------------------- [ SecurityUtilities ] -------------------------- Malwarebytes Anti-Malware version 2.2.0.1024 v.2.2.0.1024 --------------------------- [ OtherUtilities ] ---------------------------- VLC media player v.2.2.1 WinRAR 5.21 (64-bit) v.5.21.0 Warning! Download Update 7-Zip 9.30 (x64 edition) v.9.30.00.0 Warning! Download Update TeamViewer 11 v.11.0.53254 Microsoft Silverlight v.3.0.40818.0 Warning! Download Update --------------------------------- [ IM ] ---------------------------------- Skype™ 7.17 v.7.17.105 Warning! Download Update ^Optional update.^ --------------------------------- [ P2P ] --------------------------------- µTorrent v.3.4.5.41372 Warning! P2P-client. -------------------------------- [ Java ] --------------------------------- Java 8 Update 66 v.8.0.660.18 Warning! Download Update Uninstall old version and install new one. --------------------------- [ AdobeProduction ] --------------------------- Adobe Flash Player 20 NPAPI v.20.0.0.235 Warning! Download Update Adobe Acrobat Reader DC v.15.010.20056 ------------------------------- [ Browser ] ------------------------------- Mozilla Firefox 43.0.4 (x86 en-US) v.43.0.4 Opera Stable 34.0.2036.50 v.34.0.2036.50 Google Chrome v.47.0.2526.106 Warning! Download Update --------------------------- [ RunningProcess ] ---------------------------- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.47.0.2526.111 C:\Program Files\ESET\ESET Smart Security\egui.exe v.9.0.349.0 C:\Program Files\ESET\ESET Smart Security\ekrn.exe v.9.0.349.0 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe v.2.3.125.0 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe v.3.1.6.0 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe v.3.2.19.0 ----------------------------- [ End of Log ] ------------------------------
  11. Здравейте, искам да попитам как мога да разбера с какъв вид вирус имам работа , защото лаптопа ми скоро го преинсталирах и му сложих няколко игри . И сега от време на време работи бавно и мрежата понякога зареж твърде бавно... Бях пуснал Eset да сканира , намери няколко неща и ги изтри , но проблема си остана ... А лаптопа е Acer aspire V3-772G intel i5 4200M 2.5-3.1GHZ 4GB Ram video : Nvidia GeFroce GTX 760M
  12. Добър вечер. Купих си нов лаптоп HP Probook 450 G2 (вижте прикаченият файл за инфо за процесора) и видео : Вградено : Intel® HD graphics 5500 Външно : AMD Radeon R5 M255 (2GB) Имам следния проблем-значи инсталирах си driver-а на видеокартата на Интел,после на чипсета,после NEt.framework 4.5, и чак накрая на АМД от сайта на HP(всичките са точно за този модел лаптоп) и като пусна някоя игра примерно FIFA 14 играта ми върви всичко е идеално. Но когато рестартирам лаптопа и пусна играта отново играта засича и АМД то явно не се включва . за да мога да си играя трябва след всеки рестарт на лаптопа да си инсталирам driver-a на АМД наново. Как мога да го оправя това . също така като инсталирам driver-a накрая ми дава следната грешка : вижте втория прикачен файл. Имам диск с ОС. Копирайте съдържанието на файла FRST.txt в следващия си пост. Прикачете Addition.txt в коментар си (погледнете опциятаПрикачване на файлове, когато публикувате мнение). не разбрах точно как се прави това , опитах се да напиша отговор със съдържанието на FRST файла но не успях. Addition.txt FRST.txt
  13. Благодаря Ви много. Вече лаптопа е изчистен нали?
  14. 4 Добре е сякаш. Имам 1 въпрос ако това е всичко. Като стартира уиндоус ме пита дали да отворя следното приложение :raptr desktop App . Да го позволявам ли ?
  15. C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\IMF PRO activator & keygen.rar BAT/HostsChanger.A potentially unsafe application deleted - quarantined C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\imf-setup.exe a variant of Win32/Toolbar.Widgi.N potentially unwanted application deleted - quarantined C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\IMF PRO activator & keygen\hostblock.bat BAT/HostsChanger.A potentially unsafe application cleaned by deleting - quarantined C:\FRST\Quarantine\C\Windows\SECOH-QAD.dll.xBAD Win64/HackKMS.D potentially unsafe application cleaned by deleting - quarantined C:\FRST\Quarantine\C\Windows\SECOH-QAD.exe.xBAD Win64/HackKMS.C potentially unsafe application cleaned by deleting - quarantined C:\Games\FIFA 15\3dmgame.dll a variant of Win64/HackTool.Crack.B potentially unsafe application cleaned by deleting - quarantined C:\Users\ilko\AppData\Roaming\uTorrent\uTorrent.exe a variant of Win32/OpenCandy.C potentially unsafe application cleaned by deleting - quarantined C:\Users\ilko\AppData\Roaming\uTorrent\updates\3.4.3_40298.exe a variant of Win32/OpenCandy.C potentially unsafe application cleaned by deleting - quarantined C:\Users\ilko\Downloads\uTorrent.exe a variant of Win32/OpenCandy.C potentially unsafe application cleaned by deleting - quarantined C:\Users\ilko\Downloads\FIFA 15 PC full game ^^nosTEAM^^\FIFA15_nosTEAM.part1.exe a variant of Win64/HackTool.Crack.B potentially unsafe application deleted - quarantined C:\Users\ilko\Downloads\FIFA15 V3\3dmgame.dll a variant of Win64/HackTool.Crack.B potentially unsafe application cleaned by deleting - quarantined eset2remove.txt
  16. Другите отметки да ги запазя ли
  17. C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\IMF PRO activator & keygen.rar BAT/HostsChanger.A potentially unsafe application C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\imf-setup.exe a variant of Win32/Toolbar.Widgi.N potentially unwanted application C:\FRST\Quarantine\C\Users\ilko\Downloads\IObit Malware Fighter PRO v2.5.0.8\IMF PRO activator & keygen\hostblock.bat BAT/HostsChanger.A potentially unsafe application C:\FRST\Quarantine\C\Windows\SECOH-QAD.dll.xBAD Win64/HackKMS.D potentially unsafe application C:\FRST\Quarantine\C\Windows\SECOH-QAD.exe.xBAD Win64/HackKMS.C potentially unsafe application C:\Games\FIFA 15\3dmgame.dll a variant of Win64/HackTool.Crack.B potentially unsafe application C:\Users\ilko\AppData\Roaming\uTorrent\uTorrent.exe a variant of Win32/OpenCandy.C potentially unsafe application C:\Users\ilko\AppData\Roaming\uTorrent\updates\3.4.3_40298.exe a variant of Win32/OpenCandy.C potentially unsafe application C:\Users\ilko\Downloads\uTorrent.exe a variant of Win32/OpenCandy.C potentially unsafe application C:\Users\ilko\Downloads\FIFA 15 PC full game ^^nosTEAM^^\FIFA15_nosTEAM.part1.exe a variant of Win64/HackTool.Crack.B potentially unsafe application C:\Users\ilko\Downloads\FIFA15 V3\3dmgame.dll a variant of Win64/HackTool.Crack.B potentially unsafe application ето и самия файл esetscan.txt
  18. Има подобрение определено , мерси много. Сега ще опитам с ESET
  19. За AdwCleaner има 2 лог файла . Fixlog.txt JRT.txt AdwCleanerR0.txt AdwCleanerS0.txt
  20. Kъде е fixlist.txt? Също така globalupdate Helper го няма при инсталираните програми,не успях да го намеря .
  21. Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 11.7.2015 г. Scan Time: 14:54 Logfile: Administrator: Yes Version: 2.1.8.1057 Malware Database: v2015.07.11.02 Rootkit Database: v2015.07.10.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 8.1 CPU: x64 File System: NTFS User: ilko Scan Type: Threat Scan Result: Completed Objects Scanned: 342375 Time Elapsed: 21 min, 30 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 4 PUP.Optional.WProtectManager.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, 1548, Delete-on-Reboot, [344acf117713e94de9b2d9879c69e818] PUP.Optional.XTab.A, C:\Program Files (x86)\MiuiTab\ProtectService.exe, 2020, Delete-on-Reboot, [1965fbe58109c96d0d14e576f70a728e] PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\CmdShell.exe, 3356, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83] PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\HPNotify.exe, 4152, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83] Modules: 10 PUP.Optional.SearchProtect, C:\Program Files (x86)\MiuiTab\BrowserAction.dll, Delete-on-Reboot, [d4aace12dab045f17a94870402ffa858], PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchFF.dll, Delete-on-Reboot, [a7d7c31dbfcb48eedc9346d0ec19fa06], PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchCH.dll, Delete-on-Reboot, [9de121bf39517db927488c8a897ccf31], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\IeWatchDog.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcp110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcp110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcp110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcr110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcr110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcr110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], Registry Keys: 86 PUP.Optional.WProtectManager.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, Quarantined, [344acf117713e94de9b2d9879c69e818], PUP.Optional.XTab.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, Quarantined, [1965fbe58109c96d0d14e576f70a728e], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.LuckyTab.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.ModGoog, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GLOBALUPDATE.EXE, Quarantined, [97e7e1ff9feb6fc7758d414eaf52a55b], PUP.Optional.ModGoog, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GLOBALUPDATE.EXE, Quarantined, [97e7e1ff9feb6fc7758d414eaf52a55b], PUP.Optional.HighDefAction.A, HKLM\SOFTWARE\HighDefAction, Quarantined, [7e0090508505072f44b86c20c044fb05], PUP.Optional.YorkNewCin.A, HKLM\SOFTWARE\YorkNewCin, Quarantined, [3846617f5c2ec670d0377d10cb39f60a], PUP.Optional.CinemaPlus.C, HKLM\SOFTWARE\ARENAHD, Quarantined, [d6a8ecf43951b97ddb00662210f402fe], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE, Quarantined, [f28c429ef8929c9a69fd4e3cae56d12f], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE, Quarantined, [f18d57890684cc6a97cfa1e9d4306f91], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, Quarantined, [a5d9dd03cfbb4de9fc33f44b4db69d63], PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [344a558b69215bdb18f801886f9515eb], PUP.Optional.Crossbrowse.C, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\crossbrowse.exe, Quarantined, [a7d7c31d6e1c0a2c9640788cf2111ae6], PUP.Optional.APNToolBar.Gen, HKLM\SOFTWARE\WOW6432NODE\AskPartnerNetwork, Quarantined, [245a3ca46e1cd95d708005fb0ef5d030], PUP.Optional.CinemaPlus.A, HKLM\SOFTWARE\WOW6432NODE\CinemaPlus-4.5vV04.07, Quarantined, [7509d709593141f5595ecb4d25deef11], PUP.Optional.CinemaPlus.A, HKLM\SOFTWARE\WOW6432NODE\CinemaPlus-4.5vV04.07-nv, Quarantined, [8af409d7b4d6ce68e0d74dcb8e754fb1], PUP.Optional.CinemaPlus.A, HKLM\SOFTWARE\WOW6432NODE\CinemaPlus-4.5vV04.07-nv-ie, Quarantined, [225c736d72184fe71f98d246917214ec], PUP.Optional.HighDefAction.A, HKLM\SOFTWARE\WOW6432NODE\HighDefAction, Quarantined, [007e88588cfeee4839c34e3ee420b44c], PUP.Optional.IHProtect.A, HKLM\SOFTWARE\WOW6432NODE\IHProtect, Quarantined, [89f50bd50288b87e395a7b9773909b65], PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\oursurfingSoftware, Quarantined, [9ce25789b2d80333956f51b132d1ab55], PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, Quarantined, [aed016ca404a1422da962354a361b848], PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\WajIntEnhance, Quarantined, [67170dd3503a5dd95bf448c77c871ce4], PUP.Optional.YorkNewCin.A, HKLM\SOFTWARE\WOW6432NODE\YorkNewCin, Quarantined, [6915da06e1a9a1951ceb216c46be39c7], PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [750906da1c6ea492198cc04215ee02fe], PUP.Optional.CinemaPlus.C, HKLM\SOFTWARE\WOW6432NODE\ARENAHD, Quarantined, [0b73429e1d6db284419abfc97c88e818], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE, Quarantined, [fb83af31840653e33d290e7ccf3522de], PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [a6d8637deb9f4bebc34dd3b6e71de41c], PUP.Optional.Crossbrowse.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\MEDIAPLAYER\SHIMINCLUSIONLIST\crossbrowse.exe, Quarantined, [f28cca1654369a9cf409cc381ae9c53b], PUP.Optional.Crossbrowse.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\crossbrowse.exe, Quarantined, [1668a937dcaee5515680e222867d8d73], PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, Quarantined, [c1bdf9e7642652e47cfa52ba669d0ff1], PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, Quarantined, [6c12a13f1a7045f1581dae5e5ea501ff], PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, Quarantined, [2856bc243c4e38fe47b4ea2f887bc23e], PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, Quarantined, [bdc1bc24d2b89d99066efc1007fc8d73], PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Quarantined, [5b23a7399dedf3434c6a5f1a55af30d0], PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Quarantined, [2559b7295d2dab8be8cf136622e2f30d], PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB, Quarantined, [c4ba29b7dab02214bcb10e17c53e2ed2], PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, Quarantined, [d5a9bd230e7c5ed8e062839949ba1ce4], PUP.Optional.CinemaPlus.A, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.5vV04.07-nv, Quarantined, [df9fd60a3b4f59dda5139b7d58ab53ad], PUP.Optional.CinemaPlus.A, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.5vV04.07-nv-ie, Quarantined, [79057868721833035e5ad93f46bdd62a], PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, Quarantined, [add17f614248989e8559cfb9a75df709], PUP.Optional.APNToolBar.Gen, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\AskPartnerNetwork, Quarantined, [c1bd25bb5a30231337b813eda45fde22], PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\CinemaPlus-4.5vV04.07, Quarantined, [2b5325bbbbcfae881e9a8b8dd82b32ce], PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\CinemaPlus-4.5vV04.07-nv, Quarantined, [2f4f2fb1a6e43ff7991fd840e91afc04], PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\CinemaPlus-4.5vV04.07-nv-ie, Quarantined, [6d11e000c9c1c96d516755c38b78f10f], PUP.Optional.Crossbrowse.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\CrossBrowser, Quarantined, [7e00ce12b1d980b6976322e2768d53ad], PUP.Optional.HighDefAction.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\HighDefAction, Quarantined, [c9b57c64325852e4fdfe4a428f75d927], PUP.Optional.HomeTab.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\HomeTab, Quarantined, [423cca16860457df7ee59a9a55ae36ca], PUP.Optional.SearchProtect.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\SearchProtectWS, Quarantined, [1b6326bad2b846f0a3d533d944bfa858], PUP.Optional.TNT.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\TNT2, Quarantined, [394533ad642676c07ca6c94506fdec14], PUP.Optional.Wajam.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\WajIEnhance, Quarantined, [a1dd25bb3753a4929a8b9e7651b2ca36], PUP.Optional.Wajam.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\WajIntEnhance, Quarantined, [5e20fbe5aedcb284c18f64abe61df709], PUP.Optional.YorkNewCin.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\YorkNewCin, Quarantined, [f68847990f7b57dfb3537617956fab55], PUP.Optional.CrossRider.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [a6d80fd12268231359efb4bcf01454ac], PUP.Optional.CinemaPlus.C, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\ARENAHD, Quarantined, [c8b69d43d6b493a3419982063ec67f81], PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, Quarantined, [25596e726d1d6cca21a7eb190cf77e82], PUP.Optional.CrossRider.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, Quarantined, [99e588588bffa294d48063bf8a797f81], PUP.Optional.CrossRider.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Cinema PlusV04.07, Quarantined, [0c725e826525f3431920be5aa360c63a], PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [afcfbb256228d066c44b4643fa0aec14], PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}, Quarantined, [b6c803dd2e5c013537d8b0d925dfc33d], PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [81fda13f88027bbb97785237e2224fb1], PUP.Optional.Spigot.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{824DB265-6A00-40D4-BA01-49750103362F}, Quarantined, [4a34d50bb0dade58b1ab54b0a65d26da], PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E733165D-CBCF-4FDA-883E-ADEF965B476C}, Quarantined, [0e7027b92268d462fd1290f99e664eb2], PUP.Optional.Iminent.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, Quarantined, [245a7d637a1045f11efe18f1748fd030], PUP.Optional.Iminent.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, Quarantined, [91ed2cb4e8a2f83e130a69a0ab58d42c], PUP.Optional.Linkey.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, Quarantined, [9ee0b82853373501011d6a9f10f3f50b], PUP.Optional.SearchProtect.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, Quarantined, [c5b923bd97f343f35020226618ecd927], PUP.Optional.Vosteran.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, Quarantined, [85f9924e3555999dda4548c16d9660a0], PUP.Optional.Wajam.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, Quarantined, [f08e2ab61c6e7cba120e7594a65df709], PUP.Optional.SweetSearch.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MOZILLA\EXTENDS, Quarantined, [97e79d43c7c362d40c0dc53e33d01ce4], PUP.Optional.HomeTab.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\SIMPLYTECH\HomeTab, Quarantined, [69152fb1e2a85adc1163b29362a14ab6], Registry Values: 34 PUP.Optional.CinemaPlus.C, HKLM\SOFTWARE\ARENAHD|value, 1, Quarantined, [d6a8ecf43951b97ddb00662210f402fe] PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\CLASSES\.HTML\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [760820c0adddf93da8de1e6c3acaf60a], PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\CLASSES\.HTM\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [e995865aadddc670384d2d5d8f757f81], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Quarantined, [f28c429ef8929c9a69fd4e3cae56d12f] PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.HTML\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [c2bc865a4644ed49f78fa1e993717d83], PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.HTM\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [d0aeecf4c4c681b52d58e3a7be4631cf], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Quarantined, [f18d57890684cc6a97cfa1e9d4306f91] PUP.Optional.PCTuner.C, HKLM\SOFTWARE\HIGHDEFACTION|value, 1, Quarantined, [add1bb25f298d462895dbcccea1a12ee] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, oursurfing, Quarantined, [344a558b69215bdb18f801886f9515eb] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Quarantined, [2f4f5a86fd8d7abc818fdfaafb09ca36] PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\REGISTEREDAPPLICATIONS|Crossbrowse, Software\Clients\StartMenuInternet\Crossbrowse\Capabilities, Quarantined, [d7a77d63a0eabd79deffb8d02bd9c838] PUP.Optional.CinemaPlus.C, HKLM\SOFTWARE\WOW6432NODE\ARENAHD|value, 1, Quarantined, [0b73429e1d6db284419abfc97c88e818] PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.HTML\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [8af4f1efd8b20c2a6323a4e661a3748c], PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.HTM\OPENWITHPROGIDS|CRSBRWSHTML, Quarantined, [b9c5e1ff4248d462cfb62367bc48f20e], PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Quarantined, [fb83af31840653e33d290e7ccf3522de] PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATEDEV|AuCheckPeriodMs, 21600000, Quarantined, [403e07d93a50cd69c66f29db43c00ff1] PUP.Optional.PCTuner.C, HKLM\SOFTWARE\WOW6432NODE\HIGHDEFACTION|value, 1, Quarantined, [d7a7479994f6fb3bf1f5b6d2768efa06] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, oursurfing, Quarantined, [a6d8637deb9f4bebc34dd3b6e71de41c] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Quarantined, [acd214cc3e4c26104ec28efb05ff46ba] PUP.Optional.SweetSearch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|sweetsearch@gmail.com, C:\Users\ilko\AppData\Roaming\Mozilla\Firefox\Profiles\hogdzv5s.default\extensions\sweetsearch@gmail.com, Quarantined, [403e50904347999d6192da280af9669a] PUP.Optional.CrossBrowse.C, HKLM\SOFTWARE\WOW6432NODE\REGISTEREDAPPLICATIONS|Crossbrowse, Software\Clients\StartMenuInternet\Crossbrowse\Capabilities, Quarantined, [daa48957eb9fcb6b716cf89015efc33d] PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB|ptid, amt, Quarantined, [c4ba29b7dab02214bcb10e17c53e2ed2] PUP.Optional.CinemaPlus.C, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\ARENAHD|value, 1, Quarantined, [c8b69d43d6b493a3419982063ec67f81] PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, Quarantined, [25596e726d1d6cca21a7eb190cf77e82] PUP.Optional.PCTuner.C, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\HIGHDEFACTION|value, 1, Quarantined, [c3bb12cedcaeb581499bb6d2da2a24dc] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&ts=1436041867&type=default&q={searchTerms},Quarantined, [afcfbb256228d066c44b4643fa0aec14] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}|URL, http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&ts=1436041867&type=default&q={searchTerms},Quarantined, [b6c803dd2e5c013537d8b0d925dfc33d] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}|FaviconURL, http://www.oursurfing.com//favicon.ico, Quarantined, [d5a919c7e1a9ab8b2fe01c6d0cf8b749] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, oursurfing, Quarantined, [81fda13f88027bbb97785237e2224fb1] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.oursurfing.com/web/?type=dspp&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Quarantined, [84fa6c74533790a6b857e6a3689c35cb] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|TopResultURL, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Quarantined, [8df134ac662453e34fc04643c0444cb4] PUP.Optional.Spigot.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{824DB265-6A00-40D4-BA01-49750103362F}|URL, https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=800236&p={searchTerms},Quarantined, [4a34d50bb0dade58b1ab54b0a65d26da] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E733165D-CBCF-4FDA-883E-ADEF965B476C}|URL, http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&ts=1436041867&type=default&q={searchTerms},Quarantined, [0e7027b92268d462fd1290f99e664eb2] PUP.Optional.SweetSearch.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MOZILLA\EXTENDS|appid, sweetsearch@gmail.com, Quarantined, [97e79d43c7c362d40c0dc53e33d01ce4] Registry Data: 12 PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX, Good: (firefox.exe), Bad: ("C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX),Replaced,[0a748f512763f73f967d34fae91c9070] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX),Replaced,[abd3ffe1d3b78bab85907faffa0b7f81] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[433b1fc13258c47267b0c06e9a6bf907] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[037b05db4c3efc3a2ceb30fe93721fe1] PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[671705db8ffb6dc90462b27a739223dd] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX, Good: (firefox.exe), Bad: ("C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX),Replaced,[c9b5845caae0cf677d96141aa95cf907] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://www.oursurfing.com/?type=sc&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX),Replaced,[007e3fa1cac002344bca2d01867f6898] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[2955b7292367c57176a181adb154a45c] PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=ds&ts=1436041844&z=fc1dfcf3b5b8667a40f53bfg6z8c4q1eezegcbezdz&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[8cf25e824743cb6bfd1a280634d1bb45] PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[90ee18c8ff8b61d5e97d161602036d93] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.oursurfing.com/web/?type=dspp&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=dspp&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[97e77c649af038fe46ca70be38cd36ca] PUP.Optional.OurSurfing.A, HKU\S-1-5-21-3856949486-3813085638-2492078522-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.oursurfing.com/web/?type=dspp&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms},Good: (www.google.com), Bad: (http://www.oursurfing.com/web/?type=dspp&ts=1436041852&z=7b9a7d5e4399be94ef04794g4z6c0q0e7zcg7b4w7o&from=amt&uid=HGSTXHTS541010A9E680_JD100ACH0SKNNK0SKNNKX&q={searchTerms}),Replaced,[245a8a56602aee481ef22e001aeb6f91] Folders: 32 PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, Delete-on-Reboot, [bac4736db9d16dc94a15825eec16f10f], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, Quarantined, [bac4736db9d16dc94a15825eec16f10f], PUP.Optional.GlobalUpdate.A, C:\Users\ilko\AppData\Local\Temp\comh.336586, Quarantined, [84fae9f75f2bd4626525598810f2ca36], PUP.Optional.GlobalUpdate.A, C:\Users\ilko\AppData\Local\Temp\comh.82838, Quarantined, [3c42c21eed9dea4c8bffb72a659d619f], PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate, Quarantined, [047a29b74842df57ea7b46ae3ac8847c], PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update, Quarantined, [047a29b74842df57ea7b46ae3ac8847c], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\image, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\en-US, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\es-419, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\es-ES, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-BE, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-CA, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-CH, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-FR, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-LU, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\it-CH, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\it-IT, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pl, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pt, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pt-BR, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\ru, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\ru-MO, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\tr-TR, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\vi-VI, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\zh-CN, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\zh-TW, Quarantined, [3b43ecf4395142f437358579837f7d83], Files: 132 PUP.Optional.WProtectManager.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Delete-on-Reboot, [344acf117713e94de9b2d9879c69e818], PUP.Optional.XTab.A, C:\Program Files (x86)\MiuiTab\ProtectService.exe, Delete-on-Reboot, [1965fbe58109c96d0d14e576f70a728e], PUP.Optional.SearchProtect, C:\Program Files (x86)\MiuiTab\BrowserAction.dll, Delete-on-Reboot, [d4aace12dab045f17a94870402ffa858], PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchFF.dll, Delete-on-Reboot, [a7d7c31dbfcb48eedc9346d0ec19fa06], PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchCH.dll, Delete-on-Reboot, [9de121bf39517db927488c8a897ccf31], PUP.Optional.LuckyTab.A, C:\Program Files (x86)\MiuiTab\SupTab.dll, Quarantined, [2757489891f93afcfb036e0ec93920e0], PUP.Optional.Amonetize.A, C:\Users\ilko\AppData\Local\19164\Updater.exe, Quarantined, [b3cb03dd741655e1fdc3942acf3354ac], PUP.Optional.Crossrider, C:\Program Files (x86)\6af09d7e-ecfd-4b5f-b439-2a9a195e41a8\5d547ddd-482c-4791-9592-3939dc899532.dll, Quarantined, [0d7111cf1f6b48ee067d911b8d7443bd], PUP.Optional.Nova.A, C:\Program Files (x86)\6af09d7e-ecfd-4b5f-b439-2a9a195e41a8\7891153b-8878-4b2b-bd31-d74f6faafba9.dll, Quarantined, [0876a937d1b9e94d32d3f465f40dfa06], PUP.Optional.Spigot.SID, C:\Users\ilko\AppData\Local\Temp\~spC5AB.tmp, Quarantined, [730beaf6503af73f275b6ef1010407f9], PUP.Optional.CrossRider.A, C:\Users\ilko\AppData\Local\Temp\185.exe, Quarantined, [8bf3b927276343f36f7fbd9b4eb7cc34], PUP.Optional.Crossbrowse.C, C:\Users\ilko\AppData\Local\Temp\4504.exe, Quarantined, [e698736dd5b51224ad0d9308b849926e], PUP.Optional.CrossRider.A, C:\Users\ilko\AppData\Local\Temp\7753.exe, Quarantined, [d1adad33553538fe9e50352337ce6e92], PUP.Optional.CrossRider.A, C:\Users\ilko\AppData\Local\Temp\8732.exe, Quarantined, [e49a27b9fe8c2b0ba34b68f091745da3], PUP.Optional.Crossbrowse.C, C:\Users\ilko\AppData\Local\Temp\5000.exe, Quarantined, [ccb2f0f0d0ba95a13a80a8f3c43df10f], PUP.Optional.CrossRider.A, C:\Users\ilko\AppData\Local\Temp\5792.exe, Quarantined, [116df2eebdcd6dc9d51912460afb20e0], PUP.Optional.Spigot.SID, C:\Users\ilko\AppData\Local\Temp\nsxDAA9.tmp\SM.dll, Quarantined, [275708d841490432453d7ee15fa60ff1], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\globalupdate.exe, Quarantined, [97e7e1ff9feb6fc7758d414eaf52a55b], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\globalupdateBroker.exe, Quarantined, [90ee1ac61278fe38b64c79168d74d927], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\globalupdateCrashHandler.exe, Quarantined, [0579fde38505cf67ba488a0559a84bb5], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\globalupdateOnDemand.exe, Quarantined, [97e705db6e1cd56160a2b1ded72a3cc4], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\goopdate.dll, Quarantined, [df9fd20ee8a2300632d02e61e91844bc], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\goopdateres_en.dll, Quarantined, [473736aa7218270f758db1de748dd927], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\npglobalupdateUpdate4.dll, Quarantined, [562831af2c5e90a6738fdcb3c43dc937], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\psmachine.dll, Quarantined, [443a1fc1bad0f0460200d7b831d00df3], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.336586\psuser.dll, Quarantined, [81fd5090484278bec53d0a8518e904fc], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\globalupdate.exe, Quarantined, [f28cac3494f64ee8c141a8e726db1de3], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\globalupdateBroker.exe, Quarantined, [bdc17c64305a4aec788a2768768bb44c], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\globalupdateCrashHandler.exe, Quarantined, [2c52da063654a98d936feea1dd24aa56], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\globalupdateOnDemand.exe, Quarantined, [89f5bf212a6012246999ade280818977], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\goopdate.dll, Quarantined, [601eb32d7e0cb87ed62c0c83f01139c7], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\goopdateres_en.dll, Quarantined, [7e0048988efc1620a161c5ca0ef358a8], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\npglobalupdateUpdate4.dll, Quarantined, [9fdf23bd3f4b87af40c2d3bce0214ab6], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\psmachine.dll, Quarantined, [69151bc50684c175f60c305f0af7e020], PUP.Optional.ModGoog, C:\Users\ilko\AppData\Local\Temp\comh.82838\psuser.dll, Quarantined, [0876cd13b4d6979f3dc5b1de9c655fa1], PUP.Optional.OpenCandy, C:\Users\ilko\AppData\Local\Temp\HYD8F60.tmp.1436024840\HTA\install.1436024840.zip, Quarantined, [007e07d94941261090f25af810f5b14f], PUP.Optional.Crossbrowse.C, C:\Users\ilko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk, Quarantined, [bdc1e4fcb3d78babb51c996bd033e020], PUP.Optional.Crossbrowse.C, C:\Windows\System32\Tasks\Crossbrowse, Quarantined, [f68835ab5f2b71c5d8faa85c0df6d32d], PUP.Optional.Crossbrowse.C, C:\Windows\Tasks\Crossbrowse.job, Quarantined, [770703ddbecc8aac874cee16768d6d93], PUP.Optional.Crossbrowse.A, C:\Users\ilko\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Crossbrowse.lnk, Quarantined, [a7d78957c1c92e0824dd07fe48bb6799], PUP.Optional.Spigot.A, C:\Users\ilko\AppData\Roaming\Mozilla\Firefox\Profiles\hogdzv5s.default\searchplugins\yahoo_ff.xml, Quarantined, [532ba33d3f4ba096df2480933ec5dd23], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-1-6, Quarantined, [45399e42dfabe25439b3012a3ec5de22], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-1-7, Quarantined, [c2bc0ed21377b87ec527db50e3200cf4], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-10_user, Quarantined, [acd21ac6acdeb38395572308ac57649c], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-11, Quarantined, [47370bd53e4cde58be2e919a0ef51ae6], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-3, Quarantined, [1569f1ef7e0cf6401ad279b2ae554fb1], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-4, Quarantined, [cdb15b8512782b0bde0e6bc0f70c639d], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-5, Quarantined, [eb932bb5f79365d1638981aa798a25db], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-5_user, Quarantined, [35497f617d0d57df7874a784e61d6898], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-6, Quarantined, [6a1413cd91f945f159937facff04e51b], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-7, Quarantined, [275739a7bdcd8bab7d6fa58636cd718f], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-1-6.job, Quarantined, [275716ca107a75c1eff72651dd277888], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-1-7.job, Quarantined, [037bb52b8dfd0b2b776faccbd82ce11f], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-10_user.job, Quarantined, [126c02deb6d4d75fa2448ceb1be90ef2], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-11.job, Quarantined, [e6985e8293f792a4d511ff782dd7da26], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-3.job, Quarantined, [334b20c0f199191db036284fa2623ac6], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-4.job, Quarantined, [2e5040a01f6b4ee89b4b5621ef1513ed], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-5.job, Quarantined, [89f53aa6f199e05652948bec27ddd22e], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-5_user.job, Quarantined, [7d01518fc2c8e94d92540d6a5da7d42c], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-6.job, Quarantined, [b3cb934d71191c1a53939bdc679de917], PUP.Optional.CrossRider.T, C:\Windows\Tasks\96143760-4458-4f35-bae7-d641d2fe1578-7.job, Quarantined, [007e2eb23f4bcf67d31393e446be966a], PUP.Optional.OurSurfing.A, C:\Users\ilko\AppData\Roaming\Mozilla\Firefox\Profiles\hogdzv5s.default\searchplugins\oursurfing.xml, Quarantined, [c6b8a63a12787eb821ebf396fc08ad53], PUP.Optional.OurSurfing.A, C:\Users\ilko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.oursurfing.com_0.localstorage, Quarantined, [6618f8e814760b2ba16cbbce06fe7a86], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, Quarantined, [bac4736db9d16dc94a15825eec16f10f], PUP.Optional.GlobalUpdate.A, C:\Users\ilko\AppData\Local\Temp\comh.336586\globalupdateHelper.msi, Quarantined, [84fae9f75f2bd4626525598810f2ca36], PUP.Optional.GlobalUpdate.A, C:\Users\ilko\AppData\Local\Temp\comh.82838\globalupdateHelper.msi, Quarantined, [3c42c21eed9dea4c8bffb72a659d619f], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\CmdShell.exe, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\conf, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\ffsearch_toolbar!1.0.0.1031.xpi, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\HPNotify.exe, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\IeWatchDog.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\install.data, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcp110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\msvcr110.dll, Delete-on-Reboot, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\searchProvider.xml, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\uninstall.exe, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\about.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\about_bk.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\btn.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\btn_apply.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\close.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\conf.xml, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\conf_back.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\input_bk.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\logo.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\main.xml, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\radio_1.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\radio_2.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\rigth_arrow.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\skin\settings.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\data.html, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\indexIE.html, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\indexIE8.html, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\main.css, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\ver.txt, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\google_trends.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\icon128.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\icon16.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\icon48.png, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\loading.gif, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\img\logo32.ico, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\common.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\ga.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\jquery-1.11.0.min.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\jquery.autocomplete.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\jquery.xdomainrequest.min.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\js.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\library.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\xagainit-ie8.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\xagainit2.0.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\js\xdomain.min.js, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\en-US\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\es-419\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\es-ES\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-BE\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-CA\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-CH\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-FR\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\fr-LU\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\it-CH\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\it-IT\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pl\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pt\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\pt-BR\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\ru\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\ru-MO\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\tr-TR\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\vi-VI\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\zh-CN\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.MiuiTab.A, C:\Program Files (x86)\MiuiTab\web\_locales\zh-TW\messages.json, Quarantined, [3b43ecf4395142f437358579837f7d83], PUP.Optional.Spigot.A, C:\Users\ilko\AppData\Roaming\Mozilla\Firefox\Profiles\hogdzv5s.default\prefs.js, Good: (), Bad: (user_pref("keyword.URL", "https://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p="), Replaced,[abd3914f8208c76f944efb6852b304fc] PUP.Optional.CrossRider.A, C:\Users\ilko\AppData\Roaming\Mozilla\Firefox\Profiles\hogdzv5s.default\prefs.js, Good: (), Bad: (user_pref("extensions.crossrider.bic", "14e5d674d075cd1377b5b6d45c8d3dbb") , Replaced,[4f2fbc247d0d2b0b0eb3c5a0b451a55b] Physical Sectors: 0 (No malicious items detected) (end) Може ли да кажете кои са тези лог файлове и къде се намират. Тези ли са? лог malwaerbytes.txt FRST.txt
  22. Добър вечер. Купих си нов лаптоп HP Probook 450 G2 (вижте прикаченият файл за инфо за процесора) и видео : Вградено : Intel® HD graphics 5500 Външно : AMD Radeon R5 M255 (2GB) Имам следния проблем-значи инсталирах си driver-а на видеокартата на Интел,после на чипсета,после NEt.framework 4.5, и чак накрая на АМД от сайта на HP(всичките са точно за този модел лаптоп) и като пусна някоя игра примерно FIFA 14 играта ми върви всичко е идеално. Но когато рестартирам лаптопа и пусна играта отново играта засича и АМД то явно не се включва . за да мога да си играя трябва след всеки рестарт на лаптопа да си инсталирам driver-a на АМД наново. Как мога да го оправя това . също така като инсталирам driver-a накрая ми дава следната грешка : вижте втория прикачен файл.
  23. деинсталирах го. Като стартирам лаптопа винаги ми изписва "Could not load MOM.implamantation file....
  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.