Премини към съдържанието

Филтри за търсене

Показани резултати за тагове 'приключен'.

  • Търсене по таг

    Въведете тагове разделени със запетая
  • Търсене по автор

Търсене в


Форуми

  • Софтуер
    • Нови Програми
    • Търсене на Програми
    • Програми - Проблеми и Дискусии
    • Драйвери - Търсене, Проблеми, Линкове
    • Операционни системи
    • Сигурност и антивирусна защита
    • Игри
  • Хардуер
    • Общи хардуерни въпроси
    • Преносими компютри
    • Дънни платки
    • Запаметяващи устройства и памети
    • Монитори, Аудио и Видеокарти
    • Периферия
    • Овърклок и PC модинг
    • Нови конфигурации и части, въпроси, препоръки и мнения
  • Мобилни телефони, GSM, Мобилни приложения, Комуникации
    • Мобилни телефони - Въпроси, Проблеми, Софтуер
    • Съвети при избор на телефон
    • Мобилни Приложения (Apps)
    • Мобилни оператори, Мрежи, Промоции, Абонаменти, Услуги
    • Други теми относно мобилни телефони
  • Уеб дизайн, Графичен дизайн, Програмиране
    • Програмиране
    • Графичен Дизайн и Визуални изкуства
    • CMS, Форумни и Торент системи
    • Хостинг, Домейни, Уеб сървъри
    • SEO, Уеб оптимизация и стандарти
  • Битова Техника
    • Аудиотехника
    • Телевизори, Видео и Фото техника, Видео наблюдение
    • Климатици - проблеми, съвети, въпроси
    • Бойлери, Печки, Отопление
    • Друга битова техника
  • Интернет, Локални Мрежи и GPS Навигации
    • Интернет, WiFi, xDSL и Локална Мрежа
    • Биткойн и Криптовалути
    • Онлайн бизнес, AdSense, Affilate програми
    • Рутери, Модеми, Суичове
    • Facebook - проблеми, въпроси, вируси
    • Skype, VoIP - Интернет телефония
    • GPS, Навигационни системи - Въпроси, Карти, Проблеми
  • Изкуство
    • Музика
    • Кино и Телевизия
    • Поезия и Лично творчество
    • Изкуство - Изящно, Приложно и Сценично
    • Фотография и Фотографска техника
    • Литература, Книги (e-books, video trainings, tutorials & etc.)
  • Други
    • Статии и ревюта
    • Образование и обща култура
    • Религия, Мистика, Езотерика
    • История
    • Философия
    • Психология и Психотерапия
    • Новини от България и Света
    • Българите по света
    • Политика
    • Право и Юридически консултации
    • Здраве и Mедицина
    • Банки, Застраховане, Финанси, Кредити
    • Тийн Зона (Teen Zone)
    • Купувам / Продавам
    • Всичко останало
  • Хоби, Развлечение и Свободно време
    • Спорт
    • Автомобили
    • Дом и семейство
    • Домашни любимци
    • Пътешествия и туризъм
    • Кулинар
    • Изповеди
    • Празни приказки и забава
  • За kaldata.com
    • Новини относно сайта
    • Предложения, Въпроси и Проблеми свързани със сайта
  • групите за са стадото аз съм вълк единак Теми
  • Photoshop майнаци Теми

Блогове

Няма резултати

Няма резултати

Категории

  • Компютри
    • Компютърни конфигурации
    • Компютърни компоненти
    • Периферни устройства
    • Дънни платки
    • Мултимедия
    • Компютърни игри и софтуер
    • Администриране и интернет услуги
    • Компютърни аксесоари
    • Лаптопи и таблети
    • Видеокарти
    • Монитори
    • Процесори
    • Хард дискове и Памети
    • Други
  • Електроника
    • Телефони, GSM апарати
    • Аудио
    • Битова електроника
    • GPS и навигационни системи
    • Фотоапарати и обективи
    • TV и Видео
    • Други
  • Имоти
    • Гарсониери
    • Къщи и вили
    • Търговски площи
    • Гаражи
    • Апартаменти
    • Терени
    • Офиси
    • Други имоти в продажба
  • Авто-мото
    • Автомобили
    • Велосипеди
    • Лодки
    • Резервни части
    • Авто аксесоари
    • Мотоциклети
    • Скутери и ATV
    • Камиони и Автобуси
    • Авто сервизи и Rent-a-Car
    • Други
  • Работа
    • Работа в страната
    • Работа в чужбина
    • Стажове
    • Работа от вкъщи
    • Непълно работно време
  • Услуги
  • Строителство
  • Туризъм
  • Курсове и обучение
  • Домашни любимци
  • Други

Категории

  • Домашни любимци и Животни
  • Игри
  • Инциденти и Екстремни
  • Коли и превозни средства
  • Музика
    • Българска музика
    • Джаз
    • Електронна
    • Метъл и Рок
    • Народна и Фолклор
    • Поп и Диско
    • Поп-фолк
    • Рап и хип-хоп
    • Ритъм енд блус и соул
    • Друга
  • Новини и политика
  • Реклами
  • Смях и Развлечение
  • Спорт
  • Технологии, Компютри, Хардуер
  • ТВ Предавания и Шоу Програми
  • Хора и блогове
  • Филми и анимация
  • Други
  • Old School Hip-Hop and Electroo 80" Видео клипчета

Календари

  • Събития
  • Изложения
  • Семинари
  • Парти
  • Празници в България

Открити 554 резултата

  1. Проблемът ми е, когато пускам компютъра и след зареждане(може би дори първият приорите от персоналните програми) е да зареди google chrome със сайт(руски). Вероятно не е моя вината(брат ми си играе също)... Но до сега такъв проблем не съм имал-да не мога да намеря проблема. Ползвам дребни но ефикасни трикчета за справяне с такива неща, ако ли не използвам програми. Пробвах Iobit malware fighter 5.5, но явно(предполагах че) проблема е за професионалисти. Веднъж май хванах самият процес в "процесите"(task manager) и намирам същото име като на сайта в папката на Steam.
  2. Здравейте, от известно време ми направи впечатление, че след като изгасне монитора (не се ползва компютъра) се увеличават оборотите на вентилатора на процесора. Проблема изчезва веднага след като размърдам мишката. Предположих, че имам някакъв миньор и от предходните теми за подобен проблем качих и сканирах с Malwarebytes, който не откри нищо. Сканирах с free версията (с крака не можах да се оправя). Прилагам снимки от Resoursce Monitor и Task Manager. Aко е необходима повече информация казвайте. Предварително благодаря за помощта. п.п Шума със сигурност е вентилатора на процесора, защото до скоро нямах видео карта и звученето си го познавам добре. п.п. 2 Farbar Recovery Scan Tool FRST.txt и Addition.txt
  3. Здравейте, не знам дали темата е в правилния раздел, просто съм нова в сайта, съжалявам ако нещо не е както трябва.. Преди малко получих известие от антивирусната ми система, че е блокиран вирус на име 64win malware-gen.. Който е преместен в "затвора за вируси" Какво трябва да предприема, това опасен вирус ли е... Не разбирам от компютри, и не знам как да постъпя, пък ме е страх и за информацията на лаптопа ми. Моля ви дайте ми съвет какво да направя или не трябва да предприемам действия.. Страх ме е да няма и други вируси, защото отдолу на снимката не се вижда добре, но пише че "може да се спотайват и още други заплахи ". Ще приложа и снимка на съобщението от антивирусната система.. Благодаря Ви предварително.. Пс:съжалявам за лошото качество на снимката, но трябваше да намалявам размерите й, защото иначе не можех да я кача..
  4. Здравейте, от доста време насам браузъра ми е заразен с някаква руска търсачка. Пробвал съм да трия браузъра да променям настройките да премахвам всички добавки но без успех. Мисля,че с тоя боклук вървят в с още 2 с нея. Когато съм изгасил браузъра и си играя някоя игра примерно изведнъж ми се отваря някакъв шибан руски сайт asap.ru нещо подобно. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017 Ran by ASUS (administrator) on ASUS-PC (30-12-2017 20:36:37) Running from C:\Users\ASUS\Downloads Loaded Profiles: ASUS & UpdatusUser (Available Profiles: ASUS & UpdatusUser) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Български (България) Internet Explorer Version 9 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe () C:\Users\ASUS\AppData\Local\Facebook\Games\FacebookGames.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (Atheros) C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\Ath_WlanAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe () C:\Windows\Microsoft\svchost.exe (The CefSharp Authors) C:\Users\ASUS\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.exe (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291280 2012-12-20] (Intel Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [797328 2016-06-15] (Sandboxie Holdings, LLC) HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\...\Run: [vyrtapcchc] => explorer "hxxp://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=3B6FA89994383A9FB1DBD199FEE7BAD7&utm_d=20160526" <==== ATTENTION HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd) HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [57446848 2017-12-10] (Skype Technologies S.A.) HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\...\MountPoints2: {7e52b7ab-80b8-11e5-abf8-ac220bd789b4} - G:\Install.exe AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-07-08] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-07-08] (NVIDIA Corporation) Startup: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Games Arcade (BETA).lnk [2016-09-19] ShortcutTarget: Facebook Games Arcade (BETA).lnk -> C:\Users\ASUS\AppData\Local\Facebook\Games\FacebookGames.exe () GroupPolicy: Restriction - Chrome <==== ATTENTION GroupPolicy\User: Restriction <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 77.76.144.10 Tcpip\..\Interfaces\{18B97A15-4C37-40AB-8ABC-148924326CD0}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{18B97A15-4C37-40AB-8ABC-148924326CD0}: [DhcpNameServer] 77.76.144.10 Tcpip\..\Interfaces\{7B128963-1D6F-410F-B447-36004838DDB1}: [DhcpNameServer] 10.0.0.13 Internet Explorer: ================== HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://granena.ru/?utm_content=31b5cebd524a9af6c7a772dca81815e9&utm_source=startpm&utm_term=3B6FA89994383A9FB1DBD199FEE7BAD7&utm_d=20160526 HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie HKU\S-1-5-21-3540903787-1263480670-1707380032-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp SearchScopes: HKU\S-1-5-21-3540903787-1263480670-1707380032-1000 -> DefaultScope {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3540903787-1263480670-1707380032-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-3540903787-1263480670-1707380032-1000 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3540903787-1263480670-1707380032-1000 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7BA4B52271-83DE-44E1-91D2-F540224D09C8%7D&gp=811014 BHO-x32: Searchgo Class -> {598AEFC6-DD3C-4A63-9AC3-53FCF6155931} -> C:\Users\ASUS\AppData\LocalLow\SearchGo\searchgo.dll [2017-12-30] (Searchgo) BHO-x32: Поиск@Mail.Ru -> {8E8F97CD-60B5-456F-A201-73065652D099} -> C:\Users\ASUS\AppData\Local\Mail.Ru\Sputnik\IESearchPlugin.dll [2016-05-26] (Mail.Ru) Toolbar: HKLM-x32 - Searchgo - {2BC46CFA-4B00-4193-A7BD-6AD1D0BCB5BC} - C:\Users\ASUS\AppData\LocalLow\SearchGo\searchgo.dll [2017-12-30] (Searchgo) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-30] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-30] () FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin HKU\S-1-5-21-3540903787-1263480670-1707380032-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ASUS\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS) Chrome: ======= CHR HomePage: Default -> mail.ru CHR StartupUrls: Default -> "hxxp://granena.ru/?utm_content=31b5cebd524a9af6c7a772dca81815e9&utm_source=startpm&utm_term=3B6FA89994383A9FB1DBD199FEE7BAD7&utm_d=20160526" CHR NewTab: Default -> Not-active:"chrome-extension://nagnmfhgkjkplbhplkbicmpkfopmnefp/newtab.html" CHR DefaultSearchURL: Default -> hxxp://go-search.ru/search?q={searchTerms} CHR DefaultSearchKeyword: Default -> GoSearch CHR DefaultSuggestURL: Default -> hxxp://suggest.yandex.net/suggest-ff.cgi?part={searchTerms} CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default [2017-12-30] CHR Extension: (Презентации) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Документи) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Диск) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-01] CHR Extension: (YouTube) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-01] CHR Extension: (Chrome Cleaner Pro) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp [2017-11-12] CHR Extension: (Save Tabs) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-11-05] CHR Extension: (Таблици) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Документи офлайн) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-01] CHR Extension: (Skype) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-30] CHR Extension: (Microcosm - New Tab) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nagnmfhgkjkplbhplkbicmpkfopmnefp [2017-11-05] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Gmail) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-01] CHR Extension: (Chrome Media Router) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16] CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-12] CHR Extension: (No Name) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\ahggfmgiidlaceichjfemgbaggnbaloe [2017-08-25] CHR HKLM-x32\...\Chrome\Extension: [bgcifljfapbhgiehkjlckfjmgeojijcb] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lbjjfiihgfegniolckphpnfaokdkbmdm] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [nagnmfhgkjkplbhplkbicmpkfopmnefp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [197264 2016-06-15] (Sandboxie Holdings, LLC) R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.) R2 SvcHost Service Host; C:\Windows\Microsoft\svchost.exe [0 ] () <==== ATTENTION (zero byte File/Folder) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros) [File not signed] ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2015-11-01] (DT Soft Ltd) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-06-15] (Sandboxie Holdings, LLC) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-05-27] (Anchorfree Inc.) S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2009-07-14] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-12-30 20:36 - 2017-12-30 20:37 - 000014515 _____ C:\Users\ASUS\Downloads\FRST.txt 2017-12-30 20:36 - 2017-12-30 20:36 - 000000000 ____D C:\FRST 2017-12-30 20:35 - 2017-12-30 20:35 - 002391552 _____ (Farbar) C:\Users\ASUS\Downloads\FRST64.exe 2017-12-30 19:58 - 2017-12-30 20:04 - 000001310 _____ C:\Users\Public\Desktop\Skype.lnk 2017-12-30 19:58 - 2017-12-30 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-12-30 20:15 - 2016-03-17 20:38 - 000000000 ___RD C:\Users\ASUS\Desktop\Снимки 2017-12-30 20:05 - 2016-05-26 03:40 - 000000000 ____D C:\Users\ASUS\AppData\LocalLow\SearchGo 2017-12-30 20:05 - 2016-05-26 03:40 - 000000000 ____D C:\Users\ASUS\AppData\Local\SearchGo 2017-12-30 20:03 - 2017-07-09 14:45 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-12-30 20:03 - 2016-05-26 03:39 - 000000000 ____D C:\Users\ASUS\AppData\Local\PowerMonitor 2017-12-30 20:02 - 2009-07-14 07:13 - 000782154 _____ C:\Windows\system32\PerfStringBackup.INI 2017-12-30 20:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2017-12-30 20:00 - 2015-11-01 19:02 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-12-30 20:00 - 2015-11-01 19:02 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-12-30 20:00 - 2015-11-01 19:02 - 000004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-12-30 20:00 - 2015-11-01 19:02 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2017-12-30 20:00 - 2015-11-01 19:02 - 000000000 ____D C:\Windows\system32\Macromed 2017-12-30 19:57 - 2017-03-06 20:25 - 000000000 ___RD C:\Program Files (x86)\Skype 2017-12-30 19:57 - 2015-11-01 18:59 - 000000000 ____D C:\ProgramData\Skype 2017-12-30 19:55 - 2016-04-06 12:07 - 000001382 _____ C:\Windows\Sandboxie.ini 2017-12-30 19:54 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-11-30 12:07 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-11-30 12:07 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-11-30 05:25 - 2015-11-01 18:59 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\Skype ==================== Files in the root of some directories ======= 2016-03-30 13:19 - 2016-03-30 13:19 - 000000036 _____ () C:\Users\ASUS\AppData\Local\housecall.guid.cache 2016-07-12 22:16 - 2016-07-12 22:16 - 000004096 ____H () C:\Users\ASUS\AppData\Local\keyfile3.drm Some files in TEMP: ==================== 2017-11-24 23:55 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\113.tmp.exe 2017-11-25 00:04 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\1214.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\1B95.tmp.exe 2017-11-24 23:59 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\1C50.tmp.exe 2017-11-25 00:06 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\27E4.tmp.exe 2017-11-12 15:44 - 2017-11-12 11:13 - 000775168 ____N (PhoneLine SOFT Inc) C:\Users\ASUS\AppData\Local\Temp\28DE.tmp.exe 2017-11-17 01:08 - 2017-11-16 23:36 - 000807912 _____ () C:\Users\ASUS\AppData\Local\Temp\2AE7.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\2B1F.tmp.exe 2017-11-25 00:04 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\2E2B.tmp.exe 2017-11-24 23:59 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\30E9.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\31B4.tmp.exe 2017-11-25 00:05 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3212.tmp.exe 2017-11-25 00:06 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3443.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\34A1.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3665.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3B45.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3C01.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3C3F.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3C4F.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3CAC.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\3CCB.tmp.exe 2017-11-25 00:00 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\4DCC.tmp.exe 2017-11-25 00:00 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\4EB6.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\5403.tmp.exe 2017-11-24 23:59 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\5480.tmp.exe 2017-11-24 23:59 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\5885.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\5D75.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\5E6F.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\5E7E.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\5E8E.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\5EFB.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\62A3.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\67A2.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\6A8F.tmp.exe 2017-11-25 00:05 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\727B.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\7327.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\7420.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\7568.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\7F37.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\8F4E.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\949B.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\9EC8.tmp.exe 2017-11-25 00:00 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\A129.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\A5BB.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\A934.tmp.exe 2017-11-25 00:00 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\AA4D.tmp.exe 2017-11-27 07:14 - 2017-11-27 01:56 - 000930776 ____N () C:\Users\ASUS\AppData\Local\Temp\B082.tmp.exe 2017-11-25 00:00 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\BF81.tmp.exe 2017-11-25 00:01 - 2017-11-24 21:33 - 000902136 ____N () C:\Users\ASUS\AppData\Local\Temp\C184.tmp.exe 2017-11-25 00:05 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\C1D2.tmp.exe 2017-11-25 00:05 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\C838.tmp.exe 2017-11-18 14:23 - 2017-11-18 13:59 - 000803816 _____ () C:\Users\ASUS\AppData\Local\Temp\CA7F.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\CD09.tmp.exe 2017-11-18 14:23 - 2017-11-18 13:59 - 000803816 _____ () C:\Users\ASUS\AppData\Local\Temp\CD7B.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\CDD4.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\CF4A.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\CFD6.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\D275.tmp.exe 2017-11-25 00:06 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\DB8A.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\DFCE.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\E05A.tmp.exe 2017-11-25 00:05 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\E662.tmp.exe 2017-11-17 01:08 - 2017-11-16 23:36 - 000807912 _____ () C:\Users\ASUS\AppData\Local\Temp\EDF7.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\F512.tmp.exe 2017-11-25 00:07 - 2017-11-24 21:33 - 000902136 _____ () C:\Users\ASUS\AppData\Local\Temp\F6D6.tmp.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe [2010-11-21 05:24] - [2011-01-16 02:01] - 000389632 _____ (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 001008640 _____ (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-11-19 01:44 ==================== End of FRST.txt ============================ Addition.txt
  5. Здравейте, направих тема https://www.kaldata.com/forums/topic/265104-троянец-в-папка-cache-на-google-chrome/ но ми казаха да направя и тук. Набързо ще се повторя, антивирусната Windows Defender ми открива Brocoiner в папка Cache на Chrome. Трия го след което и всички други файлове в папката също ги трия. Но след време пак ми го открива там и си мисля че е от сайт, който посещавам редовно. Има ли вариант да се разбира по някакъв начин, кой файл от кой сайт е създаден в папка Cache на Google Chrome?
  6. Ето събщението, което получава всеки изпратил имейл до нас: This message was created automatically by mail delivery software. A message that you sent has not yet been delivered to one or more of its recipients after more than 24 hours on the queue on hemus.superhosting.bg. The message identifier is: 1eJa1Z-003lh9-9Y The subject of the message is: =?utf-8?B?Rlc6INC80LDQvdC+0LzQtdGC0YrRgA==?= The date of the message is: Tue, 28 Nov 2017 09:09:44 +0200 The address to which the message has not yet been delivered is: henryresult111@gmail.com (ultimately generated from xxxxxxx@xxxxxxxx.bg) host alt4.gmail-smtp-in.l.google.com [74.125.28.27] Delay reason: SMTP error from remote mail server after RCPT TO:<henryresult111@gmail.com>: 452-4.2.2 The email account that you tried to reach is over quota. Please direct 452-4.2.2 the recipient to 452 4.2.2 https://support.google.com/mail/?p=OverQuotaTemp h72si2628468pfj.20 - gsmtp No action is required on your part. Delivery attempts will continue for some time, and this warning may be repeated at intervals if the message remains undelivered. Eventually the mail delivery software will give up, and when that happens, the message will be returned to you. Това съобщение го получават изпращащите мейли към този домейн. Събщенията се получават без проблем. Няма проблем и със сървърното място. Не разбирам и каква е връзката с gmail и google след като домейнът е частен. Също нямам никаква идея чий е този имейл: henryresult111@gmail.com Възможно ли е да е вирус? Сканирани са всички служебни машини. Имаше разни гадини, които уж обезвредихме, но проблемът не се оправи. Сменихме и паролите на всички мейли - нищо. Ето информацията от FRST: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-11-2017 Ran by pc (administrator) on PC1 (30-11-2017 14:23:09) Running from C:\Documents and Settings\pc.PC1\Desktop Loaded Profiles: pc (Available Profiles: pc & Administrator & Guest) Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe (HP) C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe (HP) C:\WINDOWS\system32\HPSIsvc.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe (Viber Media S.Ã r.l.) C:\Documents and Settings\pc.PC1\Local Settings\Application Data\Viber\Viber.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe () C:\2017\wsklad.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDCPL] => C:\Windows\RTHDCPL.EXE [16859648 2008-01-09] (Realtek Semiconductor Corp.) HKLM\...\Run: [Alcmtr] => C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.) HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-10-31] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [302744 2017-11-16] (AVG Technologies CZ, s.r.o.) HKU\S-1-5-20\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation) HKU\S-1-5-21-329068152-1604221776-1801674531-1003\...\Run: [Viber] => C:\Documents and Settings\pc.PC1\Local Settings\Application Data\Viber\Viber.exe [69268048 2016-04-13] (Viber Media S.Ã r.l.) HKU\S-1-5-21-329068152-1604221776-1801674531-1003\...\MountPoints2: {260473e8-84c9-11e3-a542-001cf0d5a2b8} - G:\SISetup.exe HKU\S-1-5-18\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation) Startup: C:\Documents and Settings\pc.PC1\Start Menu\Programs\Startup\Microsoft Office Outlook 2007.lnk [2017-11-30] ShortcutTarget: Microsoft Office Outlook 2007.lnk -> C:\WINDOWS\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe () Startup: C:\Documents and Settings\pc.PC1\Start Menu\Programs\Startup\Skype.lnk [2017-03-06] ShortcutTarget: Skype.lnk -> C:\WINDOWS\Installer\{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}\Skype.ico (No File) GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{E7E61260-FB73-4F9E-B467-F1870B906C7C}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-329068152-1604221776-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKU\S-1-5-21-329068152-1604221776-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-22] (Sun Microsystems, Inc.) BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-06-22] (Sun Microsystems, Inc.) DPF: {22945A69-1191-4DCF-9E6F-409BDE94D101} hxxp://dl-ak.solidworks.com/nonsecure/edrawings/e2012sp02/12.2.0.110/cab//eModelsStandard.cab DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies) FireFox: ======== FF DefaultProfile: 07ckpc18.default-1412315343695 FF ProfilePath: C:\Documents and Settings\pc.PC1\Application Data\Mozilla\Firefox\Profiles\07ckpc18.default-1412315343695 [2017-11-30] FF Extension: (YouTube Video and Audio Downloader) - C:\Documents and Settings\pc.PC1\Application Data\Mozilla\Firefox\Profiles\07ckpc18.default-1412315343695\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2017-05-22] [Lagacy] FF Extension: (Google Search by Image) - C:\Documents and Settings\pc.PC1\Application Data\Mozilla\Firefox\Profiles\07ckpc18.default-1412315343695\Extensions\google@hitachi.com.xpi [2016-05-03] [Lagacy] FF Extension: (signTextJS) - C:\Documents and Settings\pc.PC1\Application Data\Mozilla\Firefox\Profiles\07ckpc18.default-1412315343695\Extensions\jid1-AXn9cXcB4fD1QQ@jetpack.xpi [2017-06-15] [Lagacy] FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff FF Extension: (Java Quick Starter) - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-06-22] [Lagacy] [not signed] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-01-27] [Lagacy] [not signed] FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension FF Extension: (SmartPrintButton) - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Lagacy] [not signed] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll [2013-09-04] () FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.) Chrome: ======= CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found> ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [282536 2017-11-16] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5954792 2017-11-16] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-10-31] (AVG Technologies CZ, s.r.o.) R2 HPM1210RcvFaxSrvc; C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe [247712 2012-07-25] (HP) S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [152984 2009-06-22] (Sun Microsystems, Inc.) S4 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [65536 2003-10-22] (HP) [File not signed] S4 rcp_service; C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe [558592 2007-11-30] (ReaSoft) [File not signed] R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.) S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\WMPNetwk.exe [913408 2006-10-18] (Microsoft Corporation) [File not signed] S2 APNMCP; "C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe" [X] S2 HP LaserJet Service; "C:\Program Files\hp\HPLaserJetService\HPLaserJetService.exe" [X] S0 MBAMService; no ImagePath ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [20624 2012-10-31] (AVAST Software) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [149592 2017-11-16] (AVG Technologies CZ, s.r.o.) R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiskx.sys [135872 2017-11-16] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriverx.sys [249232 2017-11-16] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidshx.sys [151024 2017-11-16] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\WINDOWS\System32\drivers\avgblogx.sys [270344 2017-11-16] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbunivx.sys [43992 2017-11-16] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [35264 2017-11-16] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [117368 2017-11-16] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [63280 2017-11-16] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [775552 2017-11-16] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [381184 2017-11-16] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [290776 2017-11-16] (AVG Technologies CZ, s.r.o.) S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation) S3 dg_ssudbus; C:\WINDOWS\System32\DRIVERS\ssudbus.sys [107648 2016-07-22] (Samsung Electronics Co., Ltd.) S3 HP1210FAX; C:\WINDOWS\System32\Drivers\HPM1210FAX.sys [13824 2010-04-28] () [File not signed] R3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation) R3 m4cxw2k3; C:\WINDOWS\System32\DRIVERS\m4cxw2k3.sys [250752 2007-02-15] (D-Link Corporation) S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22344 2012-04-04] (Malwarebytes Corporation) S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation) S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2009-08-03] (VSO Software) [File not signed] R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation) S3 SONYPVU1; C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation) S0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [721904 2009-07-13] (Duplex Secure Ltd.) S3 ssudmdm; C:\WINDOWS\System32\DRIVERS\ssudmdm.sys [146048 2016-07-22] (Samsung Electronics Co., Ltd.) S3 WpdUsb; C:\WINDOWS\System32\DRIVERS\wpdusb.sys [38528 2006-10-18] (Microsoft Corporation) [File not signed] S2 adfs; no ImagePath S3 BOCDRIVE; \??\C:\Program Files\Comodo\CBOClean\BOCDRIVE.sys [X] S2 DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys [X] S3 FXDrv32; \??\D:\FXDrv32.sys [X] S4 IntelIde; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-11-30 14:23 - 2017-11-30 14:23 - 000012709 _____ C:\Documents and Settings\pc.PC1\Desktop\FRST.txt 2017-11-30 14:22 - 2017-11-30 14:23 - 000000000 ____D C:\FRST 2017-11-30 14:22 - 2017-11-30 14:22 - 001752064 _____ (Farbar) C:\Documents and Settings\pc.PC1\Desktop\FRST.exe 2017-11-30 10:49 - 2017-11-30 10:49 - 000025377 _____ C:\Documents and Settings\pc.PC1\Local Settings\Application Data\recently-used.xbel 2017-11-24 14:34 - 2017-11-24 14:34 - 000000000 ____D C:\Program Files\Quester 2017-11-24 14:34 - 2017-11-24 14:34 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\QMailFilter 2017-11-24 14:32 - 2017-11-24 14:32 - 000000000 ____D C:\Documents and Settings\Administrator.PC1\Local Settings\Application Data\CEF 2017-11-24 14:32 - 2017-11-24 14:32 - 000000000 ____D C:\Documents and Settings\Administrator.PC1\Application Data\AVG 2017-11-24 14:31 - 2017-11-24 14:31 - 000000000 ____D C:\Documents and Settings\Administrator.PC1\Local Settings\Application Data\Avg 2017-11-24 14:21 - 2017-11-24 14:21 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\PCHealth 2017-11-20 12:24 - 2017-11-20 12:40 - 000065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt 2017-11-20 12:24 - 2017-11-20 12:24 - 000000000 ____D C:\Documents and Settings\pc.PC1\Doctor Web 2017-11-20 12:24 - 2017-11-20 12:24 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Doctor Web 2017-11-16 14:45 - 2017-11-16 14:45 - 000087203 _____ C:\Documents and Settings\pc.PC1\My Documents\Untitled.pdf 2017-11-16 14:45 - 2017-11-16 14:45 - 000087203 _____ C:\Documents and Settings\pc.PC1\Desktop\Untitled.pdf 2017-11-16 13:03 - 2017-11-16 13:05 - 000000000 ____D C:\EEK 2017-11-16 13:02 - 2017-11-16 13:02 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\Temp 2017-11-16 10:11 - 2017-11-16 10:11 - 000001608 _____ C:\Documents and Settings\All Users\Desktop\AVG AntiVirus FREE.lnk 2017-11-16 10:11 - 2017-11-16 10:11 - 000000000 ____D C:\Documents and Settings\pc.PC1\Application Data\AVG 2017-11-16 10:10 - 2017-11-30 10:10 - 000000288 ____H C:\WINDOWS\Tasks\Antivirus Emergency Update.job 2017-11-16 10:10 - 2017-11-16 10:10 - 000775552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000381184 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000306448 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2017-11-16 10:10 - 2017-11-16 10:10 - 000290776 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000270344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgblogx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000249232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriverx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000151024 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidshx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000149592 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000135872 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiskx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000117368 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000063280 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000043992 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbunivx.sys 2017-11-16 10:10 - 2017-11-16 10:10 - 000035264 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys 2017-11-16 10:08 - 2017-11-16 10:11 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2017-11-16 10:08 - 2017-11-16 10:08 - 000000629 _____ C:\Documents and Settings\All Users\Desktop\AVG.lnk 2017-11-16 10:06 - 2017-11-30 11:06 - 000000314 ____H C:\WINDOWS\Tasks\AVG EUpdate Task.job 2017-11-16 10:06 - 2017-11-16 10:08 - 000000000 ____D C:\Program Files\AVG 2017-11-16 09:51 - 2017-11-16 09:51 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\CEF 2017-11-16 09:50 - 2017-11-16 11:23 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Avg 2017-11-16 09:50 - 2017-11-16 10:11 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\Avg 2017-11-16 09:50 - 2017-11-16 10:08 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\AvgSetupLog ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-11-30 14:23 - 2013-08-02 12:50 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Temp 2017-11-30 14:20 - 2015-08-03 07:23 - 000271360 _____ C:\Documents and Settings\pc.PC1\My Documents\Outlook_Archive.pst 2017-11-30 14:16 - 2016-12-27 11:00 - 000000000 ____D C:\2017 2017-11-30 10:49 - 2014-01-15 10:08 - 000000000 ____D C:\Documents and Settings\pc.PC1\Local Settings\Application Data\gtk-2.0 2017-11-30 10:49 - 2013-08-02 12:55 - 000000000 ____D C:\Documents and Settings\pc.PC1\.gimp-2.8 2017-11-30 07:55 - 2016-08-12 14:25 - 000000000 ____D C:\Documents and Settings\pc.PC1\Application Data\ViberPC 2017-11-30 07:52 - 2014-03-28 08:20 - 000000216 _____ C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job 2017-11-30 07:52 - 2008-09-12 18:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-11-30 07:52 - 2008-04-14 14:00 - 000011936 _____ C:\WINDOWS\system32\wpa.dbl 2017-11-29 16:54 - 2013-08-02 12:50 - 000000178 ___SH C:\Documents and Settings\pc.PC1\ntuser.ini 2017-11-29 16:54 - 2013-08-02 12:50 - 000000000 ____D C:\Documents and Settings\pc.PC1 2017-11-29 16:54 - 2008-09-12 18:28 - 000032520 _____ C:\WINDOWS\SchedLgU.Txt 2017-11-28 11:37 - 2011-12-19 11:25 - 000000000 ____D C:\Program Files\The KMPlayer 2017-11-24 14:40 - 2013-08-02 13:09 - 000211496 _____ C:\Documents and Settings\pc.PC1\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2017-11-24 14:37 - 2013-11-01 13:09 - 000000178 ___SH C:\Documents and Settings\Administrator.PC1\ntuser.ini 2017-11-24 14:36 - 2010-03-25 10:10 - 000979370 _____ C:\WINDOWS\ntbtlog.txt 2017-11-24 14:35 - 2013-11-01 13:09 - 000000000 ____D C:\Documents and Settings\Administrator.PC1\Local Settings\Temp 2017-11-24 14:28 - 2008-09-12 21:12 - 002469912 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-11-24 14:25 - 2013-08-02 14:23 - 000065536 _____ C:\WINDOWS\system32\config\ODiag.evt 2017-11-24 14:15 - 2008-09-13 10:13 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help 2017-11-24 14:12 - 2008-04-14 14:00 - 000000668 _____ C:\WINDOWS\win.ini 2017-11-24 11:47 - 2016-08-12 14:25 - 000000000 ____D C:\Documents and Settings\pc.PC1\My Documents\ViberDownloads 2017-11-22 16:05 - 2013-12-11 14:52 - 000000000 ____D C:\2014 2017-11-22 16:04 - 2010-12-03 14:28 - 000000000 ____D C:\2011 2017-11-22 16:03 - 2011-12-09 14:39 - 000000000 ____D C:\2012 2017-11-22 15:40 - 2013-08-02 13:28 - 000002515 _____ C:\Documents and Settings\pc.PC1\Desktop\Microsoft Office Word 2007.lnk 2017-11-22 14:28 - 2014-12-29 16:42 - 000000000 ____D C:\2015 2017-11-22 14:25 - 2015-12-23 11:32 - 000000000 ____D C:\2016 2017-11-16 10:55 - 2014-10-02 15:34 - 000000000 ____D C:\Documents and Settings\pc.PC1\Application Data\istartsurf 2017-11-16 10:48 - 2012-12-20 13:57 - 000000000 ____D C:\2013 2017-11-16 10:38 - 2014-10-02 15:34 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\IePluginServices 2017-11-16 09:28 - 2010-09-30 15:57 - 000000000 ____D C:\Program Files\ough 2017-11-16 09:01 - 2013-09-23 15:54 - 002755382 ___SH C:\Documents and Settings\pc.PC1\Desktop\Thumbs.db 2017-11-10 13:23 - 2013-08-02 13:49 - 000000000 ____D C:\Documents and Settings\pc.PC1\Application Data\Skype 2017-11-08 15:00 - 2014-03-28 08:20 - 000000210 _____ C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job ==================== Files in the root of some directories ======= 2015-08-17 11:04 - 2015-08-17 11:08 - 000304492 _____ (AYURvmkth8) C:\Documents and Settings\pc.PC1\Application Data\adobe.exe 2013-10-07 13:55 - 2014-04-09 12:28 - 000000531 _____ () C:\Documents and Settings\pc.PC1\Application Data\burnaware.ini 2013-08-02 13:31 - 2017-08-18 12:25 - 000036352 _____ () C:\Documents and Settings\pc.PC1\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-02-27 17:15 - 2014-02-28 09:48 - 000000600 _____ () C:\Documents and Settings\pc.PC1\Local Settings\Application Data\PUTTY.RND 2017-11-30 10:49 - 2017-11-30 10:49 - 000025377 _____ () C:\Documents and Settings\pc.PC1\Local Settings\Application Data\recently-used.xbel 2011-03-11 09:28 - 2011-03-11 09:28 - 000000016 _____ () C:\Documents and Settings\All Users\Application Data\.7486160831680234 2008-10-31 09:19 - 2008-10-31 09:19 - 000000041 ___SH () C:\Documents and Settings\All Users\Application Data\.zreglib 2008-09-13 13:47 - 2016-04-26 08:08 - 000001669 _____ () C:\Documents and Settings\All Users\Application Data\hpzinstall.log 2014-08-15 11:57 - 2010-03-30 10:12 - 000024772 _____ () C:\Documents and Settings\All Users\Application Data\P1210DEF.css 2014-08-15 11:57 - 2016-01-22 14:22 - 000015499 _____ () C:\Documents and Settings\All Users\Application Data\P1210OS.HTM 2014-08-15 11:57 - 2010-03-30 10:12 - 000002944 _____ () C:\Documents and Settings\All Users\Application Data\P1210SIG.GIF Some files in TEMP: ==================== 2017-10-13 09:08 - 2011-12-29 11:44 - 001275396 _____ (NCH Software) C:\Documents and Settings\pc.PC1\Local Settings\Temp\uninst.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End of FRST.txt ============================ Addition.txt
  7. Здравейте.От няколко дни компютъра ми блокира по време на работа,отблокирването става само ,като включа task manager.Тръгва всичко нормално,но след няколко минути отново забива.С windows 8.1 съм.Mawlarebytes я инсталирам ,но не ми дава да се стартира.Очаквам помощ дали проблема е от вирус или проблем в хардуера. Addition.txt FRST.txt
  8. Добър вечер! Занимавах се с едни несигурни програми за gta и май сам прихванал вирус,постояно се товари се товари и забива на отваряне на папка Може ли да проверим регистрите дали има нещо защото имам много важни програми. Благодаря! f.txt HitmanPro_20171016_2331.log AdwCleaner[S0].txt
  9. Здравейте! Имах вируси на USB флашки и на един лаптоп.Там проблемите мисля че ги реших.За това бях писал в една друга тема. Имам една стара машина декстоп,която ползвам всеки ден.Тази машина работи нормално според мен.Проблема е,че като включа флашка на този декстоп,на флашката се качва някакъв вирус.Флашката проверявам на един лаптоп с MCShield в параноиден режим.Качих на заразения декстоп MCShield,тази програма не намира проблеми там. Сканирах декстопа с Farbar Recovery Scan Tool.Накрая на сканирането тулчето изписа някаква грешка. Прилагам двата файла от сканирането.Ако може да окажете помощ ще съм благодарен! Благодаря за вниманието! FRST.txt Addition.txt
  10. Здравейте,и двата шифта не работят както трябва.Работят с някои клавиши,но като цъкам тези клавиши и другите се оправят.Въпроса ми е да не би да е вирус,защото теглих autodata и след това мисля,че се получи проблема,а TS360 ми изпищя,че има троянец във торента,разбира се предполагах от краковете.Също и фпс-то на цс-а падна на 70-80 от 160-200.Прикачвам лог от FRST. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-10-2017 Ran by bobby (administrator) on BOBY (02-10-2017 13:00:48) Running from C:\Users\bobby\Downloads Loaded Profiles: bobby (Available Profiles: bobby) Platform: Windows 8.1 (Update) (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Autodata Limited) C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe (@ByELDI) D:\Downloads\KMSpico_10.2.0\KMSpico\Service_KMS.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (Qihu 360 Software Co., Ltd.) C:\Program Files (x86)\360\Total Security\safemon\chrome\360webshield.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-10-13] (Conexant Systems, Inc.) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [345000 2017-08-29] (QIHU 360 SOFTWARE CO. LIMITED) HKU\S-1-5-21-3041877358-191924833-3829036719-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-17] (Disc Soft Ltd) HKU\S-1-5-21-3041877358-191924833-3829036719-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3074336 2017-09-27] (Valve Corporation) HKU\S-1-5-21-3041877358-191924833-3829036719-1001\...\MountPoints2: {0380623e-8e5a-11e7-8251-28c2dd571342} - "G:\Inst.exe" HKU\S-1-5-21-3041877358-191924833-3829036719-1001\...\MountPoints2: {038063b1-8e5a-11e7-8251-28c2dd571342} - "H:\SETUP.EXE" HKU\S-1-5-21-3041877358-191924833-3829036719-1001\...\MountPoints2: {23735b35-8e79-11e7-8253-28c2dd571342} - "I:\SETUP.EXE" GroupPolicy: Restriction <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.31.1 Tcpip\..\Interfaces\{9683ECB9-59D8-4E91-BF28-375C96FC72EE}: [DhcpNameServer] 192.168.31.1 Tcpip\..\Interfaces\{9ADF9BFB-322E-4398-8E1F-99E9E89E7B3E}: [DhcpNameServer] 192.168.31.1 Internet Explorer: ================== HKU\S-1-5-21-3041877358-191924833-3829036719-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2017-08-29] (Qihu 360 Software Co., Ltd.) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2017-08-29] (Qihu 360 Software Co., Ltd.) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft) FireFox: ======== FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-31] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-31] (Google Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.bg/ CHR StartupUrls: Default -> "hxxps://www.google.bg/" CHR Profile: C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default [2017-10-02] CHR Extension: (Easy Auto Refresh) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2017-09-26] CHR Extension: (Steam Community SteamRep Integration) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaclmldkenecanphogeaacolljiphmnk [2017-08-31] CHR Extension: (Google Презентации) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-31] CHR Extension: (Google Документи) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-31] CHR Extension: (Google Диск) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-31] CHR Extension: (Unlocker for WakeLockDetector) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgeplmmblegmdackkcemjkpngngocgjp [2017-08-31] CHR Extension: (YouTube) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-31] CHR Extension: (Steam Inventory Helper) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-10-02] CHR Extension: (Lounge Assistant) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2017-08-31] CHR Extension: (uBlock) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2017-08-31] CHR Extension: (Електронни таблици от Google) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-31] CHR Extension: (Отдалечен работен плот на Chrome) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2017-08-31] CHR Extension: (LoungeDestroyer) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2017-08-31] CHR Extension: (Google Документи офлайн) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-31] CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-09-15] CHR Extension: (360 Internet Protection) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2017-08-31] CHR Extension: (Invite All Friends on Facebook) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\inmmhkeajgflmokoaaoadgkhhmibjbpj [2017-09-27] CHR Extension: (CS:GO Lounge Bump Bot) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfkidfnhjcjjamcbdepeohblphlamgk [2017-08-31] CHR Extension: (Floating for YouTube™) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2017-08-31] CHR Extension: (Message/Chat Downloader) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkinapjekllgfipphkgpmombekfclghe [2017-08-31] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-31] CHR Extension: (NeoBux AdAlert) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen [2017-09-30] CHR Extension: (Gmail) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-31] CHR Extension: (Chrome Media Router) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-19] CHR Extension: (Abstract Blue) - C:\Users\bobby\AppData\Local\Google\Chrome\User Data\Default\Extensions\plnacehkknmafkjgkikclamogikoiaaa [2017-08-31] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Autodata Limited License Service; C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe [72704 2017-09-28] (Autodata Limited) [File not signed] S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-09-15] (EasyAntiCheat Ltd) S3 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-08-22] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-09-19] (NVIDIA Corporation) R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [929888 2017-08-29] (QIHU 360 SOFTWARE CO. LIMITED) R2 Service KMSELDI; D:\Downloads\KMSpico_10.2.0\KMSpico\Service_KMS.exe [745664 2016-01-12] (@ByELDI) [File not signed] R3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-17] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [175040 2017-08-29] (360.cn) R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2017-08-29] (360.cn) R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2017-08-29] (360.cn) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [330472 2017-08-29] (360.cn) R1 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [49088 2017-08-29] (360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [423360 2017-08-29] (360.cn) R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-12-31] (ASUS Corporation) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [190400 2017-08-29] (360.cn) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-08-31] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-08-31] (Disc Soft Ltd) R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48248 2017-08-22] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57976 2017-08-22] (NVIDIA Corporation) R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [444632 2013-10-18] (Realsil Semiconductor Corporation) R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3593432 2014-10-07] (Realtek Semiconductor Corporation ) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-10-02 13:00 - 2017-10-02 13:01 - 000019333 _____ C:\Users\bobby\Downloads\FRST.txt 2017-10-02 13:00 - 2017-10-02 13:00 - 000000000 ____D C:\FRST 2017-10-02 12:59 - 2017-10-02 12:59 - 002399744 _____ (Farbar) C:\Users\bobby\Downloads\FRST64.exe 2017-09-30 13:11 - 2017-09-30 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios 2017-09-30 11:40 - 2017-09-30 11:40 - 001790024 _____ (Malwarebytes) C:\Users\bobby\Downloads\Непотвърдено 889483.crdownload 2017-09-30 11:39 - 2017-09-30 11:41 - 000000000 ____D C:\AdwCleaner 2017-09-30 11:39 - 2017-09-30 11:39 - 008250832 _____ (Malwarebytes) C:\Users\bobby\Downloads\adwcleaner_7.0.3.1.exe 2017-09-30 11:26 - 2017-09-30 11:26 - 000000000 ____D C:\ProgramData\Malwarebytes 2017-09-30 11:25 - 2017-09-30 11:25 - 000000000 ____D C:\Windows\system32\Drivers\etc\BACKUP 2017-09-30 11:25 - 2017-09-30 11:25 - 000000000 ____D C:\ProgramData\MB2Migration 2017-09-30 11:24 - 2017-09-30 11:24 - 000011576 _____ C:\Users\bobby\Downloads\Malwarebytes Anti-Malware Premium v3.2.2.2029 RePack.torrent 2017-09-28 18:00 - 2017-09-28 18:00 - 000000600 _____ C:\Users\Public\Desktop\Autodata CDA-3.lnk 2017-09-28 18:00 - 2017-09-28 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodata 2017-09-28 17:59 - 2017-09-28 18:00 - 000000000 ____D C:\ADCDA2 2017-09-28 17:59 - 2017-09-28 17:59 - 000000000 ____D C:\ADCDTEMP 2017-09-28 15:04 - 2017-09-28 18:00 - 000000000 ____D C:\Users\bobby\Documents\Autodata 2017-09-28 15:04 - 2017-09-28 15:04 - 000003022 _____ C:\Windows\System32\Tasks\{F057C150-4601-40D5-93CB-FB66F88AA4FC} 2017-09-28 14:59 - 2017-09-28 14:59 - 000018978 _____ C:\Users\bobby\Downloads\Autodata_3.18.iso.torrent 2017-09-28 14:54 - 2017-09-28 14:54 - 000014138 _____ C:\Users\bobby\Downloads\AD3.38EN.torrent 2017-09-27 20:01 - 2017-09-27 20:01 - 000017910 _____ C:\Users\bobby\Downloads\AutoData CDA 3.45.torrent 2017-09-23 21:06 - 2017-09-23 21:06 - 082471739 _____ C:\Users\bobby\Downloads\facebook-bobito981.zip 2017-09-18 17:58 - 2017-09-18 17:58 - 000001402 _____ C:\Users\bobby\Desktop\aida64 - Shortcut.lnk 2017-09-18 17:57 - 2017-09-18 17:57 - 000000000 ____D C:\Program Files (x86)\AIDA64 2017-09-18 17:12 - 2017-09-18 17:12 - 000007908 _____ C:\Users\bobby\Downloads\AIDA64-5.75.3900.torrent 2017-09-15 22:08 - 2017-09-15 22:08 - 000000000 ____D C:\Users\bobby\AppData\Roaming\EasyAntiCheat 2017-09-15 22:06 - 2017-09-15 22:07 - 000000000 ____D C:\Users\bobby\AppData\Local\HirezLauncherUI 2017-09-15 22:05 - 2017-10-02 12:28 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2017-09-15 22:05 - 2017-09-30 13:11 - 000000000 ____D C:\ProgramData\Hi-Rez Studios 2017-09-15 21:33 - 2017-09-15 21:33 - 000000222 _____ C:\Users\bobby\Desktop\Paladins.url 2017-09-15 19:28 - 2017-09-15 19:28 - 000000222 _____ C:\Users\bobby\Desktop\PlanetSide 2.url 2017-09-14 22:08 - 2017-09-14 22:08 - 000000000 ____D C:\Users\bobby\AppData\Roaming\Shooter 2017-09-14 22:06 - 2017-09-15 22:08 - 000000000 ____D C:\Users\bobby\Documents\My Games 2017-09-14 21:59 - 2017-09-15 21:33 - 000382504 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe 2017-09-14 20:32 - 2017-09-14 20:32 - 000000222 _____ C:\Users\bobby\Desktop\Dirty Bomb.url 2017-09-13 11:06 - 2017-08-19 20:27 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2017-09-13 11:06 - 2017-08-19 19:48 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2017-09-13 11:06 - 2017-08-18 01:07 - 000537200 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2017-09-13 11:06 - 2017-08-18 01:07 - 000140016 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2017-09-13 11:06 - 2017-08-18 01:03 - 000450392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2017-09-13 11:06 - 2017-08-18 01:03 - 000136832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2017-09-13 11:06 - 2017-08-15 17:06 - 015260160 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2017-09-13 11:06 - 2017-08-15 17:01 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2017-09-13 11:06 - 2017-08-15 17:01 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2017-09-13 11:06 - 2017-08-15 17:01 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2017-09-13 11:06 - 2017-08-15 16:58 - 013673984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2017-09-13 11:06 - 2017-08-13 21:58 - 025730560 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2017-09-13 11:06 - 2017-08-13 20:19 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys 2017-09-13 11:06 - 2017-08-13 20:05 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-09-13 11:06 - 2017-08-13 20:04 - 002899968 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2017-09-13 11:06 - 2017-08-13 19:54 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2017-09-13 11:06 - 2017-08-13 19:51 - 005981696 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2017-09-13 11:06 - 2017-08-13 19:50 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2017-09-13 11:06 - 2017-08-13 19:29 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2017-09-13 11:06 - 2017-08-13 19:28 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2017-09-13 11:06 - 2017-08-13 19:24 - 002291200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2017-09-13 11:06 - 2017-08-13 19:23 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2017-09-13 11:06 - 2017-08-13 19:21 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2017-09-13 11:06 - 2017-08-13 19:20 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2017-09-13 11:06 - 2017-08-13 19:17 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2017-09-13 11:06 - 2017-08-13 19:15 - 007078912 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll 2017-09-13 11:06 - 2017-08-13 19:14 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2017-09-13 11:06 - 2017-08-13 19:07 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2017-09-13 11:06 - 2017-08-13 19:05 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2017-09-13 11:06 - 2017-08-13 19:04 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2017-09-13 11:06 - 2017-08-13 19:04 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2017-09-13 11:06 - 2017-08-13 19:01 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2017-09-13 11:06 - 2017-08-13 18:52 - 005274624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll 2017-09-13 11:06 - 2017-08-13 18:52 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll 2017-09-13 11:06 - 2017-08-13 18:51 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2017-09-13 11:06 - 2017-08-13 18:48 - 004547072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2017-09-13 11:06 - 2017-08-13 18:46 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2017-09-13 11:06 - 2017-08-13 18:44 - 000694784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2017-09-13 11:06 - 2017-08-13 18:44 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2017-09-13 11:06 - 2017-08-13 18:43 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2017-09-13 11:06 - 2017-08-13 18:40 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2017-09-13 11:06 - 2017-08-13 18:27 - 001544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2017-09-13 11:06 - 2017-08-13 18:25 - 007797248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2017-09-13 11:06 - 2017-08-13 18:18 - 005270016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2017-09-13 11:06 - 2017-08-13 18:18 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2017-09-13 11:06 - 2017-08-13 18:17 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2017-09-13 11:06 - 2017-08-13 18:14 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2017-09-13 11:06 - 2017-08-13 18:13 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2017-09-13 11:06 - 2017-08-12 12:30 - 022361344 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2017-09-13 11:06 - 2017-08-12 12:26 - 019789736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2017-09-13 11:06 - 2017-08-12 03:39 - 001364552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2017-09-13 11:06 - 2017-08-12 02:59 - 007440728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2017-09-13 11:06 - 2017-08-12 02:58 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2017-09-13 11:06 - 2017-08-12 02:58 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2017-09-13 11:06 - 2017-08-11 23:46 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll 2017-09-13 11:06 - 2017-08-11 23:29 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll 2017-09-13 11:06 - 2017-08-11 23:13 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll 2017-09-13 11:06 - 2017-08-11 06:30 - 004170240 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-09-13 11:06 - 2017-08-11 06:27 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2017-09-13 11:06 - 2017-08-11 06:27 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2017-09-13 11:06 - 2017-08-11 05:38 - 000477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2017-09-13 11:06 - 2017-08-11 05:08 - 001753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2017-09-13 11:06 - 2017-08-11 05:08 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2017-09-13 11:06 - 2017-08-11 05:02 - 001084928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2017-09-13 11:06 - 2017-08-11 04:52 - 001491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2017-09-13 11:06 - 2017-08-11 04:49 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll 2017-09-13 11:06 - 2017-08-11 04:44 - 001095680 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2017-09-13 11:06 - 2017-08-11 04:43 - 000865792 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2017-09-13 11:06 - 2017-08-11 04:41 - 000307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll 2017-09-13 11:06 - 2017-08-07 00:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2017-09-13 11:06 - 2017-08-06 10:13 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2017-09-13 11:06 - 2017-07-22 21:34 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll 2017-09-13 11:06 - 2017-07-22 20:32 - 000027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll 2017-09-13 11:06 - 2017-07-17 22:53 - 004298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2017-09-13 11:06 - 2017-07-17 02:55 - 003551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2017-09-13 11:06 - 2017-07-14 02:03 - 002013528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2017-09-13 11:06 - 2017-07-12 23:29 - 000420440 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll 2017-09-13 11:06 - 2017-07-12 23:29 - 000075440 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2017-09-13 11:06 - 2017-07-12 23:25 - 000308872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll 2017-09-13 11:06 - 2017-07-12 23:25 - 000066112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2017-09-13 11:06 - 2017-07-08 22:03 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2017-09-13 11:06 - 2017-07-08 21:43 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2017-09-13 11:06 - 2017-07-08 21:30 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2017-09-13 11:06 - 2017-07-08 21:20 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-09-13 11:06 - 2017-07-08 20:25 - 001436160 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-09-13 11:06 - 2017-07-08 20:00 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-09-13 11:06 - 2017-07-08 06:14 - 000100184 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys 2017-09-11 11:53 - 2017-09-11 11:53 - 000066783 _____ C:\Users\bobby\Downloads\CV - Български.pdf 2017-09-08 16:21 - 2017-09-08 16:21 - 001130328 _____ (Google Inc.) C:\Users\bobby\Downloads\ChromeSetup.exe 2017-09-08 12:11 - 2017-10-02 12:47 - 000000258 __RSH C:\ProgramData\ntuser.pol 2017-09-06 11:27 - 2017-09-06 11:27 - 000000000 ____D C:\Users\bobby\AppData\Roaming\vlc 2017-09-06 09:46 - 2017-09-06 09:46 - 000000000 ____D C:\Users\bobby\AppData\Roaming\dvdcss 2017-09-04 13:20 - 2017-09-04 13:23 - 000000000 ____D C:\Users\bobby\Documents\ETS2MP 2017-09-04 13:15 - 2017-09-04 13:17 - 000000000 ____D C:\ProgramData\TruckersMP 2017-09-04 13:15 - 2017-09-04 13:15 - 000000901 _____ C:\Users\Public\Desktop\TruckersMP.lnk 2017-09-04 13:15 - 2017-09-04 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher 2017-09-04 13:15 - 2017-09-04 13:15 - 000000000 ____D C:\Program Files\TruckersMP Launcher 2017-09-04 13:14 - 2017-09-04 13:14 - 000667351 _____ C:\Users\bobby\Downloads\launcher_1004.zip 2017-09-04 13:10 - 2017-09-04 23:19 - 000000000 ____D C:\Users\bobby\Documents\Euro Truck Simulator 2 2017-09-03 19:02 - 2017-09-03 19:02 - 000000000 ____D C:\Program Files\Common Files\DESIGNER ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-10-02 13:01 - 2017-08-31 21:18 - 000000000 ____D C:\Users\bobby\AppData\LocalLow\360WD 2017-10-02 12:55 - 2017-09-01 19:51 - 000000000 ____D C:\Users\bobby\AppData\Roaming\TeamViewer 2017-10-02 12:55 - 2017-09-01 04:04 - 000000000 ____D C:\Windows\Panther 2017-10-02 12:55 - 2017-08-31 18:17 - 000000000 ____D C:\Users\bobby\AppData\Local\CrashDumps 2017-10-02 12:55 - 2017-08-31 18:10 - 000000000 ____D C:\ProgramData\ClassicShell 2017-10-02 12:55 - 2017-08-31 18:05 - 000000000 ____D C:\Program Files (x86)\Steam 2017-10-02 12:55 - 2017-08-31 17:51 - 000000000 ____D C:\Users\bobby\AppData\Roaming\uTorrent 2017-10-02 12:55 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\Inf 2017-10-02 12:54 - 2017-08-31 23:46 - 000000000 ____D C:\ProgramData\360Quarant 2017-10-02 12:54 - 2017-08-31 18:18 - 000000000 ____D C:\Users\bobby\AppData\Local\ClassicShell 2017-10-02 12:46 - 2017-08-31 17:18 - 000003430 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2017-10-02 12:46 - 2017-08-31 17:18 - 000003302 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2017-10-02 12:34 - 2017-08-31 17:20 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3041877358-191924833-3829036719-1001 2017-10-02 12:32 - 2017-08-31 17:30 - 000000000 ____D C:\ProgramData\NVIDIA 2017-10-02 12:32 - 2017-08-31 17:18 - 000003910 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C64354CA-BA3D-40EC-B714-8157E7D25B88} 2017-10-02 12:28 - 2013-08-22 17:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-10-02 01:14 - 2017-08-31 17:49 - 000000000 ____D C:\Users\bobby\AppData\Roaming\AIMP 2017-10-01 23:35 - 2014-11-21 11:44 - 000865068 _____ C:\Windows\system32\PerfStringBackup.INI 2017-10-01 12:32 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\AppReadiness 2017-09-30 14:05 - 2017-08-31 21:18 - 000000000 ____D C:\Users\bobby\AppData\Roaming\360safe 2017-09-30 13:11 - 2017-08-31 17:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-09-30 11:24 - 2017-08-31 21:23 - 000000000 ____D C:\Users\bobby\AppData\LocalLow\uTorrent 2017-09-29 22:56 - 2017-08-31 23:48 - 000000000 __SHD C:\$360Section 2017-09-29 22:56 - 2017-08-31 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico 2017-09-28 23:56 - 2017-08-31 17:14 - 000000000 ____D C:\Users\bobby 2017-09-28 18:00 - 2013-08-22 16:25 - 000000240 _____ C:\Windows\win.ini 2017-09-28 15:04 - 2017-08-31 17:14 - 000000000 ____D C:\Users\bobby\AppData\Local\VirtualStore 2017-09-25 22:16 - 2017-08-31 17:24 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-09-23 14:41 - 2013-08-22 18:36 - 000000000 ___HD C:\Program Files\WindowsApps 2017-09-22 12:52 - 2017-08-31 17:19 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-09-22 00:01 - 2017-08-31 17:31 - 000003740 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-22 00:01 - 2017-08-31 17:31 - 000003732 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-22 00:01 - 2017-08-31 17:31 - 000003556 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:18 - 2017-08-31 17:40 - 000000000 ____D C:\Users\bobby\AppData\Local\NVIDIA Corporation 2017-09-21 22:18 - 2017-08-31 17:31 - 000003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:18 - 2017-08-31 17:31 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:18 - 2017-08-31 17:31 - 000001428 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2017-09-21 22:18 - 2017-08-31 17:23 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2017-09-21 22:17 - 2017-08-31 17:31 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:17 - 2017-08-31 17:31 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:17 - 2017-08-31 17:31 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-09-21 22:17 - 2017-08-31 17:23 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2017-09-19 10:23 - 2017-08-31 17:31 - 001923008 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 001755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 001505728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 001317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 000179136 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 000146368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2017-09-19 10:23 - 2017-08-31 17:31 - 000121280 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2017-09-19 00:29 - 2017-08-31 17:31 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat 2017-09-18 17:02 - 2017-08-31 21:18 - 000000000 _RSHD C:\360SANDBOX 2017-09-16 14:29 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\rescache 2017-09-15 22:06 - 2017-08-31 17:29 - 000000000 ____D C:\ProgramData\Package Cache 2017-09-15 21:33 - 2017-08-31 20:17 - 000000000 ____D C:\Users\bobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-09-15 00:22 - 2013-08-22 16:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2017-09-15 00:20 - 2013-08-22 18:36 - 000000000 ___RD C:\Windows\ToastData 2017-09-13 13:27 - 2017-08-31 19:06 - 000000000 ____D C:\Windows\system32\MRT 2017-09-13 13:25 - 2017-08-31 19:06 - 138202976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-09-13 13:25 - 2013-08-22 18:20 - 000000000 ____D C:\Windows\CbsTemp 2017-09-10 17:28 - 2017-08-31 18:14 - 000000000 ____D C:\Users\bobby\AppData\Local\Steam 2017-09-08 12:11 - 2013-08-22 18:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2017-09-08 12:11 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2017-09-04 11:03 - 2017-08-31 17:38 - 000000000 __SHD C:\Users\bobby\IntelGraphicsProfiles 2017-09-03 19:09 - 2013-08-22 18:36 - 000000000 ____D C:\Program Files\Common Files\System 2017-09-02 02:54 - 2017-08-31 20:27 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-09-02 02:54 - 2017-08-31 20:27 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-09-30 12:38 ==================== End of FRST.txt ============================ Addition_02-10-2017 13.01.49.txt
  11. Драги компютърни експерти, не знам как да опиша нещата с точната терминология, но имам сериозни проблеми в интернет пространството и Уеб браузването. Искрено моля и ще съм благодарен за вашата помощ. Проблемът е следният: 1. Когато цъкна да отворя някой линк или страница на лаптопа/pc-то ме редиректва към някакви рекламни сайтове. Отваря ми желаната страница на нов таб и старият/текущият го редиректва към разни рекламни/секс/спорт/"лъжливи" сайтове.. Това нещо искрено започна да ме дразни и се надявам вкрай на сметка да се намери решение. 2. Току-виж (с Chrome съм) когато си отворя началната страница ме праща на самотек на страница, която не съм задавал - http://swapgame.net/search/ ; И не мога да си върна Google от настройките на браузъра; и съответно отдолу табовете със страници, в които най-често съм влизал. 3. И сега, точно преди 5 минутки започнаха да ми излизат facebook ads (Recommended) както никога преди, под всеки пет поста??! За този случай не искам да използвам AddBlocker, защото имам проблем с фейсбук когато го ползвам. Моля за помощ FRST: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2017 01 Ran by User (administrator) on PC (26-09-2017 22:00:01) Running from C:\Users\User\Desktop Loaded Profiles: User (Available Profiles: User) Platform: Windows 8.1 Enterprise N (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Badoo) C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-08] (TOSHIBA Corporation) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-07-14] (Apple Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-08-04] (Dropbox, Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824 2016-09-16] (Adobe Systems Incorporated) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21644384 2014-07-02] (Skype Technologies S.A.) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [Badoo Desktop] => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe [1067280 2014-06-20] (Badoo) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-809340242-2789781825-833888065-1001\...\MountPoints2: {0c6622c1-163b-11e4-9bf4-008cfa934fae} - "F:\autorun.exe" GroupPolicy: Restriction - Chrome <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{44E42C01-693C-4663-91E3-8CA97292F6E0}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{972E6317-A933-4ECE-B2A3-BC5C53C5D33A}: [DhcpNameServer] 92.247.168.66 8.8.8.8 Internet Explorer: ================== HKU\S-1-5-21-809340242-2789781825-833888065-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp HKU\S-1-5-21-809340242-2789781825-833888065-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-809340242-2789781825-833888065-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-809340242-2789781825-833888065-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\5o7xdam5.default [2017-09-18] FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> autoconfig_url", "hxxp://91.121.225.213/" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.ftp", "proxy.uni-sofia.bg" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.ftp_port", 8080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.socks", "91.121.225.213" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.socks_port", 2 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.ssl", "proxy.uni-sofia.bg" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> backup.ssl_port", 8080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> ftp", "83.239.108.238" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> ftp_port", 1080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> http", "83.239.108.238" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> http_port", 1080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> share_proxy_settings", true FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> socks", "83.239.108.238" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> socks_port", 1080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> socks_version", 4 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> ssl", "83.239.108.238" FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> ssl_port", 1080 FF NetworkProxy: Mozilla\Firefox\Profiles\5o7xdam5.default -> type", 2 FF Extension: (iCloud Bookmarks) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\5o7xdam5.default\Extensions\firefoxdav@icloud.com [2016-10-20] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll [2014-07-28] () FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll [2014-07-28] () FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> search-results.com/?gct=hp CHR DefaultSearchURL: Default -> hxxp://www.search-results.com/web?q={searchTerms} CHR DefaultSearchKeyword: Default -> search-results.com CHR DefaultSuggestURL: Default -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms} CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2017-09-26] CHR Extension: (Google Диск) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Сookies Control) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfkpefbllpconnkfpdgagkifmflckkdp [2017-07-09] CHR Extension: (Google Търсене) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26] CHR Extension: (Kick Ass Alians) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjcacgdkacalnfdnoafiachfddbcpncp [2017-09-26] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-25] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-26] CHR HKLM\...\Chrome\Extension: [aaaaboojhahjgdjeknnemneiajjhhddi] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-809340242-2789781825-833888065-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [aaaaboojhahjgdjeknnemneiajjhhddi] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [iinglghmhcgdgjjlafobajghjamdchik] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1128432 2017-09-20] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [490968 2017-09-20] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [490968 2017-09-20] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1525240 2017-09-20] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-10-01] (Windows (R) Win 7 DDK provider) [File not signed] R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [402768 2017-08-30] (Avira Operations GmbH & Co. KG) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-15] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-15] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [49992 2017-08-04] (Dropbox, Inc.) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [296432 2014-04-23] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [691480 2013-11-20] () [File not signed] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Qualcomm Atheros Communications, Inc.) R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [60920 2017-06-18] (Avira Operations GmbH & Co. KG) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176224 2017-09-20] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [167464 2017-09-02] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [44488 2017-03-02] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [88488 2017-03-02] (Avira Operations GmbH & Co. KG) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2014-07-28] (DT Soft Ltd) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-30] (Synaptics Incorporated) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-11-01] (Windows (R) Win 7 DDK provider) R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) S3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation) S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-09-26 22:00 - 2017-09-26 22:02 - 000018387 _____ C:\Users\User\Desktop\FRST.txt 2017-09-26 21:59 - 2017-09-26 22:00 - 000000000 ____D C:\FRST 2017-09-26 21:59 - 2017-09-26 21:59 - 002399744 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2017-09-26 21:39 - 2017-09-26 21:41 - 000038454 _____ C:\Windows\system32\KMSServer.exe 2017-09-26 21:24 - 2017-09-26 21:24 - 000171907 _____ C:\Users\User\Desktop\adblockpopups-snapshot.xpi 2017-09-25 15:33 - 2017-09-25 15:33 - 006754944 _____ (ESET spol. s r.o.) C:\Users\User\Desktop\esetonlinescanner_enu (1).exe 2017-09-25 15:33 - 2017-09-25 15:33 - 000000000 ____D C:\Users\User\AppData\Local\ESET 2017-09-25 15:32 - 2017-09-25 15:32 - 006754944 _____ (ESET spol. s r.o.) C:\Users\User\Desktop\esetonlinescanner_enu.exe 2017-09-20 17:20 - 2017-09-20 17:20 - 000003316 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray 2017-09-20 17:20 - 2017-09-20 17:20 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger 2017-09-02 23:04 - 2017-09-03 00:23 - 000000000 ____D C:\Users\User\Desktop\New folder (3) 2017-08-28 21:51 - 2017-08-28 21:55 - 000000000 ____D C:\Users\User\Desktop\iOS new photos ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-09-26 22:03 - 2014-07-28 14:03 - 000003898 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3D4E0590-D213-42B8-9177-8573053EC7D3} 2017-09-26 21:49 - 2014-07-28 12:54 - 000003594 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-809340242-2789781825-833888065-1001 2017-09-26 21:47 - 2015-12-15 01:05 - 000000000 ____D C:\Program Files (x86)\Dropbox 2017-09-26 21:45 - 2015-11-01 23:41 - 000000000 ___RD C:\Users\User\iCloudDrive 2017-09-26 21:44 - 2015-12-15 01:05 - 000000906 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2017-09-26 21:39 - 2013-08-22 17:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-09-26 21:38 - 2013-08-22 16:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2017-09-26 21:30 - 2015-12-15 01:05 - 000000910 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2017-09-26 17:42 - 2014-07-28 14:52 - 000000000 ____D C:\Users\User\AppData\Roaming\Skype 2017-09-26 11:05 - 2014-07-28 14:41 - 000002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-09-25 18:43 - 2014-08-08 12:43 - 045682688 ___SH C:\Users\User\Desktop\Thumbs.db 2017-09-23 12:43 - 2013-08-22 18:36 - 000000000 ___HD C:\Program Files\WindowsApps 2017-09-23 12:43 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\AppReadiness 2017-09-22 12:35 - 2014-08-20 02:09 - 000000000 ____D C:\Users\User\Desktop\Музика 2017-09-22 12:21 - 2014-07-29 19:54 - 004825088 ___SH C:\Users\User\Downloads\Thumbs.db 2017-09-21 22:21 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\system32\NDF 2017-09-21 19:46 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\Inf 2017-09-20 22:24 - 2014-08-13 08:39 - 000000000 ____D C:\ProgramData\Package Cache 2017-09-20 17:20 - 2014-07-28 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2017-09-20 17:17 - 2014-07-28 14:46 - 000176224 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2017-09-18 02:33 - 2016-12-07 12:36 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2017-09-10 12:33 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\LiveKernelReports 2017-09-06 14:26 - 2014-10-03 14:22 - 000023552 ___SH C:\Users\User\Documents\Thumbs.db 2017-09-02 22:55 - 2014-07-28 12:47 - 000818732 _____ C:\Windows\system32\PerfStringBackup.INI 2017-09-02 12:20 - 2014-07-28 14:46 - 000167464 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys ==================== Files in the root of some directories ======= 2016-04-18 10:21 - 2016-04-18 10:21 - 000000268 ___RH () C:\Users\User\AppData\Roaming\Rule Actions 2016-04-18 10:22 - 2016-04-18 10:22 - 000000268 ___RH () C:\Users\User\AppData\Roaming\Sample Delay 2016-04-18 10:21 - 2016-04-18 10:21 - 000000268 ___RH () C:\Users\User\AppData\Roaming\Sampler 2016-04-18 10:20 - 2016-04-18 10:20 - 000000268 ___RH () C:\Users\User\AppData\Roaming\Sound Effects 2014-08-15 18:49 - 2015-07-31 01:10 - 000003584 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-07-11 11:17 - 2016-07-11 11:17 - 000000000 _____ () C:\Users\User\AppData\Local\{30CA4045-0752-4851-9FFE-164C86A692C7} 2016-07-25 10:19 - 2016-07-25 10:19 - 000000000 _____ () C:\Users\User\AppData\Local\{87C3BD25-DD5B-472C-9739-C0873ABC23AA} 2016-07-25 10:19 - 2016-07-25 10:19 - 000000000 _____ () C:\Users\User\AppData\Local\{8CB53016-578B-484F-8BCC-FBC3151BDC36} 2016-07-11 11:17 - 2016-07-11 11:17 - 000000000 _____ () C:\Users\User\AppData\Local\{B4D44BD0-5255-4CA7-9D28-C5348D851E9F} 2016-07-16 21:16 - 2016-07-16 21:16 - 000000000 _____ () C:\Users\User\AppData\Local\{D512D0D2-7A65-4318-B7D9-40A06C46AE3C} 2016-04-18 10:20 - 2016-04-18 10:20 - 000000020 ____H () C:\ProgramData\PKP_DLeo.DAT 2016-04-18 10:22 - 2016-04-18 10:22 - 000000020 ____H () C:\ProgramData\PKP_DLes.DAT 2016-04-18 10:21 - 2016-05-05 19:30 - 000000020 ____H () C:\ProgramData\PKP_DLet.DAT 2016-04-18 10:21 - 2016-05-05 19:33 - 000000020 ____H () C:\ProgramData\PKP_DLev.DAT 2016-04-18 10:21 - 2016-04-18 10:21 - 000000268 ___RH () C:\ProgramData\Sampler Instruments 2016-04-18 10:22 - 2016-04-18 10:22 - 000000268 ___RH () C:\ProgramData\Sci-Fi 2016-04-18 10:21 - 2016-04-18 10:21 - 000000268 ___RH () C:\ProgramData\Screen Saver 2016-04-18 10:20 - 2016-04-18 10:21 - 000000012 ___RH () C:\ProgramData\Spacious 2016-04-18 10:22 - 2016-04-18 10:22 - 000000012 ___RH () C:\ProgramData\Speech Enhancer 2016-04-18 10:21 - 2016-04-18 10:21 - 000000012 ___RH () C:\ProgramData\Standard 2016-04-18 10:20 - 2016-04-18 10:20 - 000000012 ___RH () C:\ProgramData\Textures Some files in TEMP: ==================== 2014-07-28 14:48 - 2014-08-13 08:40 - 000000000 ____D () C:\Users\User\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-09-20 23:29 ==================== End of FRST.txt ============================ Addition.txt
  12. Здравейте, Надявам се да пиша на правилното място. Реших да прегледам какво имам в твърдия диск, дял C:\, като ползвам "Recuva". С изненада открих, че има папка, чиято пътека е C:\?\. В нея се съдържат изображения от интернет портали (включително и от профили в социални мрежи), които аз не съм теглил по никакъв начин. В отлично състояние са и са с имена от типа [число].jpg. В шестнайсетичния код не открих нищо подозрително, но не знам нито браузърът (Mozilla), нито Facebook и др. да съхраняват данни от този вид по този начин, при това в недостъпни папки. Ето 2 screenshot-a: Понеже преглеждам, когато се сетя, форума на Kaldata, реших да пробвам със сканиране с ESET Online Scanner, както беше написано няколко теми по-долу. Не се сетих за този вариант от начало, защото имам ESET Nod32 Antivirus на настолния компютър, обновяван редовно. Последният не откри нищо лошо, но първият софтуер изскочи с 13 съмнителни файла, определени като infected. Ето ги и тях: C:\Documents and Settings\Admin\Local Settings\Temp\MSI2D3.tmp a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application C:\Documents and Settings\Admin\Local Settings\Temp\vdj2D2.tmp.msi a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application C:\Documents and Settings\Admin\Local Settings\Temp\vdj2D5.tmp.msi a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application C:\Downloads\AUTODESK.AUTOCAD.V2014.WIN64-ISO\acad2014_x64.iso a variant of Win32/Keygen.HA potentially unsafe application C:\Program Files\11app.com\Free Convert MP2 to MP3\convert.exe a variant of Win32/Patched.F potentially unsafe application C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO 2006 version 7\Patch.exe a variant of Win32/HackTool.Patcher.X potentially unsafe application C:\WINDOWS\system32\cmdow.exe Win32/CMDOW.143 potentially unsafe application D:\Download\free-convert-mp2-to-mp3.exe a variant of Win32/Patched.F potentially unsafe application D:\Install\Advanced.Uninstaller.PRO.2006.7.5.zip a variant of Win32/HackTool.Patcher.X potentially unsafe application D:\Install\ConvertXtoDVD_3.8.0.193c.zip a variant of Win32/Keygen.AS potentially unsafe application D:\Install\Free PrimoPDF.exe Win32/OpenCandy potentially unsafe application D:\Install\SoundTaxi_Pro_VideoRip_v3.8.5.zip a variant of Win32/Keygen.QP potentially unsafe application D:\Matlab\DTLite4413-0173.exe Win32/OpenCandy potentially unsafe application Направи ми впечатление и че при NOD32 имаше 1 млн. файла, минали през "ситото", а при Online Scanner - eдва 300 000. След малко ще пусна и Malwarebytes, въпреки че с Firefox се бият и трябва да работи или едното, или другото приложение. Знам, че вирусите се маскират като някой познат процес в Task Manager, затова проверих местоположението на всички изпълними файлове там - точно е, а и svchost.exe се изпълнява от 4 процеса, това е допустим брой. Проучих и за симптоми на зараза с Malware-gen и Trojan.GenericKD, но няма такива. Кои файлове трябва да бъдат под карантина? Този път здраво се зачудих... Никога досега не съм се регистрирал в такъв тип сайтове, защото съм намирал решението сам след ровене в интернет, но този път не е само един проблемът, а и първият поред е прекалено комплексен, за да се справя сам (ако е проблем изобщо), затова Ви моля за помощ! Благодаря предварително за отделеното време!
  13. Здравейте! Нещо имам проблем с игрите, но проблемът не се дължи на хардуера. След преинсталация се оправя, но не мога през месец да го преинсталирам просто не ми се занимава Съмнява ме нещо вирус или някакви временни файлове. Много пъти съм се доверявал на вашата помощ. Благодаря Addition.txt FRST.txt
  14. Здравейте! От известно време насам имам проблем при браузване в интернет, постоянно изкачат прозорки с реклама на ефбет, а вчера даже нещо като видео от каунтър страйк ((макар и за секунди) Използвам аваст и малуеърбайтс, отделно adon за мозила -Адблок +, При сканиране и от двете не излиза нищо особени като инфекция (само някакъв .длл от една стара игра). П.С. Обикновено съм на компютъра късно вечер и то не всеки ден, така че може би няма да мога да изпълнявам бързо съветите Ви.... Addition.txt
  15. Здравейте! Първо искам да кажа, че не съм сигурен дали лаптопа е заразен и какво точно се случва. Проблема е, че лаптопа започва да товари твърдия диск на 100% започва да работи адски бавно... Нищо не може да се бутне по него през това време. Прави го когато си иска. И товаренето продължава от минути до часове и няма никаква закономерност, кога се появява проблема и кога изчезва. През този период няма значение дали го изключвам, рестартирам, вадя му батерията. Като го изключа и включа, той се включва по 20-30мин. и ефекта е никакъв! Мисля, че е хардуерен проблем защото преди месец го преинсталирах същия проблем, нямаше никакви проблеми до преди 2-3 дни. Прикачил съм и допълнителни снимки показващи точно момента когато проблема изчезва от само себе си, както и кой е процеса, който уж го товари. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017 Ran by CrossX (administrator) on DESKTOP-092OIEH (31-08-2017 02:59:58) Running from C:\Users\CrossX\Desktop Loaded Profiles: CrossX (Available Profiles: defaultuser0 & CrossX) Platform: Windows 10 Pro Version 1607 (X64) Language: Bulgarian (Bulgaria) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe (Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (AMD) C:\Windows\System32\atieclxx.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (BitTorrent Inc.) C:\Users\CrossX\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.) C:\Users\CrossX\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe (BitTorrent Inc.) C:\Users\CrossX\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-08-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1408752 2015-08-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1408752 2015-08-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1408752 2015-08-27] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3947704 2015-08-13] (Synaptics Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation) HKU\S-1-5-21-536562023-1860876538-2531301155-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3062560 2017-07-18] (Valve Corporation) Startup: C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2017-08-18] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{3ce54f89-b0c8-4ba3-9c26-2b1a1a04db7e}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{53b1fcd2-f23a-4596-bab5-5824234c9980}: [DhcpNameServer] 77.78.60.2 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-536562023-1860876538-2531301155-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-17] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-17] (Oracle Corporation) FireFox: ======== FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-17] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-17] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-03] (Google Inc.) Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hp&ts=1440100543&z=f4e9d116117aded271319cfg1z0z0e4g5e5e4z3zeg&from=obw&uid=HitachiXHDP725050GLA360_GEA534RV0T05SA0T05SAX" CHR Profile: C:\Users\CrossX\AppData\Local\Google\Chrome\User Data\Default [2017-08-31] CHR Extension: (Отдалечен работен плот на Chrome) - C:\Users\CrossX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2017-08-23] CHR Extension: (AdBlock) - C:\Users\CrossX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-03] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\CrossX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23] CHR Extension: (Chrome Media Router) - C:\Users\CrossX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-03] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373752 2017-04-23] (Intel Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2168672 2017-08-16] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3148128 2017-08-16] (Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889888 2017-08-01] (Microsoft Corporation) R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [86544 2016-10-21] (Synaptics Incorporated) R2 valWbioSyncSvc; C:\Windows\system32\valWbioSyncSvc.exe [56848 2016-10-21] (Synaptics Incorporated) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0316467.inf_amd64_3d8fbd78102e53d7\atikmdag.sys [38439848 2017-07-27] (Advanced Micro Devices, Inc.) R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0316467.inf_amd64_3d8fbd78102e53d7\atikmpag.sys [549800 2017-07-27] (Advanced Micro Devices, Inc.) R1 MpKslc5eb8e2e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{539CC724-0E5D-4C84-B9BD-25E6741151DE}\MpKslc5eb8e2e.sys [44928 2017-08-30] (Microsoft Corporation) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-09-23] (Realtek Semiconductor Corp.) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek ) R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [600832 2015-08-29] (Realtek Semiconductor Corporation) R3 RTWlanE; C:\Windows\System32\drivers\rtwlane.sys [6625792 2017-01-20] (Realtek Semiconductor Corporation ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-08-13] (Synaptics Incorporated) R1 SMIDriverGen; C:\Windows\system32\DRIVERS\smi.sys [40176 2016-10-21] (Synaptics Incorporated) R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3481696 2015-06-24] (Sonix Co. Ltd.) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-31 02:59 - 2017-08-31 03:00 - 000010509 _____ C:\Users\CrossX\Desktop\FRST.txt 2017-08-31 02:59 - 2017-08-31 02:59 - 000000000 ____D C:\FRST 2017-08-31 02:55 - 2017-08-31 02:55 - 002395648 _____ (Farbar) C:\Users\CrossX\Desktop\FRST64.exe 2017-08-20 12:41 - 2015-12-15 16:08 - 000075671 _____ C:\Users\CrossX\Downloads\The.Visit.2015.HDRip.XviD.AC3-EVO.srt 2017-08-20 12:39 - 2017-08-30 13:57 - 000000000 ____D C:\Users\CrossX\AppData\LocalLow\BitTorrent 2017-08-17 02:50 - 2017-08-17 02:50 - 000001220 _____ C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk 2017-08-17 02:50 - 2017-08-17 02:50 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\java 2017-08-17 02:48 - 2017-08-17 02:48 - 000097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2017-08-17 02:48 - 2017-08-17 02:48 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Sun 2017-08-17 02:48 - 2017-08-17 02:48 - 000000000 ____D C:\Users\CrossX\AppData\LocalLow\Sun 2017-08-17 02:48 - 2017-08-17 02:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-08-17 02:47 - 2017-08-17 02:49 - 000000000 ____D C:\ProgramData\Oracle 2017-08-17 02:47 - 2017-08-17 02:47 - 000000000 ____D C:\Program Files (x86)\Java 2017-08-17 02:45 - 2017-08-17 02:53 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\.minecraft 2017-08-16 04:10 - 2017-08-16 04:11 - 000000000 ____D C:\ProgramData\Battle.net 2017-08-16 04:08 - 2017-08-16 04:08 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Origin 2017-08-16 04:07 - 2017-08-16 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2017-08-16 04:07 - 2017-08-16 04:07 - 000000000 ____D C:\Program Files (x86)\Origin 2017-08-16 04:04 - 2017-08-16 04:09 - 000000000 ____D C:\ProgramData\Origin 2017-08-16 04:04 - 2017-08-16 04:04 - 000000000 ____D C:\Users\CrossX\AppData\Local\Origin 2017-08-16 04:04 - 2017-08-16 04:04 - 000000000 ____D C:\Users\CrossX\.QtWebEngineProcess 2017-08-16 04:04 - 2017-08-16 04:04 - 000000000 ____D C:\Users\CrossX\.Origin 2017-08-16 02:58 - 2017-08-16 02:58 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk 2017-08-16 02:58 - 2017-08-16 02:58 - 000000000 ____D C:\Users\CrossX\Documents\Rainmeter 2017-08-16 02:58 - 2017-08-16 02:58 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Rainmeter 2017-08-16 02:58 - 2017-08-16 02:58 - 000000000 ____D C:\Program Files\Rainmeter 2017-08-13 23:55 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2017-08-13 23:55 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2017-08-13 23:55 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2017-08-13 23:55 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2017-08-13 23:55 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2017-08-13 23:55 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2017-08-13 23:55 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2017-08-13 23:55 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2017-08-13 23:55 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2017-08-13 23:55 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2017-08-13 23:55 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2017-08-13 23:55 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2017-08-13 23:55 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2017-08-13 23:55 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2017-08-13 23:54 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2017-08-13 23:54 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2017-08-13 23:54 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2017-08-13 23:54 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2017-08-13 23:54 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2017-08-13 23:54 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2017-08-13 23:54 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2017-08-13 23:54 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2017-08-13 23:54 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2017-08-13 23:54 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2017-08-13 23:54 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2017-08-13 23:54 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2017-08-13 23:54 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2017-08-13 23:54 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2017-08-13 23:54 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2017-08-13 23:54 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2017-08-13 23:54 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2017-08-13 23:54 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2017-08-13 23:54 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2017-08-13 23:54 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2017-08-13 23:54 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2017-08-13 23:54 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2017-08-13 23:54 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2017-08-13 23:54 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2017-08-13 23:54 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2017-08-13 23:54 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2017-08-13 23:54 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2017-08-13 23:54 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2017-08-13 23:54 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2017-08-13 23:54 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2017-08-13 23:54 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2017-08-13 23:54 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2017-08-13 23:54 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2017-08-13 23:54 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2017-08-13 23:54 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2017-08-13 23:54 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2017-08-13 23:54 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2017-08-13 23:54 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2017-08-13 23:54 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2017-08-13 23:54 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2017-08-13 23:54 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2017-08-13 23:54 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2017-08-13 23:54 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2017-08-13 23:54 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2017-08-13 23:54 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2017-08-13 23:54 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2017-08-13 23:54 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2017-08-13 23:54 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2017-08-13 23:54 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2017-08-13 23:54 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2017-08-13 23:54 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2017-08-13 23:54 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2017-08-13 23:54 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2017-08-13 23:54 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2017-08-13 23:54 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2017-08-13 23:54 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2017-08-13 23:54 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2017-08-13 23:54 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2017-08-13 23:54 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2017-08-13 23:54 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2017-08-13 23:54 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2017-08-13 23:54 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2017-08-13 23:54 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2017-08-13 23:54 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2017-08-13 23:54 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2017-08-13 23:54 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2017-08-13 23:54 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2017-08-13 23:54 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2017-08-13 23:54 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2017-08-13 23:54 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2017-08-13 23:54 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2017-08-13 23:54 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2017-08-13 23:54 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2017-08-13 23:54 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2017-08-13 23:54 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2017-08-13 23:54 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2017-08-13 23:54 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2017-08-13 23:54 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2017-08-13 23:54 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2017-08-13 23:54 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2017-08-13 23:54 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2017-08-13 23:54 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2017-08-13 23:54 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2017-08-13 23:54 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2017-08-13 23:54 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2017-08-13 23:54 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2017-08-13 23:54 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2017-08-13 23:54 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2017-08-13 23:54 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2017-08-13 23:54 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2017-08-13 23:54 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2017-08-13 23:54 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2017-08-13 23:54 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2017-08-13 23:54 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2017-08-13 23:54 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2017-08-13 23:54 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2017-08-13 23:54 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2017-08-13 23:54 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2017-08-13 23:54 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2017-08-13 23:54 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2017-08-13 23:54 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2017-08-13 23:54 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2017-08-13 23:53 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2017-08-13 23:53 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2017-08-13 23:53 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2017-08-13 23:53 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2017-08-13 23:53 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2017-08-13 23:53 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2017-08-13 21:59 - 2017-08-19 20:11 - 000000000 ____D C:\Users\CrossX\AppData\Local\Steam 2017-08-13 21:59 - 2017-08-13 21:59 - 000000000 ____D C:\Users\CrossX\AppData\Local\CEF 2017-08-13 21:53 - 2017-08-30 01:04 - 000000000 ____D C:\Program Files (x86)\Steam 2017-08-13 21:53 - 2017-08-13 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2017-08-11 19:51 - 2017-08-31 02:37 - 000007593 _____ C:\Users\CrossX\AppData\Local\Resmon.ResmonCfg 2017-08-11 16:43 - 2017-08-11 16:43 - 000000000 ____D C:\Users\CrossX\AppData\Local\UNP 2017-08-11 16:38 - 2017-08-11 16:39 - 000001410 _____ C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update and Privacy Settings.lnk 2017-08-11 16:37 - 2017-07-31 18:14 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-08-11 16:37 - 2017-07-31 18:14 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-08-11 16:33 - 2017-08-29 04:00 - 000079846 _____ C:\Windows\system32\perfh002.dat 2017-08-11 16:33 - 2017-08-29 04:00 - 000024344 _____ C:\Windows\system32\perfc002.dat 2017-08-11 16:26 - 2017-08-11 16:27 - 000000000 ___SD C:\Windows\UpdateAssistantV2 2017-08-10 19:51 - 2017-08-10 19:51 - 000000000 ____D C:\Users\CrossX\AppData\Local\PeerDistRepub 2017-08-10 19:01 - 2017-08-10 19:03 - 000000000 ____D C:\Windows\system32\MRT 2017-08-10 19:01 - 2017-08-10 19:01 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-08-10 19:00 - 2017-08-11 16:04 - 000000000 ____D C:\Program Files\rempl 2017-08-10 19:00 - 2017-08-11 15:46 - 000000000 ____D C:\Program Files\UNP 2017-08-10 19:00 - 2017-08-10 19:00 - 000000000 ____D C:\Windows\system32\UNP 2017-08-10 18:55 - 2017-04-22 00:53 - 000029376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2017-08-10 18:55 - 2017-04-22 00:50 - 000030912 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2017-08-10 18:55 - 2017-04-22 00:50 - 000018592 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll 2017-08-10 18:55 - 2017-04-11 21:27 - 000690008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll 2017-08-10 18:55 - 2017-03-15 21:15 - 000485576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll 2017-08-10 18:54 - 2017-04-22 00:53 - 000018600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll 2017-08-10 18:54 - 2017-04-11 21:27 - 000993632 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll 2017-08-10 18:54 - 2017-03-15 21:15 - 000987840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll 2017-08-10 18:44 - 2017-08-01 19:47 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll 2017-08-10 18:44 - 2017-08-01 19:39 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll 2017-08-10 18:44 - 2017-08-01 19:36 - 007468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2017-08-10 18:44 - 2017-06-21 10:22 - 000361104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll 2017-08-10 18:44 - 2017-06-21 09:59 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp 2017-08-10 18:44 - 2017-06-21 09:56 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll 2017-08-10 18:44 - 2017-06-21 09:35 - 000732160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll 2017-08-10 18:44 - 2017-06-21 09:30 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2017-08-10 18:44 - 2017-04-28 04:28 - 000965472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2017-08-10 18:44 - 2017-04-28 03:35 - 000276832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll 2017-08-10 18:44 - 2017-04-28 03:22 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll 2017-08-10 18:44 - 2017-04-28 03:08 - 001228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll 2017-08-10 18:44 - 2017-03-28 08:08 - 000299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll 2017-08-10 18:44 - 2017-03-04 09:45 - 000173408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll 2017-08-10 18:44 - 2017-03-04 09:42 - 001260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2017-08-10 18:44 - 2017-03-04 09:29 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll 2017-08-10 18:44 - 2017-03-04 09:25 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll 2017-08-10 18:44 - 2017-03-04 09:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll 2017-08-10 18:44 - 2017-03-04 09:24 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll 2017-08-10 18:44 - 2017-03-04 09:24 - 000093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll 2017-08-10 18:44 - 2017-03-04 09:21 - 000196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll 2017-08-10 18:44 - 2017-03-04 09:20 - 000632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll 2017-08-10 18:44 - 2017-03-04 09:20 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll 2017-08-10 18:44 - 2017-03-04 09:20 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll 2017-08-10 18:44 - 2017-03-04 09:19 - 000318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2017-08-10 18:44 - 2017-03-04 09:16 - 001456640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2017-08-10 18:44 - 2017-03-04 09:13 - 002458112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll 2017-08-10 18:44 - 2017-03-04 09:01 - 000560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll 2017-08-10 18:44 - 2017-03-04 09:00 - 000444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2017-08-10 18:44 - 2016-11-11 10:26 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2017-08-10 18:44 - 2016-11-11 10:18 - 001336320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll 2017-08-10 18:44 - 2016-11-11 10:04 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll 2017-08-10 18:44 - 2016-11-02 14:04 - 000596832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2017-08-10 18:44 - 2016-11-02 13:48 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2017-08-10 18:44 - 2016-10-15 06:52 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll 2017-08-10 18:44 - 2016-09-15 20:00 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2017-08-10 18:44 - 2016-09-15 19:58 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlancfg.dll 2017-08-10 18:44 - 2016-08-06 06:41 - 000068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll 2017-08-10 18:44 - 2016-08-05 12:10 - 000939872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pidgenx.dll 2017-08-10 18:44 - 2016-08-05 11:23 - 000105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll 2017-08-10 18:44 - 2016-08-05 11:18 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll 2017-08-10 18:43 - 2017-08-01 20:20 - 002264344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2017-08-10 18:43 - 2017-08-01 20:20 - 001431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2017-08-10 18:43 - 2017-08-01 20:20 - 000781144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe 2017-08-10 18:43 - 2017-08-01 20:16 - 006665952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2017-08-10 18:43 - 2017-08-01 20:15 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2017-08-10 18:43 - 2017-08-01 20:10 - 000306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll 2017-08-10 18:43 - 2017-08-01 20:07 - 005686784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2017-08-10 18:43 - 2017-08-01 19:59 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tokenbinding.dll 2017-08-10 18:43 - 2017-08-01 19:58 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerUI.dll 2017-08-10 18:43 - 2017-08-01 19:56 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll 2017-08-10 18:43 - 2017-08-01 19:54 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe 2017-08-10 18:43 - 2017-08-01 19:53 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll 2017-08-10 18:43 - 2017-08-01 19:52 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll 2017-08-10 18:43 - 2017-08-01 19:51 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll 2017-08-10 18:43 - 2017-08-01 19:51 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2017-08-10 18:43 - 2017-08-01 19:51 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll 2017-08-10 18:43 - 2017-08-01 19:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe 2017-08-10 18:43 - 2017-08-01 19:51 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE 2017-08-10 18:43 - 2017-08-01 19:50 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll 2017-08-10 18:43 - 2017-08-01 19:50 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll 2017-08-10 18:43 - 2017-08-01 19:49 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2017-08-10 18:43 - 2017-08-01 19:48 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2017-08-10 18:43 - 2017-08-01 19:47 - 000787968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll 2017-08-10 18:43 - 2017-08-01 19:47 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll 2017-08-10 18:43 - 2017-08-01 19:47 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll 2017-08-10 18:43 - 2017-08-01 19:47 - 000396288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll 2017-08-10 18:43 - 2017-08-01 19:47 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2017-08-10 18:43 - 2017-08-01 19:45 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2017-08-10 18:43 - 2017-08-01 19:45 - 001985536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll 2017-08-10 18:43 - 2017-08-01 19:39 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2017-08-10 18:43 - 2017-08-01 19:38 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll 2017-08-10 18:43 - 2017-08-01 19:37 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe 2017-08-10 18:43 - 2017-08-01 19:37 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2017-08-10 18:43 - 2017-08-01 19:37 - 000647168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll 2017-08-10 18:43 - 2017-08-01 19:37 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll 2017-08-10 18:43 - 2017-08-01 19:34 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll 2017-08-10 18:43 - 2017-08-01 19:34 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll 2017-08-10 18:43 - 2017-08-01 19:34 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2017-08-10 18:43 - 2017-08-01 19:33 - 006031872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2017-08-10 18:43 - 2017-08-01 19:33 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll 2017-08-10 18:43 - 2017-08-01 19:32 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll 2017-08-10 18:43 - 2017-08-01 19:32 - 002648576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2017-08-10 18:43 - 2017-08-01 19:31 - 003664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2017-08-10 18:43 - 2017-08-01 19:31 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2017-08-10 18:43 - 2017-08-01 19:31 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2017-08-10 18:43 - 2017-08-01 19:31 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll 2017-08-10 18:43 - 2017-08-01 19:31 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll 2017-08-10 18:43 - 2017-08-01 19:30 - 002997248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys 2017-08-10 18:43 - 2017-08-01 19:30 - 002482688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2017-08-10 18:43 - 2017-08-01 19:30 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll 2017-08-10 18:43 - 2017-08-01 19:30 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2017-08-10 18:43 - 2017-08-01 19:30 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll 2017-08-10 18:43 - 2017-08-01 19:30 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2017-08-10 18:43 - 2017-08-01 19:29 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2017-08-10 18:43 - 2017-08-01 19:28 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll 2017-08-10 18:43 - 2017-08-01 17:15 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll 2017-08-10 18:43 - 2017-07-12 09:12 - 001573280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2017-08-10 18:43 - 2017-07-12 08:32 - 000068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\frprov.dll 2017-08-10 18:43 - 2017-07-12 08:31 - 000130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll 2017-08-10 18:43 - 2017-07-12 08:31 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll 2017-08-10 18:43 - 2017-07-12 08:23 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2017-08-10 18:43 - 2017-07-12 08:23 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll 2017-08-10 18:43 - 2017-07-12 08:21 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2017-08-10 18:43 - 2017-07-12 08:13 - 000855040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe 2017-08-10 18:43 - 2017-07-12 08:12 - 002750464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2017-08-10 18:43 - 2017-07-12 08:11 - 002154496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll 2017-08-10 18:43 - 2017-07-12 08:10 - 000878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe 2017-08-10 18:43 - 2017-07-07 10:49 - 000340824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2017-08-10 18:43 - 2017-07-07 10:20 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll 2017-08-10 18:43 - 2017-07-07 10:19 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapprovp.dll 2017-08-10 18:43 - 2017-07-07 10:18 - 000450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2017-08-10 18:43 - 2017-07-07 10:18 - 000210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll 2017-08-10 18:43 - 2017-07-07 10:17 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll 2017-08-10 18:43 - 2017-07-07 10:11 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2017-08-10 18:43 - 2017-07-07 10:10 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2017-08-10 18:43 - 2017-07-07 10:09 - 000637952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2017-08-10 18:43 - 2017-07-07 10:09 - 000506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2017-08-10 18:43 - 2017-07-07 10:02 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll 2017-08-10 18:43 - 2017-07-07 10:00 - 000476160 _____ (Microsoft® Windows® Operating System) C:\Windows\SysWOW64\wvc.dll 2017-08-10 18:43 - 2017-07-07 09:54 - 002027008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2017-08-10 18:43 - 2017-07-07 09:52 - 004561408 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll 2017-08-10 18:43 - 2017-07-07 09:52 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2017-08-10 18:43 - 2017-07-07 09:52 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll 2017-08-10 18:43 - 2017-06-21 10:42 - 000601712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2017-08-10 18:43 - 2017-06-21 10:38 - 000790752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2017-08-10 18:43 - 2017-06-21 10:28 - 001504056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2017-08-10 18:43 - 2017-06-21 10:27 - 000975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2017-08-10 18:43 - 2017-06-21 10:27 - 000861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll 2017-08-10 18:43 - 2017-06-21 10:27 - 000549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll 2017-08-10 18:43 - 2017-06-21 10:24 - 000154432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntmarta.dll 2017-08-10 18:43 - 2017-06-21 10:21 - 001557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2017-08-10 18:43 - 2017-06-21 10:00 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll 2017-08-10 18:43 - 2017-06-21 10:00 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll 2017-08-10 18:43 - 2017-06-21 09:59 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll 2017-08-10 18:43 - 2017-06-21 09:59 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll 2017-08-10 18:43 - 2017-06-21 09:58 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll 2017-08-10 18:43 - 2017-06-21 09:58 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll 2017-08-10 18:43 - 2017-06-21 09:58 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.UserDeviceAssociation.dll 2017-08-10 18:43 - 2017-06-21 09:57 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sendmail.dll 2017-08-10 18:43 - 2017-06-21 09:57 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll 2017-08-10 18:43 - 2017-06-21 09:56 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll 2017-08-10 18:43 - 2017-06-21 09:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll 2017-08-10 18:43 - 2017-06-21 09:56 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll 2017-08-10 18:43 - 2017-06-21 09:55 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll 2017-08-10 18:43 - 2017-06-21 09:55 - 000265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll 2017-08-10 18:43 - 2017-06-21 09:55 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll 2017-08-10 18:43 - 2017-06-21 09:55 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe 2017-08-10 18:43 - 2017-06-21 09:54 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll 2017-08-10 18:43 - 2017-06-21 09:53 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll 2017-08-10 18:43 - 2017-06-21 09:53 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll 2017-08-10 18:43 - 2017-06-21 09:53 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll 2017-08-10 18:43 - 2017-06-21 09:53 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll 2017-08-10 18:43 - 2017-06-21 09:52 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll 2017-08-10 18:43 - 2017-06-21 09:51 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll 2017-08-10 18:43 - 2017-06-21 09:51 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll 2017-08-10 18:43 - 2017-06-21 09:51 - 000258048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll 2017-08-10 18:43 - 2017-06-21 09:50 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2017-08-10 18:43 - 2017-06-21 09:50 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll 2017-08-10 18:43 - 2017-06-21 09:50 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2017-08-10 18:43 - 2017-06-21 09:49 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll 2017-08-10 18:43 - 2017-06-21 09:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll 2017-08-10 18:43 - 2017-06-21 09:48 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll 2017-08-10 18:43 - 2017-06-21 09:46 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll 2017-08-10 18:43 - 2017-06-21 09:46 - 001137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll 2017-08-10 18:43 - 2017-06-21 09:46 - 001077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll 2017-08-10 18:43 - 2017-06-21 09:46 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll 2017-08-10 18:43 - 2017-06-21 09:45 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll 2017-08-10 18:43 - 2017-06-21 09:44 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll 2017-08-10 18:43 - 2017-06-21 09:44 - 000027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll 2017-08-10 18:43 - 2017-06-21 09:43 - 001534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll 2017-08-10 18:43 - 2017-06-21 09:43 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2017-08-10 18:43 - 2017-06-21 09:43 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll 2017-08-10 18:43 - 2017-06-21 09:42 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll 2017-08-10 18:43 - 2017-06-21 09:41 - 000459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll 2017-08-10 18:43 - 2017-06-21 09:40 - 000220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll 2017-08-10 18:43 - 2017-06-21 09:40 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2017-08-10 18:43 - 2017-06-21 09:37 - 000400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll 2017-08-10 18:43 - 2017-06-21 09:35 - 001656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll 2017-08-10 18:43 - 2017-06-21 09:35 - 001232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll 2017-08-10 18:43 - 2017-06-21 09:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2017-08-10 18:43 - 2017-06-21 09:34 - 000621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2017-08-10 18:43 - 2017-06-21 09:33 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll 2017-08-10 18:43 - 2017-06-03 12:33 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll 2017-08-10 18:43 - 2017-06-03 12:31 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll 2017-08-10 18:43 - 2017-06-03 12:26 - 000100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBrokerUI.dll 2017-08-10 18:43 - 2017-06-03 12:22 - 000327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll 2017-08-10 18:43 - 2017-06-03 12:22 - 000181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll 2017-08-10 18:43 - 2017-04-28 03:45 - 000493920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe 2017-08-10 18:43 - 2017-04-28 03:20 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\virtdisk.dll 2017-08-10 18:43 - 2017-04-28 03:19 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll 2017-08-10 18:43 - 2017-04-28 03:15 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll 2017-08-10 18:43 - 2017-04-28 03:13 - 000506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll 2017-08-10 18:43 - 2017-04-28 03:13 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe 2017-08-10 18:43 - 2017-04-28 03:10 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll 2017-08-10 18:43 - 2017-04-28 03:10 - 000816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll 2017-08-10 18:43 - 2017-04-28 03:10 - 000764928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll 2017-08-10 18:43 - 2017-04-28 03:07 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll 2017-08-10 18:43 - 2017-04-28 03:03 - 000291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsnt.dll 2017-08-10 18:43 - 2017-04-28 02:57 - 000719872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_sr.dll 2017-08-10 18:43 - 2017-04-28 02:55 - 001004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll 2017-08-10 18:43 - 2017-04-28 02:54 - 002747904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2017-08-10 18:43 - 2017-04-28 02:54 - 001509376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2017-08-10 18:43 - 2017-04-28 02:53 - 000798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2017-08-10 18:43 - 2017-03-28 09:21 - 000167848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll 2017-08-10 18:43 - 2017-03-28 08:40 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthManagerProxy.dll 2017-08-10 18:43 - 2017-03-28 08:38 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthTokenBrokerExt.dll 2017-08-10 18:43 - 2017-03-28 08:37 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apds.dll 2017-08-10 18:43 - 2017-03-28 08:36 - 000769024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsecsnp.dll 2017-08-10 18:43 - 2017-03-28 08:33 - 000436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll 2017-08-10 18:43 - 2017-03-28 08:25 - 001196544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl 2017-08-10 18:43 - 2017-03-28 08:22 - 000516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll 2017-08-10 18:43 - 2017-03-28 08:13 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2017-08-10 18:43 - 2017-03-28 08:12 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll 2017-08-10 18:43 - 2017-03-04 10:09 - 001969912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll 2017-08-10 18:43 - 2017-03-04 10:04 - 001362512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll 2017-08-10 18:43 - 2017-03-04 10:02 - 000184416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL 2017-08-10 18:43 - 2017-03-04 09:56 - 000263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll 2017-08-10 18:43 - 2017-03-04 09:53 - 000313568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2017-08-10 18:43 - 2017-03-04 09:52 - 000272720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2017-08-10 18:43 - 2017-03-04 09:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe 2017-08-10 18:43 - 2017-03-04 09:29 - 000112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll 2017-08-10 18:43 - 2017-03-04 09:29 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll 2017-08-10 18:43 - 2017-03-04 09:29 - 000019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll 2017-08-10 18:43 - 2017-03-04 09:27 - 000055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll 2017-08-10 18:43 - 2017-03-04 09:27 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll 2017-08-10 18:43 - 2017-03-04 09:26 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll 2017-08-10 18:43 - 2017-03-04 09:26 - 000065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.UI.GameBar.dll 2017-08-10 18:43 - 2017-03-04 09:26 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll 2017-08-10 18:43 - 2017-03-04 09:26 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll 2017-08-10 18:43 - 2017-03-04 09:26 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe 2017-08-10 18:43 - 2017-03-04 09:25 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll 2017-08-10 18:43 - 2017-03-04 09:25 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll 2017-08-10 18:43 - 2017-03-04 09:25 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll 2017-08-10 18:43 - 2017-03-04 09:24 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe 2017-08-10 18:43 - 2017-03-04 09:23 - 000531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll 2017-08-10 18:43 - 2017-03-04 09:23 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2017-08-10 18:43 - 2017-03-04 09:23 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll 2017-08-10 18:43 - 2017-03-04 09:22 - 000822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll 2017-08-10 18:43 - 2017-03-04 09:22 - 000212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll 2017-08-10 18:43 - 2017-03-04 09:22 - 000183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe 2017-08-10 18:43 - 2017-03-04 09:22 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll 2017-08-10 18:43 - 2017-03-04 09:21 - 001243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll 2017-08-10 18:43 - 2017-03-04 09:21 - 000631296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl 2017-08-10 18:43 - 2017-03-04 09:21 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2017-08-10 18:43 - 2017-03-04 09:20 - 000534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll 2017-08-10 18:43 - 2017-03-04 09:20 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2017-08-10 18:43 - 2017-03-04 09:20 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll 2017-08-10 18:43 - 2017-03-04 09:19 - 000714752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2017-08-10 18:43 - 2017-03-04 09:19 - 000635904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2017-08-10 18:43 - 2017-03-04 09:19 - 000414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2017-08-10 18:43 - 2017-03-04 09:18 - 001231360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll 2017-08-10 18:43 - 2017-03-04 09:18 - 000567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll 2017-08-10 18:43 - 2017-03-04 09:18 - 000548352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll 2017-08-10 18:43 - 2017-03-04 09:18 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll 2017-08-10 18:43 - 2017-03-04 09:18 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2017-08-10 18:43 - 2017-03-04 09:18 - 000140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2017-08-10 18:43 - 2017-03-04 09:16 - 000968704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll 2017-08-10 18:43 - 2017-03-04 09:16 - 000850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll 2017-08-10 18:43 - 2017-03-04 09:16 - 000760832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl 2017-08-10 18:43 - 2017-03-04 09:16 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2017-08-10 18:43 - 2017-03-04 09:16 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2017-08-10 18:43 - 2017-03-04 09:15 - 001543680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe 2017-08-10 18:43 - 2017-03-04 09:14 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll 2017-08-10 18:43 - 2017-03-04 09:13 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll 2017-08-10 18:43 - 2017-03-04 09:12 - 000884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2017-08-10 18:43 - 2017-03-04 09:12 - 000700416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll 2017-08-10 18:43 - 2017-03-04 09:11 - 001320448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2017-08-10 18:43 - 2017-03-04 09:10 - 000300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe 2017-08-10 18:43 - 2017-03-04 09:10 - 000259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll 2017-08-10 18:43 - 2017-03-04 09:09 - 000570368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2017-08-10 18:43 - 2017-03-04 09:09 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll 2017-08-10 18:43 - 2017-03-04 09:07 - 000935936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll 2017-08-10 18:43 - 2017-03-04 09:05 - 001133568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2017-08-10 18:43 - 2017-03-04 09:05 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2017-08-10 18:43 - 2017-03-04 09:03 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2017-08-10 18:43 - 2017-03-04 09:03 - 000359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll 2017-08-10 18:43 - 2017-03-04 09:02 - 000580608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll 2017-08-10 18:43 - 2017-03-04 09:02 - 000510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2017-08-10 18:43 - 2017-03-04 09:01 - 003478528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll 2017-08-10 18:43 - 2017-03-04 09:01 - 001493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2017-08-10 18:43 - 2017-03-04 09:01 - 001293312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe 2017-08-10 18:43 - 2017-03-04 09:01 - 001154560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Pimstore.dll 2017-08-10 18:43 - 2017-03-04 09:01 - 000422400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll 2017-08-10 18:43 - 2017-03-04 09:00 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll 2017-08-10 18:43 - 2017-03-04 08:57 - 000449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll 2017-08-10 18:43 - 2016-12-21 07:41 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll 2017-08-10 18:43 - 2016-12-21 07:40 - 000318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2017-08-10 18:43 - 2016-12-21 07:38 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll 2017-08-10 18:43 - 2016-12-21 07:30 - 005398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll 2017-08-10 18:43 - 2016-12-14 07:45 - 000147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys 2017-08-10 18:43 - 2016-12-14 07:42 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2017-08-10 18:43 - 2016-12-14 07:35 - 000553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2017-08-10 18:43 - 2016-12-09 12:52 - 001435896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2017-08-10 18:43 - 2016-12-09 12:18 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll 2017-08-10 18:43 - 2016-11-11 10:54 - 000122208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll 2017-08-10 18:43 - 2016-11-11 10:42 - 000152416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTWorkQ.dll 2017-08-10 18:43 - 2016-11-11 10:41 - 000157536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudStorageWizard.exe 2017-08-10 18:43 - 2016-11-11 10:18 - 000108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll 2017-08-10 18:43 - 2016-11-11 10:17 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe 2017-08-10 18:43 - 2016-11-11 10:15 - 001357824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2017-08-10 18:43 - 2016-11-11 10:15 - 000348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll 2017-08-10 18:43 - 2016-11-11 10:15 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll 2017-08-10 18:43 - 2016-11-11 10:05 - 003370496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll 2017-08-10 18:43 - 2016-11-11 10:04 - 000912896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll 2017-08-10 18:43 - 2016-11-11 10:03 - 000772608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll 2017-08-10 18:43 - 2016-11-02 14:01 - 001425000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2017-08-10 18:43 - 2016-11-02 13:46 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininetlui.dll 2017-08-10 18:43 - 2016-11-02 13:44 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthExt.dll 2017-08-10 18:43 - 2016-11-02 13:43 - 000731136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8.dll 2017-08-10 18:43 - 2016-11-02 13:42 - 000549376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll 2017-08-10 18:43 - 2016-11-02 13:39 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll 2017-08-10 18:43 - 2016-11-02 13:28 - 000807424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2017-08-10 18:43 - 2016-11-02 13:23 - 002356736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll 2017-08-10 18:43 - 2016-10-15 07:15 - 000687936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll 2017-08-10 18:43 - 2016-10-15 07:10 - 000254656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll 2017-08-10 18:43 - 2016-10-15 07:00 - 000018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stdole2.tlb 2017-08-10 18:43 - 2016-10-15 06:57 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe 2017-08-10 18:43 - 2016-10-15 06:56 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentutl.exe 2017-08-10 18:43 - 2016-10-15 06:54 - 000410112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll 2017-08-10 18:43 - 2016-10-15 06:54 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll 2017-08-10 18:43 - 2016-10-15 06:54 - 000102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll 2017-08-10 18:43 - 2016-10-15 06:44 - 000747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll 2017-08-10 18:43 - 2016-10-15 06:42 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.exe 2017-08-10 18:43 - 2016-10-15 06:36 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmifw.dll 2017-08-10 18:43 - 2016-10-05 12:31 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll 2017-08-10 18:43 - 2016-10-05 12:17 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll 2017-08-10 18:43 - 2016-10-05 12:13 - 000055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll 2017-08-10 18:43 - 2016-09-15 20:37 - 000402352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll 2017-08-10 18:43 - 2016-09-15 20:22 - 000433832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll 2017-08-10 18:43 - 2016-09-15 20:03 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TempSignedLicenseExchangeTask.dll 2017-08-10 18:43 - 2016-09-15 19:58 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll 2017-08-10 18:43 - 2016-09-15 19:57 - 000171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ClipboardServer.dll 2017-08-10 18:43 - 2016-09-15 19:56 - 000262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll 2017-08-10 18:43 - 2016-09-15 19:56 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManagerApi.dll 2017-08-10 18:43 - 2016-09-15 19:55 - 000455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetworkCollectionAgent.dll 2017-08-10 18:43 - 2016-09-15 19:54 - 000461312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2017-08-10 18:43 - 2016-09-15 19:54 - 000431104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll 2017-08-10 18:43 - 2016-09-15 19:53 - 000466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll 2017-08-10 18:43 - 2016-09-15 19:50 - 000071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll 2017-08-10 18:43 - 2016-09-15 19:44 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL 2017-08-10 18:43 - 2016-09-15 19:42 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundMediaPolicy.dll 2017-08-10 18:43 - 2016-09-15 19:35 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll 2017-08-10 18:43 - 2016-09-07 07:59 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExtrasXmlParser.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\POSyncServices.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AddressParser.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTypeHelperUtil.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataLanguageUtil.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccessRes.dll 2017-08-10 18:43 - 2016-09-07 07:58 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneutilRes.dll 2017-08-10 18:43 - 2016-09-07 07:57 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2017-08-10 18:43 - 2016-09-07 07:56 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactActivation.dll 2017-08-10 18:43 - 2016-09-07 07:54 - 000055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataPlatformHelperUtil.dll 2017-08-10 18:43 - 2016-09-07 07:53 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentActivation.dll 2017-08-10 18:43 - 2016-09-07 07:31 - 000461312 _____ (Microsoft) C:\Windows\SysWOW64\DbgModel.dll 2017-08-10 18:43 - 2016-08-20 08:04 - 000592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe 2017-08-10 18:43 - 2016-08-20 08:00 - 000141824 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DscCoreConfProv.dll 2017-08-10 18:43 - 2016-08-20 07:58 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi_passthru.dll 2017-08-10 18:43 - 2016-08-20 07:56 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\delegatorprovider.dll 2017-08-10 18:43 - 2016-08-06 06:48 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll 2017-08-10 18:43 - 2016-08-06 06:44 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll 2017-08-10 18:43 - 2016-08-06 06:33 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll 2017-08-10 18:43 - 2016-08-05 11:29 - 000568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.UXRes.dll 2017-08-10 18:43 - 2016-08-05 11:29 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll 2017-08-10 18:43 - 2016-08-02 07:47 - 000079536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll 2017-08-10 18:43 - 2016-08-02 07:37 - 000121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll 2017-08-10 18:43 - 2016-07-22 04:18 - 000297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll 2017-08-10 18:43 - 2016-05-29 21:38 - 008886976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSetup.exe 2017-08-10 18:42 - 2017-08-01 20:20 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll 2017-08-10 18:42 - 2017-08-01 20:19 - 001980776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2017-08-10 18:42 - 2017-08-01 20:19 - 000577976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2017-08-10 18:42 - 2017-08-01 20:19 - 000339896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2017-08-10 18:42 - 2017-08-01 20:19 - 000266080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2017-08-10 18:42 - 2017-08-01 20:19 - 000120416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2017-08-10 18:42 - 2017-08-01 20:18 - 000139104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2017-08-10 18:42 - 2017-08-01 20:16 - 004023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2017-08-10 18:42 - 2017-08-01 20:16 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2017-08-10 18:42 - 2017-08-01 20:15 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2017-08-10 18:42 - 2017-08-01 20:15 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2017-08-10 18:42 - 2017-08-01 20:15 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2017-08-10 18:42 - 2017-08-01 19:56 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll 2017-08-10 18:42 - 2017-08-01 19:55 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll 2017-08-10 18:42 - 2017-08-01 19:54 - 000505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe 2017-08-10 18:42 - 2017-08-01 19:54 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll 2017-08-10 18:42 - 2017-08-01 19:52 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll 2017-08-10 18:42 - 2017-08-01 19:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll 2017-08-10 18:42 - 2017-08-01 19:50 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll 2017-08-10 18:42 - 2017-08-01 19:50 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll 2017-08-10 18:42 - 2017-08-01 19:48 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll 2017-08-10 18:42 - 2017-08-01 19:42 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2017-08-10 18:42 - 2017-08-01 19:41 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll 2017-08-10 18:42 - 2017-08-01 19:40 - 019415040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2017-08-10 18:42 - 2017-08-01 19:40 - 012187136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2017-08-10 18:42 - 2017-08-01 19:37 - 012349440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2017-08-10 18:42 - 2017-08-01 19:35 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll 2017-08-10 18:42 - 2017-08-01 19:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll 2017-08-10 18:42 - 2017-08-01 19:31 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 2017-08-10 18:42 - 2017-08-01 19:30 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2017-08-10 18:42 - 2017-07-12 09:15 - 000496872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2017-08-10 18:42 - 2017-07-12 09:12 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2017-08-10 18:42 - 2017-07-12 08:55 - 000607072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll 2017-08-10 18:42 - 2017-07-12 08:55 - 000111968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll 2017-08-10 18:42 - 2017-07-12 08:52 - 004312760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2017-08-10 18:42 - 2017-07-12 08:35 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll 2017-08-10 18:42 - 2017-07-12 08:32 - 000227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll 2017-08-10 18:42 - 2017-07-12 08:30 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll 2017-08-10 18:42 - 2017-07-12 08:29 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll 2017-08-10 18:42 - 2017-07-12 08:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll 2017-08-10 18:42 - 2017-07-12 08:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll 2017-08-10 18:42 - 2017-07-12 08:19 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe 2017-08-10 18:42 - 2017-07-12 08:18 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll 2017-08-10 18:42 - 2017-07-12 08:15 - 000893440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe 2017-08-10 18:42 - 2017-07-12 08:15 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll 2017-08-10 18:42 - 2017-07-12 08:14 - 000536064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll 2017-08-10 18:42 - 2017-07-12 08:10 - 000546304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll 2017-08-10 18:42 - 2017-07-12 08:09 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll 2017-08-10 18:42 - 2017-07-12 08:07 - 001572352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2017-08-10 18:42 - 2017-07-12 08:05 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll 2017-08-10 18:42 - 2017-07-07 10:19 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2017-08-10 18:42 - 2017-07-07 10:14 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2017-08-10 18:42 - 2017-07-07 10:14 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2017-08-10 18:42 - 2017-07-07 10:13 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll 2017-08-10 18:42 - 2017-07-07 10:03 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe 2017-08-10 18:42 - 2017-07-07 09:57 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2017-08-10 18:42 - 2017-07-07 09:55 - 004423680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2017-08-10 18:42 - 2017-06-21 11:18 - 001470816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll 2017-08-10 18:42 - 2017-06-21 10:39 - 002048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2017-08-10 18:42 - 2017-06-21 10:30 - 000869848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll 2017-08-10 18:42 - 2017-06-21 10:30 - 000196960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll 2017-08-10 18:42 - 2017-06-21 10:29 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2017-08-10 18:42 - 2017-06-21 10:28 - 002277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2017-08-10 18:42 - 2017-06-21 10:28 - 000524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2017-08-10 18:42 - 2017-06-21 10:28 - 000170960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2017-08-10 18:42 - 2017-06-21 10:27 - 001122344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll 2017-08-10 18:42 - 2017-06-21 10:25 - 002168288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2017-08-10 18:42 - 2017-06-21 10:24 - 000846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2017-08-10 18:42 - 2017-06-21 10:21 - 000952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2017-08-10 18:42 - 2017-06-21 10:21 - 000374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll 2017-08-10 18:42 - 2017-06-21 10:20 - 000962768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2017-08-10 18:42 - 2017-06-21 10:20 - 000312472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll 2017-08-10 18:42 - 2017-06-21 10:04 - 001631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll 2017-08-10 18:42 - 2017-06-21 10:04 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll 2017-08-10 18:42 - 2017-06-21 10:01 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll 2017-08-10 18:42 - 2017-06-21 10:00 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll 2017-08-10 18:42 - 2017-06-21 10:00 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll 2017-08-10 18:42 - 2017-06-21 09:58 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll 2017-08-10 18:42 - 2017-06-21 09:57 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll 2017-08-10 18:42 - 2017-06-21 09:56 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll 2017-08-10 18:42 - 2017-06-21 09:56 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2017-08-10 18:42 - 2017-06-21 09:56 - 000203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovhost.dll 2017-08-10 18:42 - 2017-06-21 09:56 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll 2017-08-10 18:42 - 2017-06-21 09:54 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll 2017-08-10 18:42 - 2017-06-21 09:54 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2017-08-10 18:42 - 2017-06-21 09:53 - 000201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll 2017-08-10 18:42 - 2017-06-21 09:52 - 000262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll 2017-08-10 18:42 - 2017-06-21 09:51 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll 2017-08-10 18:42 - 2017-06-21 09:50 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll 2017-08-10 18:42 - 2017-06-21 09:49 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll 2017-08-10 18:42 - 2017-06-21 09:48 - 000395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll 2017-08-10 18:42 - 2017-06-21 09:47 - 013873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2017-08-10 18:42 - 2017-06-21 09:45 - 000313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll 2017-08-10 18:42 - 2017-06-21 09:45 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll 2017-08-10 18:42 - 2017-06-21 09:44 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll 2017-08-10 18:42 - 2017-06-21 09:44 - 000136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll 2017-08-10 18:42 - 2017-06-21 09:43 - 000653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll 2017-08-10 18:42 - 2017-06-21 09:42 - 003307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2017-08-10 18:42 - 2017-06-21 09:42 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFSv1.dll 2017-08-10 18:42 - 2017-06-21 09:40 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll 2017-08-10 18:42 - 2017-06-21 09:40 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2017-08-10 18:42 - 2017-06-21 09:38 - 003733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2017-08-10 18:42 - 2017-06-21 09:38 - 001221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll 2017-08-10 18:42 - 2017-06-21 09:38 - 000753152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll 2017-08-10 18:42 - 2017-06-21 09:37 - 006109696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2017-08-10 18:42 - 2017-06-21 09:37 - 000357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll 2017-08-10 18:42 - 2017-06-21 09:37 - 000103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll 2017-08-10 18:42 - 2017-06-21 09:36 - 001247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2017-08-10 18:42 - 2017-06-21 09:35 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2017-08-10 18:42 - 2017-06-21 09:35 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll 2017-08-10 18:42 - 2017-06-21 09:34 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll 2017-08-10 18:42 - 2017-06-21 09:32 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll 2017-08-10 18:42 - 2017-06-21 09:10 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll 2017-08-10 18:42 - 2017-06-03 13:50 - 000315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2017-08-10 18:42 - 2017-06-03 12:52 - 001021784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll 2017-08-10 18:42 - 2017-06-03 12:44 - 001412640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll 2017-08-10 18:42 - 2017-06-03 12:44 - 000545944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe 2017-08-10 18:42 - 2017-06-03 12:32 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2017-08-10 18:42 - 2017-06-03 12:31 - 000037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2017-08-10 18:42 - 2017-06-03 12:28 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edputil.dll 2017-08-10 18:42 - 2017-06-03 12:05 - 000295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetcfg.dll 2017-08-10 18:42 - 2017-06-03 12:04 - 002006528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2017-08-10 18:42 - 2017-04-28 03:53 - 000616048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2017-08-10 18:42 - 2017-04-28 03:43 - 001557224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2017-08-10 18:42 - 2017-04-28 03:40 - 001202936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2017-08-10 18:42 - 2017-04-28 03:40 - 000352760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll 2017-08-10 18:42 - 2017-04-28 03:21 - 000073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2017-08-10 18:42 - 2017-04-28 03:21 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BthTelemetry.dll 2017-08-10 18:42 - 2017-04-28 03:17 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll 2017-08-10 18:42 - 2017-04-28 03:15 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl 2017-08-10 18:42 - 2017-04-28 03:13 - 001755136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceFlows.DataModel.dll 2017-08-10 18:42 - 2017-04-28 03:12 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2017-08-10 18:42 - 2017-04-28 03:09 - 000352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll 2017-08-10 18:42 - 2017-04-28 03:07 - 003689984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2017-08-10 18:42 - 2017-04-28 03:03 - 000318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll 2017-08-10 18:42 - 2017-04-28 02:58 - 000433664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll 2017-08-10 18:42 - 2017-04-28 02:57 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll 2017-08-10 18:42 - 2017-04-28 02:56 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll 2017-08-10 18:42 - 2017-04-28 02:55 - 001993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2017-08-10 18:42 - 2017-03-28 09:04 - 000136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll 2017-08-10 18:42 - 2017-03-28 08:58 - 001344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll 2017-08-10 18:42 - 2017-03-28 08:20 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll 2017-08-10 18:42 - 2017-03-28 08:19 - 000746496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll 2017-08-10 18:42 - 2017-03-28 08:16 - 003198464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll 2017-08-10 18:42 - 2017-03-28 08:11 - 001576448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2017-08-10 18:42 - 2017-03-28 08:08 - 001564160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2017-08-10 18:42 - 2017-03-16 07:38 - 000034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll 2017-08-10 18:42 - 2017-03-04 10:57 - 000484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2017-08-10 18:42 - 2017-03-04 10:09 - 002206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2017-08-10 18:42 - 2017-03-04 09:56 - 000248992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll 2017-08-10 18:42 - 2017-03-04 09:47 - 001123912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2017-08-10 18:42 - 2017-03-04 09:47 - 000976184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2017-08-10 18:42 - 2017-03-04 09:47 - 000640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2017-08-10 18:42 - 2017-03-04 09:47 - 000530480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2017-08-10 18:42 - 2017-03-04 09:46 - 000321792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe 2017-08-10 18:42 - 2017-03-04 09:45 - 000112120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2017-08-10 18:42 - 2017-03-04 09:27 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accountaccessor.dll 2017-08-10 18:42 - 2017-03-04 09:26 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll 2017-08-10 18:42 - 2017-03-04 09:25 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCCSEngineShared.dll 2017-08-10 18:42 - 2017-03-04 09:23 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DavSyncProvider.dll 2017-08-10 18:42 - 2017-03-04 09:22 - 001299968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll 2017-08-10 18:42 - 2017-03-04 09:22 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2017-08-10 18:42 - 2017-03-04 09:22 - 000231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll 2017-08-10 18:42 - 2017-03-04 09:22 - 000230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll 2017-08-10 18:42 - 2017-03-04 09:21 - 000670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll 2017-08-10 18:42 - 2017-03-04 09:20 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll 2017-08-10 18:42 - 2017-03-04 09:19 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll 2017-08-10 18:42 - 2017-03-04 09:19 - 000226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2017-08-10 18:42 - 2017-03-04 09:18 - 000896512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll 2017-08-10 18:42 - 2017-03-04 09:18 - 000198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll 2017-08-10 18:42 - 2017-03-04 09:16 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll 2017-08-10 18:42 - 2017-03-04 09:16 - 000465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll 2017-08-10 18:42 - 2017-03-04 09:11 - 001357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll 2017-08-10 18:42 - 2017-03-04 09:07 - 000545280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll 2017-08-10 18:42 - 2017-03-04 09:06 - 005380608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2017-08-10 18:42 - 2017-03-04 09:05 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll 2017-08-10 18:42 - 2017-03-04 09:03 - 002363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll 2017-08-10 18:42 - 2017-03-04 09:03 - 002109952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll 2017-08-10 18:42 - 2017-03-04 09:02 - 002484736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll 2017-08-10 18:42 - 2017-03-04 09:02 - 002138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll 2017-08-10 18:42 - 2017-03-04 09:02 - 001709056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll 2017-08-10 18:42 - 2017-03-04 09:02 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll 2017-08-10 18:42 - 2017-03-04 08:59 - 000206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2017-08-10 18:42 - 2016-12-21 08:59 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll 2017-08-10 18:42 - 2016-12-21 07:24 - 005061120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2017-08-10 18:42 - 2016-12-14 08:01 - 000382784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2017-08-10 18:42 - 2016-12-14 08:01 - 000076984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll 2017-08-10 18:42 - 2016-12-14 07:40 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll 2017-08-10 18:42 - 2016-12-14 07:38 - 000213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll 2017-08-10 18:42 - 2016-12-14 07:32 - 000806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll 2017-08-10 18:42 - 2016-12-09 13:01 - 002323728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2017-08-10 18:42 - 2016-12-09 13:00 - 000106896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2017-08-10 18:42 - 2016-12-09 12:51 - 000117240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2017-08-10 18:42 - 2016-12-09 12:41 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WordBreakers.dll 2017-08-10 18:42 - 2016-12-09 12:34 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll 2017-08-10 18:42 - 2016-12-09 12:15 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputLocaleManager.dll 2017-08-10 18:42 - 2016-12-09 12:15 - 000068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditBufferTestHook.dll 2017-08-10 18:42 - 2016-11-11 10:42 - 000091936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfaudiocnv.dll 2017-08-10 18:42 - 2016-11-11 10:27 - 000065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetCfgNotifyObjectHost.exe 2017-08-10 18:42 - 2016-11-11 10:25 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll 2017-08-10 18:42 - 2016-11-11 10:25 - 000071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll 2017-08-10 18:42 - 2016-11-11 10:23 - 000140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll 2017-08-10 18:42 - 2016-11-11 10:21 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2017-08-10 18:42 - 2016-11-11 10:17 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll 2017-08-10 18:42 - 2016-11-11 10:15 - 000838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2017-08-10 18:42 - 2016-11-11 10:08 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll 2017-08-10 18:42 - 2016-11-11 10:04 - 000715264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll 2017-08-10 18:42 - 2016-11-11 10:03 - 000760832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll 2017-08-10 18:42 - 2016-11-02 14:08 - 000186424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll 2017-08-10 18:42 - 2016-11-02 13:48 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsext.dll 2017-08-10 18:42 - 2016-11-02 13:45 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsensorgroup.dll 2017-08-10 18:42 - 2016-11-02 13:43 - 000198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FSClient.dll 2017-08-10 18:42 - 2016-11-02 13:36 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetailsUpdate.dll 2017-08-10 18:42 - 2016-11-02 13:29 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NPSM.dll 2017-08-10 18:42 - 2016-11-02 13:28 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chartv.dll 2017-08-10 18:42 - 2016-11-02 13:23 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll 2017-08-10 18:42 - 2016-11-02 12:11 - 000788624 _____ C:\Windows\SysWOW64\locale.nls 2017-08-10 18:42 - 2016-11-02 12:11 - 000788624 _____ C:\Windows\system32\locale.nls 2017-08-10 18:42 - 2016-10-15 07:33 - 000455040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll 2017-08-10 18:42 - 2016-10-15 07:18 - 000749920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll 2017-08-10 18:42 - 2016-10-15 06:59 - 000187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfksproxy.dll 2017-08-10 18:42 - 2016-10-15 06:57 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll 2017-08-10 18:42 - 2016-10-15 06:41 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll 2017-08-10 18:42 - 2016-10-15 06:35 - 002708992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2017-08-10 18:42 - 2016-10-05 12:26 - 000137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll 2017-08-10 18:42 - 2016-10-05 12:15 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll 2017-08-10 18:42 - 2016-09-15 20:33 - 000083120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2017-08-10 18:42 - 2016-09-15 20:18 - 000856872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2017-08-10 18:42 - 2016-09-15 20:13 - 000113504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2017-08-10 18:42 - 2016-09-15 19:59 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovslegacy.dll 2017-08-10 18:42 - 2016-09-15 19:56 - 000257536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll 2017-08-10 18:42 - 2016-09-15 19:55 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll 2017-08-10 18:42 - 2016-09-15 19:52 - 000445952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll 2017-08-10 18:42 - 2016-09-15 19:47 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll 2017-08-10 18:42 - 2016-09-07 08:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosTrace.dll 2017-08-10 18:42 - 2016-09-07 08:00 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosHost.dll 2017-08-10 18:42 - 2016-09-07 07:59 - 000409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosResource.dll 2017-08-10 18:42 - 2016-09-07 07:59 - 000110080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MapControls.dll 2017-08-10 18:42 - 2016-09-07 07:59 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlStringsRes.dll 2017-08-10 18:42 - 2016-09-07 07:58 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll 2017-08-10 18:42 - 2016-09-07 07:58 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2017-08-10 18:42 - 2016-09-07 07:54 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll 2017-08-10 18:42 - 2016-09-07 07:53 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2017-08-10 18:42 - 2016-09-07 07:52 - 000536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll 2017-08-10 18:42 - 2016-09-07 07:52 - 000289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NmaDirect.dll 2017-08-10 18:42 - 2016-09-07 07:52 - 000243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2017-08-10 18:42 - 2016-09-07 07:50 - 000235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2017-08-10 18:42 - 2016-09-07 07:47 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll 2017-08-10 18:42 - 2016-09-07 07:46 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2017-08-10 18:42 - 2016-09-07 07:36 - 002423296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAJApi.dll 2017-08-10 18:42 - 2016-08-27 07:58 - 000121368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2017-08-10 18:42 - 2016-08-27 07:43 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\encapi.dll 2017-08-10 18:42 - 2016-08-20 08:14 - 000225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_G18030.DLL 2017-08-10 18:42 - 2016-08-20 08:14 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_IS2022.DLL 2017-08-10 18:42 - 2016-08-20 08:14 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\c_GSM7.DLL 2017-08-10 18:42 - 2016-08-06 07:03 - 000036168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2017-08-10 18:42 - 2016-08-06 06:50 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2017-08-10 18:42 - 2016-08-06 06:48 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2017-08-10 18:42 - 2016-08-06 06:48 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2017-08-10 18:42 - 2016-08-06 06:48 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2017-08-10 18:42 - 2016-08-06 06:46 - 009260032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2017-08-10 18:42 - 2016-08-06 06:45 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2017-08-10 18:42 - 2016-08-06 06:44 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2017-08-10 18:42 - 2016-08-06 06:28 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2017-08-10 18:42 - 2016-08-06 06:21 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll 2017-08-10 18:35 - 2017-08-01 21:53 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll 2017-08-10 18:35 - 2017-08-01 21:46 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2017-08-10 18:35 - 2017-08-01 21:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\windowslivelogin.dll 2017-08-10 18:35 - 2017-08-01 21:32 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2017-08-10 18:35 - 2017-08-01 21:30 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll 2017-08-10 18:35 - 2017-08-01 21:27 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2017-08-10 18:35 - 2017-08-01 21:27 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2017-08-10 18:35 - 2017-07-12 09:17 - 000081760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys 2017-08-10 18:35 - 2017-07-12 08:24 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmdisk0101.sys 2017-08-10 18:35 - 2017-06-21 10:52 - 000088416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys 2017-08-10 18:35 - 2017-06-21 10:40 - 000328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll 2017-08-10 18:35 - 2017-06-21 10:00 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll 2017-08-10 18:35 - 2017-06-21 10:00 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 2017-08-10 18:35 - 2017-06-21 10:00 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.UserDeviceAssociation.dll 2017-08-10 18:35 - 2017-06-21 10:00 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll 2017-08-10 18:35 - 2017-06-21 09:59 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll 2017-08-10 18:35 - 2017-06-21 09:59 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll 2017-08-10 18:35 - 2017-06-21 09:59 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll 2017-08-10 18:35 - 2017-06-21 09:58 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll 2017-08-10 18:35 - 2017-06-21 09:56 - 001507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll 2017-08-10 18:35 - 2017-06-21 09:55 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll 2017-08-10 18:35 - 2017-06-21 09:54 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll 2017-08-10 18:35 - 2017-06-21 09:51 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2017-08-10 18:35 - 2017-06-21 09:49 - 002104320 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll 2017-08-10 18:35 - 2017-06-21 09:41 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll 2017-08-10 18:35 - 2017-06-21 09:38 - 002424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll 2017-08-10 18:35 - 2017-03-04 10:07 - 000116064 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll 2017-08-10 18:35 - 2017-03-04 09:36 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll 2017-08-10 18:35 - 2017-03-04 09:33 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.UI.GameBar.dll 2017-08-10 18:35 - 2017-03-04 09:33 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\XInputUap.dll 2017-08-10 18:35 - 2017-03-04 09:30 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe 2017-08-10 18:35 - 2017-03-04 09:29 - 000730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2017-08-10 18:35 - 2017-03-04 09:29 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll 2017-08-10 18:35 - 2017-03-04 09:28 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll 2017-08-10 18:35 - 2017-03-04 09:27 - 000778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2017-08-10 18:35 - 2017-03-04 09:25 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll 2017-08-10 18:35 - 2017-03-04 09:25 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2017-08-10 18:35 - 2017-03-04 09:24 - 001025536 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll 2017-08-10 18:35 - 2017-03-04 09:22 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2017-08-10 18:35 - 2017-03-04 09:20 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2017-08-10 18:35 - 2017-03-04 09:14 - 000588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll 2017-08-10 18:35 - 2016-11-11 12:24 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll 2017-08-10 18:35 - 2016-11-11 12:05 - 004136448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll 2017-08-10 18:35 - 2016-09-15 20:29 - 000074080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys 2017-08-10 18:35 - 2016-09-15 19:46 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\ffbroker.dll 2017-08-10 18:35 - 2016-09-15 19:43 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll 2017-08-10 18:35 - 2016-09-15 19:35 - 001087488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll 2017-08-10 18:35 - 2016-08-06 06:44 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2017-08-10 18:35 - 2016-08-06 06:43 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\ClipboardServer.dll 2017-08-10 18:35 - 2016-08-05 11:29 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll 2017-08-10 18:34 - 2017-08-01 22:27 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2017-08-10 18:34 - 2017-08-01 22:22 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2017-08-10 18:34 - 2017-08-01 22:21 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe 2017-08-10 18:34 - 2017-08-01 22:18 - 008169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll 2017-08-10 18:34 - 2017-08-01 22:17 - 022220856 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2017-08-10 18:34 - 2017-08-01 22:13 - 002532192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2017-08-10 18:34 - 2017-08-01 21:58 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2017-08-10 18:34 - 2017-08-01 21:57 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2017-08-10 18:34 - 2017-08-01 21:54 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\tokenbinding.dll 2017-08-10 18:34 - 2017-08-01 21:52 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll 2017-08-10 18:34 - 2017-08-01 21:48 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2017-08-10 18:34 - 2017-08-01 21:47 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll 2017-08-10 18:34 - 2017-08-01 21:47 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerUI.dll 2017-08-10 18:34 - 2017-08-01 21:46 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll 2017-08-10 18:34 - 2017-08-01 21:46 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe 2017-08-10 18:34 - 2017-08-01 21:46 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2017-08-10 18:34 - 2017-08-01 21:46 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe 2017-08-10 18:34 - 2017-08-01 21:45 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll 2017-08-10 18:34 - 2017-08-01 21:44 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll 2017-08-10 18:34 - 2017-08-01 21:43 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2017-08-10 18:34 - 2017-08-01 21:43 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll 2017-08-10 18:34 - 2017-08-01 21:42 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe 2017-08-10 18:34 - 2017-08-01 21:40 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2017-08-10 18:34 - 2017-08-01 21:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll 2017-08-10 18:34 - 2017-08-01 21:39 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2017-08-10 18:34 - 2017-08-01 21:35 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll 2017-08-10 18:34 - 2017-08-01 21:32 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe 2017-08-10 18:34 - 2017-08-01 21:30 - 002916864 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2017-08-10 18:34 - 2017-08-01 21:30 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2017-08-10 18:34 - 2017-08-01 21:29 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2017-08-10 18:34 - 2017-08-01 21:27 - 008076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2017-08-10 18:34 - 2017-08-01 21:27 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2017-08-10 18:34 - 2017-08-01 21:27 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2017-08-10 18:34 - 2017-08-01 21:27 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll 2017-08-10 18:34 - 2017-08-01 21:27 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll 2017-08-10 18:34 - 2017-08-01 21:26 - 001513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2017-08-10 18:34 - 2017-08-01 21:25 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2017-08-10 18:34 - 2017-08-01 21:24 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2017-08-10 18:34 - 2017-08-01 21:24 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2017-08-10 18:34 - 2017-08-01 21:23 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2017-08-10 18:34 - 2017-07-12 09:00 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-08-10 18:34 - 2017-07-12 08:23 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe 2017-08-10 18:34 - 2017-07-12 08:23 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll 2017-08-10 18:34 - 2017-07-12 08:23 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe 2017-08-10 18:34 - 2017-07-12 08:17 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2017-08-10 18:34 - 2017-07-12 08:17 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2017-08-10 18:34 - 2017-07-12 08:12 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll 2017-08-10 18:34 - 2017-07-12 08:09 - 003291136 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2017-08-10 18:34 - 2017-07-12 08:08 - 002861056 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll 2017-08-10 18:34 - 2017-07-12 08:06 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll 2017-08-10 18:34 - 2017-07-12 08:02 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2017-08-10 18:34 - 2017-07-12 07:59 - 002318336 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2017-08-10 18:34 - 2017-07-12 07:58 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2017-08-10 18:34 - 2017-07-12 05:49 - 000448629 _____ C:\Windows\system32\ApnDatabase.xml 2017-08-10 18:34 - 2017-07-07 09:47 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll 2017-08-10 18:34 - 2017-07-07 09:46 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll 2017-08-10 18:34 - 2017-07-07 09:44 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll 2017-08-10 18:34 - 2017-07-07 09:39 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-08-10 18:34 - 2017-07-07 09:24 - 005388800 _____ (Microsoft) C:\Windows\system32\dbgeng.dll 2017-08-10 18:34 - 2017-06-21 10:38 - 001738560 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2017-08-10 18:34 - 2017-06-21 10:37 - 001157008 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2017-08-10 18:34 - 2017-06-21 10:33 - 000408600 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll 2017-08-10 18:34 - 2017-06-21 10:03 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys 2017-08-10 18:34 - 2017-06-21 10:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll 2017-08-10 18:34 - 2017-06-21 10:01 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll 2017-08-10 18:34 - 2017-06-21 10:01 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll 2017-08-10 18:34 - 2017-06-21 10:01 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe 2017-08-10 18:34 - 2017-06-21 10:00 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp 2017-08-10 18:34 - 2017-06-21 09:59 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll 2017-08-10 18:34 - 2017-06-21 09:59 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe 2017-08-10 18:34 - 2017-06-21 09:59 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll 2017-08-10 18:34 - 2017-06-21 09:59 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll 2017-08-10 18:34 - 2017-06-21 09:58 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll 2017-08-10 18:34 - 2017-06-21 09:57 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll 2017-08-10 18:34 - 2017-06-21 09:57 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2017-08-10 18:34 - 2017-06-21 09:57 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll 2017-08-10 18:34 - 2017-06-21 09:56 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll 2017-08-10 18:34 - 2017-06-21 09:56 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll 2017-08-10 18:34 - 2017-06-21 09:55 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll 2017-08-10 18:34 - 2017-06-21 09:54 - 000574976 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll 2017-08-10 18:34 - 2017-06-21 09:54 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll 2017-08-10 18:34 - 2017-06-21 09:53 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll 2017-08-10 18:34 - 2017-06-21 09:49 - 001913856 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll 2017-08-10 18:34 - 2017-06-21 09:49 - 001584128 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll 2017-08-10 18:34 - 2017-06-21 09:41 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2017-08-10 18:34 - 2017-06-21 09:39 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2017-08-10 18:34 - 2017-06-21 09:39 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2017-08-10 18:34 - 2017-06-21 09:39 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2017-08-10 18:34 - 2017-06-21 09:36 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll 2017-08-10 18:34 - 2017-06-21 09:35 - 001369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll 2017-08-10 18:34 - 2017-06-21 09:34 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll 2017-08-10 18:34 - 2017-06-21 09:33 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2017-08-10 18:34 - 2017-06-21 09:33 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2017-08-10 18:34 - 2017-06-03 13:11 - 000128864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys 2017-08-10 18:34 - 2017-06-03 12:49 - 000509280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2017-08-10 18:34 - 2017-06-03 12:16 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll 2017-08-10 18:34 - 2017-06-03 12:10 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\AuthBrokerUI.dll 2017-08-10 18:34 - 2017-04-28 03:56 - 001117024 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2017-08-10 18:34 - 2017-04-28 03:47 - 000699744 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll 2017-08-10 18:34 - 2017-04-28 03:46 - 000410464 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2017-08-10 18:34 - 2017-04-28 03:42 - 000526176 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe 2017-08-10 18:34 - 2017-04-28 03:40 - 000578400 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2017-08-10 18:34 - 2017-04-28 03:30 - 000322912 _____ (Microsoft Corporation) C:\Windows\system32\input.dll 2017-08-10 18:34 - 2017-04-28 03:03 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll 2017-08-10 18:34 - 2017-04-28 03:02 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2017-08-10 18:34 - 2017-04-28 03:01 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\virtdisk.dll 2017-08-10 18:34 - 2017-04-28 02:51 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2017-08-10 18:34 - 2017-04-28 02:51 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2017-08-10 18:34 - 2017-04-28 02:47 - 000649216 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe 2017-08-10 18:34 - 2017-04-28 02:46 - 001443328 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2017-08-10 18:34 - 2017-04-28 02:45 - 000946688 _____ (Microsoft Corporation) C:\Windows\system32\wsp_sr.dll 2017-08-10 18:34 - 2017-04-28 02:43 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll 2017-08-10 18:34 - 2017-04-28 02:43 - 000646656 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll 2017-08-10 18:34 - 2017-04-28 02:43 - 000320512 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll 2017-08-10 18:34 - 2017-04-28 02:42 - 002390016 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe 2017-08-10 18:34 - 2017-04-28 02:38 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll 2017-08-10 18:34 - 2017-04-28 02:37 - 003134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2017-08-10 18:34 - 2017-04-28 02:37 - 001266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll 2017-08-10 18:34 - 2017-04-28 02:34 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe 2017-08-10 18:34 - 2017-04-28 02:33 - 001817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll 2017-08-10 18:34 - 2017-03-28 09:32 - 000198856 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll 2017-08-10 18:34 - 2017-03-28 08:37 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManagerProxy.dll 2017-08-10 18:34 - 2017-03-28 08:34 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll 2017-08-10 18:34 - 2017-03-28 08:16 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll 2017-08-10 18:34 - 2017-03-28 08:09 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll 2017-08-10 18:34 - 2017-03-04 10:24 - 002186896 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll 2017-08-10 18:34 - 2017-03-04 10:24 - 000354264 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe 2017-08-10 18:34 - 2017-03-04 10:23 - 002512304 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2017-08-10 18:34 - 2017-03-04 10:19 - 002049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2017-08-10 18:34 - 2017-03-04 10:18 - 000219040 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL 2017-08-10 18:34 - 2017-03-04 10:17 - 000409952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2017-08-10 18:34 - 2017-03-04 10:09 - 001293152 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll 2017-08-10 18:34 - 2017-03-04 10:09 - 000681312 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2017-08-10 18:34 - 2017-03-04 10:09 - 000527808 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll 2017-08-10 18:34 - 2017-03-04 10:08 - 000450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-08-10 18:34 - 2017-03-04 10:08 - 000342456 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2017-08-10 18:34 - 2017-03-04 10:08 - 000130912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys 2017-08-10 18:34 - 2017-03-04 10:03 - 001694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2017-08-10 18:34 - 2017-03-04 10:01 - 000201568 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll 2017-08-10 18:34 - 2017-03-04 10:01 - 000137936 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe 2017-08-10 18:34 - 2017-03-04 09:58 - 001416224 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2017-08-10 18:34 - 2017-03-04 09:37 - 000025088 _____ C:\Windows\system32\GamePanelExternalHook.dll 2017-08-10 18:34 - 2017-03-04 09:36 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll 2017-08-10 18:34 - 2017-03-04 09:36 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll 2017-08-10 18:34 - 2017-03-04 09:36 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2017-08-10 18:34 - 2017-03-04 09:36 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe 2017-08-10 18:34 - 2017-03-04 09:34 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll 2017-08-10 18:34 - 2017-03-04 09:33 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll 2017-08-10 18:34 - 2017-03-04 09:33 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe 2017-08-10 18:34 - 2017-03-04 09:32 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll 2017-08-10 18:34 - 2017-03-04 09:32 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll 2017-08-10 18:34 - 2017-03-04 09:32 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll 2017-08-10 18:34 - 2017-03-04 09:31 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll 2017-08-10 18:34 - 2017-03-04 09:30 - 000300544 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll 2017-08-10 18:34 - 2017-03-04 09:30 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll 2017-08-10 18:34 - 2017-03-04 09:30 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll 2017-08-10 18:34 - 2017-03-04 09:30 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe 2017-08-10 18:34 - 2017-03-04 09:29 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll 2017-08-10 18:34 - 2017-03-04 09:29 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll 2017-08-10 18:34 - 2017-03-04 09:29 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll 2017-08-10 18:34 - 2017-03-04 09:27 - 006574592 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2017-08-10 18:34 - 2017-03-04 09:26 - 000468992 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2017-08-10 18:34 - 2017-03-04 09:26 - 000464896 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll 2017-08-10 18:34 - 2017-03-04 09:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll 2017-08-10 18:34 - 2017-03-04 09:26 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2017-08-10 18:34 - 2017-03-04 09:25 - 001388544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll 2017-08-10 18:34 - 2017-03-04 09:25 - 001016320 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll 2017-08-10 18:34 - 2017-03-04 09:25 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll 2017-08-10 18:34 - 2017-03-04 09:25 - 000526848 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2017-08-10 18:34 - 2017-03-04 09:25 - 000320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2017-08-10 18:34 - 2017-03-04 09:24 - 001293312 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll 2017-08-10 18:34 - 2017-03-04 09:24 - 000655872 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll 2017-08-10 18:34 - 2017-03-04 09:23 - 001145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll 2017-08-10 18:34 - 2017-03-04 09:23 - 000715776 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2017-08-10 18:34 - 2017-03-04 09:23 - 000541696 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll 2017-08-10 18:34 - 2017-03-04 09:21 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl 2017-08-10 18:34 - 2017-03-04 09:20 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2017-08-10 18:34 - 2017-03-04 09:19 - 000166912 _____ (Microsoft Corporation) C:\Windows\system32\Tabbtn.dll 2017-08-10 18:34 - 2017-03-04 09:19 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe 2017-08-10 18:34 - 2017-03-04 09:17 - 001082368 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2017-08-10 18:34 - 2017-03-04 09:14 - 001562112 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2017-08-10 18:34 - 2017-03-04 09:13 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe 2017-08-10 18:34 - 2017-03-04 09:11 - 001656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2017-08-10 18:34 - 2017-03-04 09:11 - 001312768 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe 2017-08-10 18:34 - 2017-03-04 09:11 - 000818176 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2017-08-10 18:34 - 2017-03-04 09:10 - 001555456 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe 2017-08-10 18:34 - 2017-03-04 09:10 - 001536000 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll 2017-08-10 18:34 - 2017-03-04 09:10 - 001399296 _____ (Microsoft Corporation) C:\Windows\system32\Pimstore.dll 2017-08-10 18:34 - 2017-03-04 09:10 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2017-08-10 18:34 - 2017-03-04 09:09 - 000771072 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll 2017-08-10 18:34 - 2017-03-04 09:09 - 000653824 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll 2017-08-10 18:34 - 2017-03-04 09:08 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2017-08-10 18:34 - 2017-03-04 09:07 - 002512384 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll 2017-08-10 18:34 - 2017-03-04 09:07 - 001512448 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll 2017-08-10 18:34 - 2017-03-04 09:07 - 001348608 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2017-08-10 18:34 - 2017-03-04 09:07 - 000909312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2017-08-10 18:34 - 2017-03-04 09:07 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll 2017-08-10 18:34 - 2017-03-04 09:06 - 004060672 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll 2017-08-10 18:34 - 2017-03-04 09:06 - 001013760 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll 2017-08-10 18:34 - 2017-03-04 09:06 - 000483328 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll 2017-08-10 18:34 - 2017-03-04 09:05 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll 2017-08-10 18:34 - 2017-03-04 09:04 - 000531456 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll 2017-08-10 18:34 - 2017-03-04 09:04 - 000340992 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll 2017-08-10 18:34 - 2016-12-21 10:09 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll 2017-08-10 18:34 - 2016-12-14 08:17 - 000319288 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2017-08-10 18:34 - 2016-12-14 07:46 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-08-10 18:34 - 2016-12-14 07:39 - 000837632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll 2017-08-10 18:34 - 2016-12-14 07:36 - 001002496 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2017-08-10 18:34 - 2016-12-14 07:25 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2017-08-10 18:34 - 2016-12-09 13:10 - 001461200 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2017-08-10 18:34 - 2016-11-11 13:15 - 000101216 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll 2017-08-10 18:34 - 2016-11-11 12:55 - 000882680 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll 2017-08-10 18:34 - 2016-11-11 12:26 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys 2017-08-10 18:34 - 2016-11-11 12:26 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe 2017-08-10 18:34 - 2016-11-11 12:24 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll 2017-08-10 18:34 - 2016-11-11 12:19 - 000388096 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll 2017-08-10 18:34 - 2016-11-11 12:16 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2017-08-10 18:34 - 2016-11-11 12:16 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll 2017-08-10 18:34 - 2016-11-11 12:15 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe 2017-08-10 18:34 - 2016-11-11 12:13 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll 2017-08-10 18:34 - 2016-11-11 12:11 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\umpoext.dll 2017-08-10 18:34 - 2016-11-11 12:04 - 001709056 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2017-08-10 18:34 - 2016-11-11 12:04 - 000691712 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2017-08-10 18:34 - 2016-11-11 12:03 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll 2017-08-10 18:34 - 2016-11-02 14:13 - 000423776 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe 2017-08-10 18:34 - 2016-11-02 13:27 - 000545792 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2017-08-10 18:34 - 2016-11-02 13:26 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll 2017-08-10 18:34 - 2016-11-02 13:18 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2017-08-10 18:34 - 2016-11-02 13:13 - 003496960 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll 2017-08-10 18:34 - 2016-10-15 07:41 - 005622088 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2017-08-10 18:34 - 2016-10-15 07:26 - 000691080 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll 2017-08-10 18:34 - 2016-10-15 07:21 - 000584032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2017-08-10 18:34 - 2016-10-15 07:00 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll 2017-08-10 18:34 - 2016-10-15 06:54 - 000717312 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll 2017-08-10 18:34 - 2016-10-15 06:54 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll 2017-08-10 18:34 - 2016-10-15 06:50 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2017-08-10 18:34 - 2016-10-05 12:31 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll 2017-08-10 18:34 - 2016-10-05 12:20 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2017-08-10 18:34 - 2016-09-15 20:29 - 000424640 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2017-08-10 18:34 - 2016-09-15 19:42 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe 2017-08-10 18:34 - 2016-09-15 19:37 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2017-08-10 18:34 - 2016-09-15 19:37 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\wlancfg.dll 2017-08-10 18:34 - 2016-09-15 19:36 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe 2017-08-10 18:34 - 2016-09-15 19:35 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll 2017-08-10 18:34 - 2016-09-15 19:34 - 000560640 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2017-08-10 18:34 - 2016-09-15 19:27 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Sens.dll 2017-08-10 18:34 - 2016-09-15 19:16 - 000387072 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll 2017-08-10 18:34 - 2016-09-15 19:16 - 000221696 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll 2017-08-10 18:34 - 2016-09-07 08:03 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccessRes.dll 2017-08-10 18:34 - 2016-09-07 08:02 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll 2017-08-10 18:34 - 2016-09-07 08:02 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll 2017-08-10 18:34 - 2016-09-07 08:02 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\ExtrasXmlParser.dll 2017-08-10 18:34 - 2016-09-07 08:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneutilRes.dll 2017-08-10 18:34 - 2016-09-07 08:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneServiceRes.dll 2017-08-10 18:34 - 2016-09-07 08:01 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll 2017-08-10 18:34 - 2016-09-07 08:01 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\AddressParser.dll 2017-08-10 18:34 - 2016-09-07 08:01 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll 2017-08-10 18:34 - 2016-09-07 07:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll 2017-08-10 18:34 - 2016-09-07 07:59 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\ContactActivation.dll 2017-08-10 18:34 - 2016-09-07 07:56 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll 2017-08-10 18:34 - 2016-09-07 07:55 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll 2017-08-10 18:34 - 2016-09-07 07:54 - 000678912 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll 2017-08-10 18:34 - 2016-09-07 07:45 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2017-08-10 18:34 - 2016-09-07 07:35 - 000650240 _____ (Microsoft) C:\Windows\system32\DbgModel.dll 2017-08-10 18:34 - 2016-08-20 08:20 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2017-08-10 18:34 - 2016-08-20 08:08 - 000204288 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll 2017-08-10 18:34 - 2016-08-20 08:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll 2017-08-10 18:34 - 2016-08-20 08:04 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll 2017-08-10 18:34 - 2016-08-06 07:31 - 000041824 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe 2017-08-10 18:34 - 2016-08-06 07:16 - 000026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2017-08-10 18:34 - 2016-08-06 06:48 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2017-08-10 18:34 - 2016-08-06 06:48 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe 2017-08-10 18:34 - 2016-08-06 06:46 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModelOOBE.exe 2017-08-10 18:34 - 2016-08-06 06:45 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll 2017-08-10 18:34 - 2016-08-06 06:41 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll 2017-08-10 18:34 - 2016-08-06 06:40 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll 2017-08-10 18:34 - 2016-08-06 06:40 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll 2017-08-10 18:34 - 2016-08-06 06:35 - 000471552 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll 2017-08-10 18:34 - 2016-08-06 06:34 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll 2017-08-10 18:34 - 2016-08-06 06:23 - 000520192 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll 2017-08-10 18:34 - 2016-08-02 11:44 - 000114192 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll 2017-08-10 18:34 - 2016-07-16 05:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\CspCellularSettings.dll 2017-08-10 18:34 - 2016-07-16 05:28 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAPNCsp.dll 2017-08-10 18:34 - 2016-07-16 05:26 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\CfgSPCellular.dll 2017-08-10 18:33 - 2017-08-01 22:32 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2017-08-10 18:33 - 2017-08-01 22:31 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2017-08-10 18:33 - 2017-08-01 22:25 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2017-08-10 18:33 - 2017-08-01 22:22 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2017-08-10 18:33 - 2017-08-01 22:21 - 002759712 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2017-08-10 18:33 - 2017-08-01 22:21 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2017-08-10 18:33 - 2017-08-01 22:20 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2017-08-10 18:33 - 2017-08-01 22:18 - 004260064 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2017-08-10 18:33 - 2017-08-01 22:18 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2017-08-10 18:33 - 2017-08-01 22:18 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2017-08-10 18:33 - 2017-08-01 22:18 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2017-08-10 18:33 - 2017-08-01 22:17 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2017-08-10 18:33 - 2017-08-01 22:17 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2017-08-10 18:33 - 2017-08-01 22:17 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2017-08-10 18:33 - 2017-08-01 22:13 - 000387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll 2017-08-10 18:33 - 2017-08-01 21:57 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll 2017-08-10 18:33 - 2017-08-01 21:52 - 022569472 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2017-08-10 18:33 - 2017-08-01 21:51 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll 2017-08-10 18:33 - 2017-08-01 21:48 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll 2017-08-10 18:33 - 2017-08-01 21:48 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2017-08-10 18:33 - 2017-08-01 21:47 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll 2017-08-10 18:33 - 2017-08-01 21:47 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll 2017-08-10 18:33 - 2017-08-01 21:46 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll 2017-08-10 18:33 - 2017-08-01 21:45 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2017-08-10 18:33 - 2017-08-01 21:45 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-08-10 18:33 - 2017-08-01 21:45 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2017-08-10 18:33 - 2017-08-01 21:45 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll 2017-08-10 18:33 - 2017-08-01 21:42 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2017-08-10 18:33 - 2017-08-01 21:40 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll 2017-08-10 18:33 - 2017-08-01 21:39 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll 2017-08-10 18:33 - 2017-08-01 21:38 - 013441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2017-08-10 18:33 - 2017-08-01 21:37 - 013091328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2017-08-10 18:33 - 2017-08-01 21:33 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2017-08-10 18:33 - 2017-08-01 21:32 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2017-08-10 18:33 - 2017-08-01 21:30 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll 2017-08-10 18:33 - 2017-08-01 21:29 - 004743680 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2017-08-10 18:33 - 2017-08-01 21:29 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll 2017-08-10 18:33 - 2017-08-01 21:28 - 001490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-08-10 18:33 - 2017-08-01 21:27 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2017-08-10 18:33 - 2017-08-01 21:26 - 001949696 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll 2017-08-10 18:33 - 2017-08-01 21:26 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll 2017-08-10 18:33 - 2017-08-01 21:24 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll 2017-08-10 18:33 - 2017-08-01 21:24 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2017-08-10 18:33 - 2017-07-12 09:15 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2017-08-10 18:33 - 2017-07-12 09:14 - 001886896 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2017-08-10 18:33 - 2017-07-12 09:13 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2017-08-10 18:33 - 2017-07-12 09:09 - 001181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2017-08-10 18:33 - 2017-07-12 09:02 - 002186592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2017-08-10 18:33 - 2017-07-12 09:02 - 000402776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2017-08-10 18:33 - 2017-07-12 09:01 - 000156000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2017-08-10 18:33 - 2017-07-12 09:00 - 000160608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys 2017-08-10 18:33 - 2017-07-12 08:59 - 000857952 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll 2017-08-10 18:33 - 2017-07-12 08:59 - 000148832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll 2017-08-10 18:33 - 2017-07-12 08:24 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll 2017-08-10 18:33 - 2017-07-12 08:21 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll 2017-08-10 18:33 - 2017-07-12 08:19 - 000488960 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll 2017-08-10 18:33 - 2017-07-12 08:16 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll 2017-08-10 18:33 - 2017-07-12 08:13 - 001478656 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe 2017-08-10 18:33 - 2017-07-12 08:06 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll 2017-08-10 18:33 - 2017-07-12 08:03 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2017-08-10 18:33 - 2017-07-12 08:03 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll 2017-08-10 18:33 - 2017-07-12 08:01 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2017-08-10 18:33 - 2017-07-12 08:00 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2017-08-10 18:33 - 2017-07-12 07:59 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe 2017-08-10 18:33 - 2017-07-12 07:59 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll 2017-08-10 18:33 - 2017-07-12 07:58 - 001130496 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2017-08-10 18:33 - 2017-07-12 07:57 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll 2017-08-10 18:33 - 2017-07-12 07:56 - 001826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2017-08-10 18:33 - 2017-07-07 10:44 - 000108896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2017-08-10 18:33 - 2017-07-07 10:37 - 000468320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2017-08-10 18:33 - 2017-07-07 10:32 - 000404824 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2017-08-10 18:33 - 2017-07-07 09:49 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys 2017-08-10 18:33 - 2017-07-07 09:48 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll 2017-08-10 18:33 - 2017-07-07 09:48 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\eapprovp.dll 2017-08-10 18:33 - 2017-07-07 09:46 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2017-08-10 18:33 - 2017-07-07 09:45 - 000276992 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2017-08-10 18:33 - 2017-07-07 09:44 - 000502784 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2017-08-10 18:33 - 2017-07-07 09:44 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll 2017-08-10 18:33 - 2017-07-07 09:44 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2017-08-10 18:33 - 2017-07-07 09:44 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll 2017-08-10 18:33 - 2017-07-07 09:43 - 000387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2017-08-10 18:33 - 2017-07-07 09:43 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2017-08-10 18:33 - 2017-07-07 09:42 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll 2017-08-10 18:33 - 2017-07-07 09:36 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe 2017-08-10 18:33 - 2017-07-07 09:35 - 001397760 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll 2017-08-10 18:33 - 2017-07-07 09:33 - 000576000 _____ (Microsoft® Windows® Operating System) C:\Windows\system32\wvc.dll 2017-08-10 18:33 - 2017-07-07 09:29 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-08-10 18:33 - 2017-07-07 09:28 - 000759296 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2017-08-10 18:33 - 2017-07-07 09:28 - 000589312 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-08-10 18:33 - 2017-06-21 10:53 - 000794928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll 2017-08-10 18:33 - 2017-06-21 10:52 - 000774224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2017-08-10 18:33 - 2017-06-21 10:50 - 000126304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys 2017-08-10 18:33 - 2017-06-21 10:38 - 007220192 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2017-08-10 18:33 - 2017-06-21 10:02 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll 2017-08-10 18:33 - 2017-06-21 10:01 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll 2017-08-10 18:33 - 2017-06-21 10:00 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll 2017-08-10 18:33 - 2017-06-21 10:00 - 000233984 _____ (Microsoft Corporation) C:\Windows\system32\ProvisioningHandlers.dll 2017-08-10 18:33 - 2017-06-21 10:00 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SignInOptions.dll 2017-08-10 18:33 - 2017-06-21 10:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll 2017-08-10 18:33 - 2017-06-21 09:59 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll 2017-08-10 18:33 - 2017-06-21 09:58 - 000418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll 2017-08-10 18:33 - 2017-06-21 09:56 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll 2017-08-10 18:33 - 2017-06-21 09:56 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys 2017-08-10 18:33 - 2017-06-21 09:55 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll 2017-08-10 18:33 - 2017-06-21 09:54 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll 2017-08-10 18:33 - 2017-06-21 09:54 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll 2017-08-10 18:33 - 2017-06-21 09:54 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll 2017-08-10 18:33 - 2017-06-21 09:53 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll 2017-08-10 18:33 - 2017-06-21 09:52 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll 2017-08-10 18:33 - 2017-06-21 09:52 - 000331264 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll 2017-08-10 18:33 - 2017-06-21 09:49 - 003778048 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2017-08-10 18:33 - 2017-06-21 09:49 - 001403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll 2017-08-10 18:33 - 2017-06-21 09:49 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll 2017-08-10 18:33 - 2017-06-21 09:49 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll 2017-08-10 18:33 - 2017-06-21 09:47 - 007655424 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2017-08-10 18:33 - 2017-06-21 09:47 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll 2017-08-10 18:33 - 2017-06-21 09:47 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll 2017-08-10 18:33 - 2017-06-21 09:46 - 000627200 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll 2017-08-10 18:33 - 2017-06-21 09:43 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll 2017-08-10 18:33 - 2017-06-21 09:43 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe 2017-08-10 18:33 - 2017-06-21 09:42 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll 2017-08-10 18:33 - 2017-06-21 09:42 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll 2017-08-10 18:33 - 2017-06-21 09:42 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll 2017-08-10 18:33 - 2017-06-21 09:41 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll 2017-08-10 18:33 - 2017-06-21 09:40 - 001891328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2017-08-10 18:33 - 2017-06-21 09:40 - 000611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll 2017-08-10 18:33 - 2017-06-21 09:39 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll 2017-08-10 18:33 - 2017-06-21 09:38 - 000846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll 2017-08-10 18:33 - 2017-06-21 09:36 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll 2017-08-10 18:33 - 2017-06-21 09:34 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe 2017-08-10 18:33 - 2017-06-03 13:14 - 000136024 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll 2017-08-10 18:33 - 2017-06-03 12:11 - 000353792 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll 2017-08-10 18:33 - 2017-06-03 12:09 - 000441344 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll 2017-08-10 18:33 - 2017-06-03 12:09 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\NetworkBindingEngineMigPlugin.dll 2017-08-10 18:33 - 2017-06-03 11:52 - 002510848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2017-08-10 18:33 - 2017-06-03 11:48 - 000834048 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2017-08-10 18:33 - 2017-05-25 08:56 - 000038752 _____ (Microsoft Corporation) C:\Windows\system32\OOBEUpdater.exe 2017-08-10 18:33 - 2017-04-28 03:49 - 000700936 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2017-08-10 18:33 - 2017-04-28 03:47 - 000501088 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll 2017-08-10 18:33 - 2017-04-28 03:38 - 000431968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys 2017-08-10 18:33 - 2017-04-28 03:35 - 001302136 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2017-08-10 18:33 - 2017-04-28 03:35 - 000596040 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2017-08-10 18:33 - 2017-04-28 03:34 - 000443232 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll 2017-08-10 18:33 - 2017-04-28 03:28 - 000453536 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2017-08-10 18:33 - 2017-04-28 03:03 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2017-08-10 18:33 - 2017-04-28 03:03 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys 2017-08-10 18:33 - 2017-04-28 03:01 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ClosedCaptioning.dll 2017-08-10 18:33 - 2017-04-28 03:00 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2017-08-10 18:33 - 2017-04-28 02:59 - 000375296 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll 2017-08-10 18:33 - 2017-04-28 02:57 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\PrintWSDAHost.dll 2017-08-10 18:33 - 2017-04-28 02:56 - 000947712 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2017-08-10 18:33 - 2017-04-28 02:55 - 000657920 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll 2017-08-10 18:33 - 2017-04-28 02:53 - 003059200 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2017-08-10 18:33 - 2017-04-28 02:53 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll 2017-08-10 18:33 - 2017-04-28 02:50 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll 2017-08-10 18:33 - 2017-04-28 02:50 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll 2017-08-10 18:33 - 2017-04-28 02:48 - 000798720 _____ (Microsoft Corporation) C:\Windows\system32\pwcreator.exe 2017-08-10 18:33 - 2017-04-28 02:47 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll 2017-08-10 18:33 - 2017-04-28 02:46 - 000501248 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll 2017-08-10 18:33 - 2017-04-28 02:45 - 000411648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll 2017-08-10 18:33 - 2017-04-28 02:45 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2017-08-10 18:33 - 2017-04-28 02:44 - 001366016 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll 2017-08-10 18:33 - 2017-04-28 02:43 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2017-08-10 18:33 - 2017-04-28 02:41 - 000860160 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll 2017-08-10 18:33 - 2017-04-28 02:41 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2017-08-10 18:33 - 2017-04-28 02:40 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll 2017-08-10 18:33 - 2017-04-28 02:37 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2017-08-10 18:33 - 2017-03-28 09:26 - 000218520 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe 2017-08-10 18:33 - 2017-03-28 09:09 - 000097128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll 2017-08-10 18:33 - 2017-03-28 09:05 - 001848584 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll 2017-08-10 18:33 - 2017-03-28 08:29 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll 2017-08-10 18:33 - 2017-03-28 08:27 - 000645120 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2017-08-10 18:33 - 2017-03-28 08:27 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll 2017-08-10 18:33 - 2017-03-28 08:24 - 001220096 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl 2017-08-10 18:33 - 2017-03-28 08:20 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll 2017-08-10 18:33 - 2017-03-28 08:14 - 000947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll 2017-08-10 18:33 - 2017-03-28 08:14 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2017-08-10 18:33 - 2017-03-28 08:04 - 000119808 ____R (Microsoft Corporation) C:\Windows\system32\SecureAssessmentHandlers.dll 2017-08-10 18:33 - 2017-03-04 10:24 - 002482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2017-08-10 18:33 - 2017-03-04 10:20 - 000128352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2017-08-10 18:33 - 2017-03-04 10:15 - 001000280 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2017-08-10 18:33 - 2017-03-04 10:09 - 000658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2017-08-10 18:33 - 2017-03-04 10:09 - 000396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2017-08-10 18:33 - 2017-03-04 10:04 - 001063472 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 001723560 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2017-08-10 18:33 - 2017-03-04 10:03 - 001473048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 001454512 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 001062480 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 000811416 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 000424616 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll 2017-08-10 18:33 - 2017-03-04 10:03 - 000382272 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe 2017-08-10 18:33 - 2017-03-04 09:36 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys 2017-08-10 18:33 - 2017-03-04 09:34 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll 2017-08-10 18:33 - 2017-03-04 09:33 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothDesktopHandlers.dll 2017-08-10 18:33 - 2017-03-04 09:32 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\MCCSEngineShared.dll 2017-08-10 18:33 - 2017-03-04 09:31 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll 2017-08-10 18:33 - 2017-03-04 09:31 - 000280064 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_WorkAccess.dll 2017-08-10 18:33 - 2017-03-04 09:31 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll 2017-08-10 18:33 - 2017-03-04 09:30 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2017-08-10 18:33 - 2017-03-04 09:30 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Flights.dll 2017-08-10 18:33 - 2017-03-04 09:30 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll 2017-08-10 18:33 - 2017-03-04 09:30 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll 2017-08-10 18:33 - 2017-03-04 09:29 - 001291264 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll 2017-08-10 18:33 - 2017-03-04 09:29 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2017-08-10 18:33 - 2017-03-04 09:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll 2017-08-10 18:33 - 2017-03-04 09:28 - 000741888 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll 2017-08-10 18:33 - 2017-03-04 09:28 - 000587776 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2017-08-10 18:33 - 2017-03-04 09:28 - 000556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll 2017-08-10 18:33 - 2017-03-04 09:28 - 000462848 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2017-08-10 18:33 - 2017-03-04 09:28 - 000394752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys 2017-08-10 18:33 - 2017-03-04 09:28 - 000264192 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll 2017-08-10 18:33 - 2017-03-04 09:27 - 000446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2017-08-10 18:33 - 2017-03-04 09:27 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2017-08-10 18:33 - 2017-03-04 09:27 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll 2017-08-10 18:33 - 2017-03-04 09:26 - 000643072 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl 2017-08-10 18:33 - 2017-03-04 09:26 - 000631296 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll 2017-08-10 18:33 - 2017-03-04 09:26 - 000383488 _____ (Microsoft Corporation) C:\Windows\system32\DavSyncProvider.dll 2017-08-10 18:33 - 2017-03-04 09:26 - 000366080 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2017-08-10 18:33 - 2017-03-04 09:26 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll 2017-08-10 18:33 - 2017-03-04 09:26 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll 2017-08-10 18:33 - 2017-03-04 09:24 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll 2017-08-10 18:33 - 2017-03-04 09:24 - 000495104 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll 2017-08-10 18:33 - 2017-03-04 09:23 - 000945152 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll 2017-08-10 18:33 - 2017-03-04 09:23 - 000820224 _____ (Microsoft Corporation) C:\Windows\system32\PrintRenderAPIHost.DLL 2017-08-10 18:33 - 2017-03-04 09:23 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll 2017-08-10 18:33 - 2017-03-04 09:23 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll 2017-08-10 18:33 - 2017-03-04 09:21 - 001937920 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe 2017-08-10 18:33 - 2017-03-04 09:21 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll 2017-08-10 18:33 - 2017-03-04 09:21 - 000347648 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll 2017-08-10 18:33 - 2017-03-04 09:19 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys 2017-08-10 18:33 - 2017-03-04 09:18 - 001762816 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll 2017-08-10 18:33 - 2017-03-04 09:18 - 001189376 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll 2017-08-10 18:33 - 2017-03-04 09:18 - 000320512 _____ (Microsoft Corporation) C:\Windows\regedit.exe 2017-08-10 18:33 - 2017-03-04 09:18 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe 2017-08-10 18:33 - 2017-03-04 09:17 - 007812096 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2017-08-10 18:33 - 2017-03-04 09:17 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2017-08-10 18:33 - 2017-03-04 09:16 - 000870400 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll 2017-08-10 18:33 - 2017-03-04 09:16 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll 2017-08-10 18:33 - 2017-03-04 09:15 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2017-08-10 18:33 - 2017-03-04 09:14 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll 2017-08-10 18:33 - 2017-03-04 09:13 - 000982528 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2017-08-10 18:33 - 2017-03-04 09:13 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll 2017-08-10 18:33 - 2017-03-04 09:12 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll 2017-08-10 18:33 - 2017-03-04 09:11 - 003441664 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll 2017-08-10 18:33 - 2017-03-04 09:11 - 002953216 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll 2017-08-10 18:33 - 2017-03-04 09:11 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2017-08-10 18:33 - 2017-03-04 09:10 - 001917440 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll 2017-08-10 18:33 - 2017-03-04 09:10 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2017-08-10 18:33 - 2017-03-04 09:10 - 000960000 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2017-08-10 18:33 - 2017-03-04 09:10 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll 2017-08-10 18:33 - 2017-03-04 09:10 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll 2017-08-10 18:33 - 2017-03-04 09:08 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll 2017-08-10 18:33 - 2017-03-04 09:08 - 000792576 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2017-08-10 18:33 - 2017-03-04 09:07 - 001792512 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2017-08-10 18:33 - 2017-03-04 09:06 - 003202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2017-08-10 18:33 - 2017-03-04 09:06 - 002820096 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll 2017-08-10 18:33 - 2017-03-04 09:06 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll 2017-08-10 18:33 - 2017-03-04 09:04 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll 2017-08-10 18:33 - 2017-03-04 09:02 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.SecureAssessment.dll 2017-08-10 18:33 - 2016-12-21 10:13 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll 2017-08-10 18:33 - 2016-12-21 10:12 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll 2017-08-10 18:33 - 2016-12-21 10:10 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll 2017-08-10 18:33 - 2016-12-21 10:09 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll 2017-08-10 18:33 - 2016-12-21 10:08 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2017-08-10 18:33 - 2016-12-14 07:42 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2017-08-10 18:33 - 2016-12-09 13:27 - 000172528 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2017-08-10 18:33 - 2016-12-09 12:45 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll 2017-08-10 18:33 - 2016-12-09 12:42 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2017-08-10 18:33 - 2016-12-09 12:20 - 000730624 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2017-08-10 18:33 - 2016-12-09 12:20 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll 2017-08-10 18:33 - 2016-12-09 12:19 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll 2017-08-10 18:33 - 2016-12-09 12:19 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll 2017-08-10 18:33 - 2016-12-09 12:19 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll 2017-08-10 18:33 - 2016-11-11 13:08 - 000142176 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll 2017-08-10 18:33 - 2016-11-11 12:56 - 000163752 _____ (Microsoft Corporation) C:\Windows\system32\RTWorkQ.dll 2017-08-10 18:33 - 2016-11-11 12:56 - 000126568 _____ (Microsoft Corporation) C:\Windows\system32\mfaudiocnv.dll 2017-08-10 18:33 - 2016-11-11 12:55 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2017-08-10 18:33 - 2016-11-11 12:27 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\NetCfgNotifyObjectHost.exe 2017-08-10 18:33 - 2016-11-11 12:27 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe 2017-08-10 18:33 - 2016-11-11 12:25 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll 2017-08-10 18:33 - 2016-11-11 12:25 - 000089600 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll 2017-08-10 18:33 - 2016-11-11 12:24 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2017-08-10 18:33 - 2016-11-11 12:23 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll 2017-08-10 18:33 - 2016-11-11 12:21 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll 2017-08-10 18:33 - 2016-11-11 12:20 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll 2017-08-10 18:33 - 2016-11-11 12:20 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll 2017-08-10 18:33 - 2016-11-11 12:20 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll 2017-08-10 18:33 - 2016-11-11 12:20 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll 2017-08-10 18:33 - 2016-11-11 12:18 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll 2017-08-10 18:33 - 2016-11-11 12:17 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll 2017-08-10 18:33 - 2016-11-11 12:16 - 001477632 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll 2017-08-10 18:33 - 2016-11-11 12:16 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll 2017-08-10 18:33 - 2016-11-11 12:15 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll 2017-08-10 18:33 - 2016-11-11 12:14 - 000615424 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll 2017-08-10 18:33 - 2016-11-11 12:14 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll 2017-08-10 18:33 - 2016-11-11 12:07 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2017-08-10 18:33 - 2016-11-11 12:06 - 003400192 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll 2017-08-10 18:33 - 2016-11-11 12:03 - 000905216 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2017-08-10 18:33 - 2016-11-11 12:02 - 000936448 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll 2017-08-10 18:33 - 2016-11-02 13:55 - 000048992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys 2017-08-10 18:33 - 2016-11-02 13:34 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2017-08-10 18:33 - 2016-11-02 13:31 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2017-08-10 18:33 - 2016-11-02 13:30 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll 2017-08-10 18:33 - 2016-11-02 13:29 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll 2017-08-10 18:33 - 2016-11-02 13:29 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll 2017-08-10 18:33 - 2016-11-02 13:28 - 000321024 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.dll 2017-08-10 18:33 - 2016-11-02 13:28 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll 2017-08-10 18:33 - 2016-11-02 13:19 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\NPSM.dll 2017-08-10 18:33 - 2016-10-15 07:21 - 000292872 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll 2017-08-10 18:33 - 2016-10-15 06:59 - 000130560 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2017-08-10 18:33 - 2016-10-15 06:59 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\stdole2.tlb 2017-08-10 18:33 - 2016-10-15 06:57 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll 2017-08-10 18:33 - 2016-10-15 06:56 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll 2017-08-10 18:33 - 2016-10-15 06:55 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll 2017-08-10 18:33 - 2016-10-15 06:50 - 000509440 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll 2017-08-10 18:33 - 2016-10-15 06:49 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe 2017-08-10 18:33 - 2016-10-15 06:47 - 000720896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll 2017-08-10 18:33 - 2016-10-15 06:46 - 000718848 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll 2017-08-10 18:33 - 2016-10-15 06:45 - 000702464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll 2017-08-10 18:33 - 2016-10-15 06:44 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe 2017-08-10 18:33 - 2016-10-15 06:36 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll 2017-08-10 18:33 - 2016-10-05 13:17 - 001322848 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll 2017-08-10 18:33 - 2016-10-05 12:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll 2017-08-10 18:33 - 2016-10-05 12:30 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2017-08-10 18:33 - 2016-10-05 12:29 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2017-08-10 18:33 - 2016-10-05 12:22 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll 2017-08-10 18:33 - 2016-09-15 20:29 - 000512416 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll 2017-08-10 18:33 - 2016-09-15 20:25 - 000280472 _____ (Microsoft Corporation) C:\Windows\system32\bdeunlock.exe 2017-08-10 18:33 - 2016-09-15 20:15 - 000649568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2017-08-10 18:33 - 2016-09-15 20:11 - 000862064 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2017-08-10 18:33 - 2016-09-15 20:11 - 000725664 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2017-08-10 18:33 - 2016-09-15 19:41 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\NfcRadioMedia.dll 2017-08-10 18:33 - 2016-09-15 19:40 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll 2017-08-10 18:33 - 2016-09-15 19:39 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll 2017-08-10 18:33 - 2016-09-15 19:38 - 000671232 _____ (Microsoft Corporation) C:\Windows\system32\NetworkCollectionAgent.dll 2017-08-10 18:33 - 2016-09-15 19:38 - 000573952 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrGidsHandler.dll 2017-08-10 18:33 - 2016-09-15 19:38 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll 2017-08-10 18:33 - 2016-09-15 19:36 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll 2017-08-10 18:33 - 2016-09-15 19:36 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll 2017-08-10 18:33 - 2016-09-15 19:35 - 000538112 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll 2017-08-10 18:33 - 2016-09-15 19:35 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll 2017-08-10 18:33 - 2016-09-15 19:35 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2017-08-10 18:33 - 2016-09-15 19:33 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll 2017-08-10 18:33 - 2016-09-15 19:32 - 001037312 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll 2017-08-10 18:33 - 2016-09-15 19:32 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2017-08-10 18:33 - 2016-09-15 19:31 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll 2017-08-10 18:33 - 2016-09-15 19:30 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\baaupdate.exe 2017-08-10 18:33 - 2016-09-15 19:28 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\fveprompt.exe 2017-08-10 18:33 - 2016-09-15 19:27 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll 2017-08-10 18:33 - 2016-09-15 19:27 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL 2017-08-10 18:33 - 2016-09-15 19:27 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe 2017-08-10 18:33 - 2016-09-15 19:27 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\fvenotify.exe 2017-08-10 18:33 - 2016-09-15 19:26 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe 2017-08-10 18:33 - 2016-09-15 19:26 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe 2017-08-10 18:33 - 2016-09-15 19:26 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\bdeui.dll 2017-08-10 18:33 - 2016-09-15 19:25 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundMediaPolicy.dll 2017-08-10 18:33 - 2016-09-07 08:33 - 000681304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys 2017-08-10 18:33 - 2016-09-07 08:24 - 000057400 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2017-08-10 18:33 - 2016-09-07 08:04 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosHost.dll 2017-08-10 18:33 - 2016-09-07 08:03 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\MosResource.dll 2017-08-10 18:33 - 2016-09-07 08:03 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MapControls.dll 2017-08-10 18:33 - 2016-09-07 08:03 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll 2017-08-10 18:33 - 2016-09-07 08:03 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosTrace.dll 2017-08-10 18:33 - 2016-09-07 08:02 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll 2017-08-10 18:33 - 2016-09-07 08:02 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\nativemap.dll 2017-08-10 18:33 - 2016-09-07 08:02 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvcProxy.dll 2017-08-10 18:33 - 2016-09-07 08:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2017-08-10 18:33 - 2016-09-07 08:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\MapControlStringsRes.dll 2017-08-10 18:33 - 2016-09-07 08:00 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mapstoasttask.dll 2017-08-10 18:33 - 2016-09-07 07:59 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll 2017-08-10 18:33 - 2016-09-07 07:55 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll 2017-08-10 18:33 - 2016-09-07 07:54 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\NmaDirect.dll 2017-08-10 18:33 - 2016-08-20 08:22 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll 2017-08-10 18:33 - 2016-08-20 08:21 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll 2017-08-10 18:33 - 2016-08-20 08:20 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll 2017-08-10 18:33 - 2016-08-20 08:19 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll 2017-08-10 18:33 - 2016-08-20 08:18 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll 2017-08-10 18:33 - 2016-08-20 08:18 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe 2017-08-10 18:33 - 2016-08-20 08:17 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerSvc.dll 2017-08-10 18:33 - 2016-08-20 08:15 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll 2017-08-10 18:33 - 2016-08-20 08:14 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll 2017-08-10 18:33 - 2016-08-06 07:29 - 000199008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys 2017-08-10 18:33 - 2016-08-06 07:26 - 001176664 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2017-08-10 18:33 - 2016-08-06 07:13 - 000044472 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2017-08-10 18:33 - 2016-08-06 06:48 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2017-08-10 18:33 - 2016-08-06 06:48 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2017-08-10 18:33 - 2016-08-06 06:48 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2017-08-10 18:33 - 2016-08-06 06:47 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2017-08-10 18:33 - 2016-08-06 06:47 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll 2017-08-10 18:33 - 2016-08-06 06:47 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2017-08-10 18:33 - 2016-08-06 06:47 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2017-08-10 18:33 - 2016-08-06 06:46 - 009260032 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2017-08-10 18:33 - 2016-08-06 06:46 - 000094720 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe 2017-08-10 18:33 - 2016-08-06 06:45 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2017-08-10 18:33 - 2016-08-06 06:44 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll 2017-08-10 18:33 - 2016-08-06 06:43 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll 2017-08-10 18:33 - 2016-08-06 06:41 - 000412160 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2017-08-10 18:33 - 2016-08-06 06:39 - 000298496 _____ (Microsoft Corporation) C:\Windows\system32\wifiprofilessettinghandler.dll 2017-08-10 18:33 - 2016-08-06 06:36 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\das.dll 2017-08-10 18:33 - 2016-08-06 06:19 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll 2017-08-10 18:33 - 2016-08-05 12:14 - 001066328 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll 2017-08-10 18:33 - 2016-08-05 12:05 - 000665768 _____ (Microsoft Corporation) C:\Windows\system32\GenValObj.exe 2017-08-10 18:33 - 2016-08-05 11:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll 2017-08-10 18:33 - 2016-08-05 11:22 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll 2017-08-10 18:33 - 2016-08-05 11:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll 2017-08-10 18:33 - 2016-08-02 11:21 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll 2017-08-10 18:33 - 2016-08-02 11:13 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2017-08-10 18:32 - 2017-08-01 22:29 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2017-08-10 18:32 - 2017-08-01 22:21 - 000295264 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2017-08-10 18:32 - 2017-08-01 22:21 - 000124072 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2017-08-10 18:32 - 2017-08-01 22:21 - 000026976 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe 2017-08-10 18:32 - 2017-08-01 22:20 - 000684344 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2017-08-10 18:32 - 2017-08-01 22:20 - 000383776 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2017-08-10 18:32 - 2017-08-01 22:20 - 000144736 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2017-08-10 18:32 - 2017-08-01 22:17 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll 2017-08-10 18:32 - 2017-08-01 22:13 - 001102176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2017-08-10 18:32 - 2017-08-01 22:01 - 007218176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2017-08-10 18:32 - 2017-08-01 21:50 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll 2017-08-10 18:32 - 2017-08-01 21:46 - 000094720 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll 2017-08-10 18:32 - 2017-08-01 21:45 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll 2017-08-10 18:32 - 2017-08-01 21:45 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE 2017-08-10 18:32 - 2017-08-01 21:44 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2017-08-10 18:32 - 2017-08-01 21:43 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll 2017-08-10 18:32 - 2017-08-01 21:43 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll 2017-08-10 18:32 - 2017-08-01 21:41 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll 2017-08-10 18:32 - 2017-08-01 21:39 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll 2017-08-10 18:32 - 2017-08-01 21:39 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll 2017-08-10 18:32 - 2017-08-01 21:38 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll 2017-08-10 18:32 - 2017-08-01 21:36 - 023677440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2017-08-10 18:32 - 2017-08-01 21:34 - 001837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2017-08-10 18:32 - 2017-08-01 21:32 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll 2017-08-10 18:32 - 2017-08-01 21:28 - 002895360 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2017-08-10 18:32 - 2017-08-01 21:23 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2017-08-10 18:32 - 2017-07-12 09:16 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2017-08-10 18:32 - 2017-07-12 08:55 - 004674872 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2017-08-10 18:32 - 2017-07-12 08:25 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys 2017-08-10 18:32 - 2017-07-12 08:24 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll 2017-08-10 18:32 - 2017-07-12 08:23 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\container.dll 2017-08-10 18:32 - 2017-07-12 08:23 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\frprov.dll 2017-08-10 18:32 - 2017-07-12 08:22 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll 2017-08-10 18:32 - 2017-07-12 08:21 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll 2017-08-10 18:32 - 2017-07-12 08:21 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll 2017-08-10 18:32 - 2017-07-12 08:20 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll 2017-08-10 18:32 - 2017-07-12 08:19 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll 2017-08-10 18:32 - 2017-07-12 08:16 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll 2017-08-10 18:32 - 2017-07-12 08:15 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2017-08-10 18:32 - 2017-07-12 08:12 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll 2017-08-10 18:32 - 2017-07-12 08:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll 2017-08-10 18:32 - 2017-07-12 08:10 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe 2017-08-10 18:32 - 2017-07-12 08:07 - 000954880 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe 2017-08-10 18:32 - 2017-07-12 08:07 - 000629248 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll 2017-08-10 18:32 - 2017-07-12 07:58 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll 2017-08-10 18:32 - 2017-07-07 09:28 - 002096640 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2017-08-10 18:32 - 2017-07-07 09:25 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2017-08-10 18:32 - 2017-07-07 09:24 - 002217472 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll 2017-08-10 18:32 - 2017-07-07 09:24 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2017-08-10 18:32 - 2017-06-21 10:54 - 000603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll 2017-08-10 18:32 - 2017-06-21 10:51 - 000434528 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2017-08-10 18:32 - 2017-06-21 10:48 - 002681200 _____ C:\Windows\system32\CoreUIComponents.dll 2017-08-10 18:32 - 2017-06-21 10:40 - 001069720 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2017-08-10 18:32 - 2017-06-21 10:40 - 000224096 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll 2017-08-10 18:32 - 2017-06-21 10:37 - 001369240 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll 2017-08-10 18:32 - 2017-06-21 10:35 - 002915704 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2017-08-10 18:32 - 2017-06-21 10:35 - 001267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2017-08-10 18:32 - 2017-06-21 10:31 - 001277824 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2017-08-10 18:32 - 2017-06-21 10:31 - 000160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll 2017-08-10 18:32 - 2017-06-21 10:04 - 001631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll 2017-08-10 18:32 - 2017-06-21 10:03 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll 2017-08-10 18:32 - 2017-06-21 10:01 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll 2017-08-10 18:32 - 2017-06-21 10:00 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll 2017-08-10 18:32 - 2017-06-21 09:59 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll 2017-08-10 18:32 - 2017-06-21 09:58 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll 2017-08-10 18:32 - 2017-06-21 09:58 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll 2017-08-10 18:32 - 2017-06-21 09:58 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2017-08-10 18:32 - 2017-06-21 09:57 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll 2017-08-10 18:32 - 2017-06-21 09:57 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\credprovhost.dll 2017-08-10 18:32 - 2017-06-21 09:57 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll 2017-08-10 18:32 - 2017-06-21 09:57 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll 2017-08-10 18:32 - 2017-06-21 09:56 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll 2017-08-10 18:32 - 2017-06-21 09:56 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll 2017-08-10 18:32 - 2017-06-21 09:55 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll 2017-08-10 18:32 - 2017-06-21 09:54 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll 2017-08-10 18:32 - 2017-06-21 09:54 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll 2017-08-10 18:32 - 2017-06-21 09:54 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll 2017-08-10 18:32 - 2017-06-21 09:53 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll 2017-08-10 18:32 - 2017-06-21 09:52 - 017198592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2017-08-10 18:32 - 2017-06-21 09:52 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll 2017-08-10 18:32 - 2017-06-21 09:50 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll 2017-08-10 18:32 - 2017-06-21 09:49 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll 2017-08-10 18:32 - 2017-06-21 09:48 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll 2017-08-10 18:32 - 2017-06-21 09:47 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll 2017-08-10 18:32 - 2017-06-21 09:46 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\uReFSv1.dll 2017-08-10 18:32 - 2017-06-21 09:46 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll 2017-08-10 18:32 - 2017-06-21 09:43 - 000961536 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll 2017-08-10 18:32 - 2017-06-21 09:42 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll 2017-08-10 18:32 - 2017-06-21 09:42 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll 2017-08-10 18:32 - 2017-06-21 09:41 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll 2017-08-10 18:32 - 2017-06-21 09:40 - 004474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2017-08-10 18:32 - 2017-06-21 09:40 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2017-08-10 18:32 - 2017-06-21 09:40 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe 2017-08-10 18:32 - 2017-06-21 09:40 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll 2017-08-10 18:32 - 2017-06-21 09:38 - 005611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2017-08-10 18:32 - 2017-06-21 09:38 - 001275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll 2017-08-10 18:32 - 2017-06-21 09:36 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2017-08-10 18:32 - 2017-06-03 13:14 - 000379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2017-08-10 18:32 - 2017-06-03 12:48 - 001112416 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll 2017-08-10 18:32 - 2017-06-03 12:40 - 001566552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll 2017-08-10 18:32 - 2017-06-03 12:40 - 000628552 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2017-08-10 18:32 - 2017-06-03 12:16 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2017-08-10 18:32 - 2017-06-03 12:14 - 000045056 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2017-08-10 18:32 - 2017-06-03 12:10 - 000252928 _____ (Microsoft Corporation) C:\Windows\system32\edputil.dll 2017-08-10 18:32 - 2017-06-03 12:07 - 000255488 _____ (Microsoft Corporation) C:\Windows\system32\HNetCfgClient.dll 2017-08-10 18:32 - 2017-06-03 12:06 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll 2017-08-10 18:32 - 2017-06-03 12:01 - 000856064 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll 2017-08-10 18:32 - 2017-06-03 11:52 - 000975872 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe 2017-08-10 18:32 - 2017-06-03 11:49 - 002475520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2017-08-10 18:32 - 2017-06-03 11:49 - 001845248 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2017-08-10 18:32 - 2017-06-03 11:49 - 000351744 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll 2017-08-10 18:32 - 2017-06-03 09:08 - 000080078 _____ C:\Windows\system32\normidna.nls 2017-08-10 18:32 - 2017-04-28 03:44 - 000062816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys 2017-08-10 18:32 - 2017-04-28 03:38 - 001852200 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2017-08-10 18:32 - 2017-04-28 03:03 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\BthTelemetry.dll 2017-08-10 18:32 - 2017-04-28 03:01 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll 2017-08-10 18:32 - 2017-04-28 02:59 - 000635904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll 2017-08-10 18:32 - 2017-04-28 02:59 - 000567296 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2017-08-10 18:32 - 2017-04-28 02:58 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUX.dll 2017-08-10 18:32 - 2017-04-28 02:57 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll 2017-08-10 18:32 - 2017-04-28 02:56 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll 2017-08-10 18:32 - 2017-04-28 02:55 - 002084352 _____ (Microsoft Corporation) C:\Windows\system32\DeviceFlows.DataModel.dll 2017-08-10 18:32 - 2017-04-28 02:55 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl 2017-08-10 18:32 - 2017-04-28 02:54 - 000339456 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV2.dll 2017-08-10 18:32 - 2017-04-28 02:53 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll 2017-08-10 18:32 - 2017-04-28 02:46 - 001547264 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe 2017-08-10 18:32 - 2017-04-28 02:46 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2017-08-10 18:32 - 2017-04-28 02:46 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\catsrvps.dll 2017-08-10 18:32 - 2017-04-28 02:45 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll 2017-08-10 18:32 - 2017-04-28 02:43 - 000600576 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2017-08-10 18:32 - 2017-04-28 02:41 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2017-08-10 18:32 - 2017-04-28 02:40 - 000770560 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2017-08-10 18:32 - 2017-04-28 02:37 - 002286592 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2017-08-10 18:32 - 2017-03-28 08:37 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\DdcWnsListener.dll 2017-08-10 18:32 - 2017-03-28 08:34 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe 2017-08-10 18:32 - 2017-03-28 08:31 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll 2017-08-10 18:32 - 2017-03-28 08:30 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\dafpos.dll 2017-08-10 18:32 - 2017-03-28 08:21 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\CastLaunch.dll 2017-08-10 18:32 - 2017-03-28 08:19 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\flvprophandler.dll 2017-08-10 18:32 - 2017-03-28 08:17 - 005114368 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll 2017-08-10 18:32 - 2017-03-28 08:07 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\FontProvider.dll 2017-08-10 18:32 - 2017-03-28 08:05 - 001633792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2017-08-10 18:32 - 2017-03-16 07:47 - 000038768 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll 2017-08-10 18:32 - 2017-03-04 10:24 - 001051112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2017-08-10 18:32 - 2017-03-04 10:24 - 000894096 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2017-08-10 18:32 - 2017-03-04 10:22 - 001354312 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2017-08-10 18:32 - 2017-03-04 10:22 - 001172984 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2017-08-10 18:32 - 2017-03-04 10:20 - 000379744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2017-08-10 18:32 - 2017-03-04 10:15 - 000063328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys 2017-08-10 18:32 - 2017-03-04 10:13 - 000635456 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2017-08-10 18:32 - 2017-03-04 10:11 - 000266544 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll 2017-08-10 18:32 - 2017-03-04 10:10 - 002828384 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2017-08-10 18:32 - 2017-03-04 10:09 - 000635864 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2017-08-10 18:32 - 2017-03-04 10:03 - 000755648 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2017-08-10 18:32 - 2017-03-04 10:03 - 000523712 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll 2017-08-10 18:32 - 2017-03-04 10:01 - 000128648 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2017-08-10 18:32 - 2017-03-04 09:35 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll 2017-08-10 18:32 - 2017-03-04 09:34 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\dggpext.dll 2017-08-10 18:32 - 2017-03-04 09:31 - 000266240 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2017-08-10 18:32 - 2017-03-04 09:30 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll 2017-08-10 18:32 - 2017-03-04 09:29 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll 2017-08-10 18:32 - 2017-03-04 09:28 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll 2017-08-10 18:32 - 2017-03-04 09:28 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll 2017-08-10 18:32 - 2017-03-04 09:27 - 000460288 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll 2017-08-10 18:32 - 2017-03-04 09:27 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll 2017-08-10 18:32 - 2017-03-04 09:26 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll 2017-08-10 18:32 - 2017-03-04 09:26 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll 2017-08-10 18:32 - 2017-03-04 09:24 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll 2017-08-10 18:32 - 2017-03-04 09:23 - 003753984 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll 2017-08-10 18:32 - 2017-03-04 09:19 - 001639424 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2017-08-10 18:32 - 2017-03-04 09:18 - 001227264 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2017-08-10 18:32 - 2017-03-04 09:17 - 000730624 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2017-08-10 18:32 - 2017-03-04 09:17 - 000440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll 2017-08-10 18:32 - 2017-03-04 09:16 - 000654336 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll 2017-08-10 18:32 - 2017-03-04 09:16 - 000583168 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2017-08-10 18:32 - 2017-03-04 09:16 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll 2017-08-10 18:32 - 2017-03-04 09:15 - 001345024 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll 2017-08-10 18:32 - 2017-03-04 09:13 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2017-08-10 18:32 - 2017-03-04 09:13 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll 2017-08-10 18:32 - 2017-03-04 09:11 - 002611200 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll 2017-08-10 18:32 - 2017-03-04 09:11 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll 2017-08-10 18:32 - 2017-03-04 09:11 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2017-08-10 18:32 - 2017-03-04 09:10 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe 2017-08-10 18:32 - 2017-03-04 09:08 - 001714688 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll 2017-08-10 18:32 - 2017-03-04 09:08 - 000629248 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll 2017-08-10 18:32 - 2016-12-21 11:08 - 000245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll 2017-08-10 18:32 - 2016-12-21 09:59 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2017-08-10 18:32 - 2016-12-21 09:57 - 000462336 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll 2017-08-10 18:32 - 2016-12-14 07:42 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll 2017-08-10 18:32 - 2016-12-14 07:40 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll 2017-08-10 18:32 - 2016-12-14 07:39 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll 2017-08-10 18:32 - 2016-12-14 07:24 - 001005568 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll 2017-08-10 18:32 - 2016-12-09 13:20 - 002677544 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2017-08-10 18:32 - 2016-12-09 13:19 - 000168424 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2017-08-10 18:32 - 2016-12-09 12:41 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll 2017-08-10 18:32 - 2016-12-09 12:20 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe 2017-08-10 18:32 - 2016-11-11 13:13 - 000352096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2017-08-10 18:32 - 2016-11-11 12:56 - 000187520 _____ (Microsoft Corporation) C:\Windows\system32\CloudStorageWizard.exe 2017-08-10 18:32 - 2016-11-11 12:28 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\CbtBackgroundManagerPolicy.dll 2017-08-10 18:32 - 2016-11-11 12:26 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\ReportingCSP.dll 2017-08-10 18:32 - 2016-11-11 12:25 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll 2017-08-10 18:32 - 2016-11-11 12:23 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\EAMProgressHandler.dll 2017-08-10 18:32 - 2016-11-11 12:20 - 000339456 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll 2017-08-10 18:32 - 2016-11-11 12:20 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe 2017-08-10 18:32 - 2016-11-11 12:19 - 000411648 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll 2017-08-10 18:32 - 2016-11-11 12:19 - 000285696 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll 2017-08-10 18:32 - 2016-11-11 12:13 - 000306176 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll 2017-08-10 18:32 - 2016-11-11 12:12 - 000870912 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll 2017-08-10 18:32 - 2016-11-11 12:09 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll 2017-08-10 18:32 - 2016-11-11 12:07 - 000991232 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll 2017-08-10 18:32 - 2016-11-11 12:04 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2017-08-10 18:32 - 2016-11-02 14:02 - 000238056 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll 2017-08-10 18:32 - 2016-11-02 13:56 - 001609920 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2017-08-10 18:32 - 2016-11-02 13:32 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\efsext.dll 2017-08-10 18:32 - 2016-11-02 13:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe 2017-08-10 18:32 - 2016-11-02 13:31 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll 2017-08-10 18:32 - 2016-11-02 13:28 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll 2017-08-10 18:32 - 2016-11-02 13:28 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll 2017-08-10 18:32 - 2016-11-02 13:28 - 000274432 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll 2017-08-10 18:32 - 2016-11-02 13:24 - 000940032 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll 2017-08-10 18:32 - 2016-11-02 13:23 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys 2017-08-10 18:32 - 2016-11-02 13:19 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\chartv.dll 2017-08-10 18:32 - 2016-11-02 13:18 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll 2017-08-10 18:32 - 2016-11-02 13:16 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll 2017-08-10 18:32 - 2016-11-02 13:13 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll 2017-08-10 18:32 - 2016-10-15 07:48 - 000498952 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll 2017-08-10 18:32 - 2016-10-15 07:29 - 000908640 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll 2017-08-10 18:32 - 2016-10-15 07:29 - 000079200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys 2017-08-10 18:32 - 2016-10-15 06:59 - 000272384 _____ (Microsoft Corporation) C:\Windows\system32\mfksproxy.dll 2017-08-10 18:32 - 2016-10-15 06:56 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\esentutl.exe 2017-08-10 18:32 - 2016-10-15 06:56 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll 2017-08-10 18:32 - 2016-10-15 06:54 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll 2017-08-10 18:32 - 2016-10-15 06:52 - 000163328 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll 2017-08-10 18:32 - 2016-10-15 06:45 - 001790464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll 2017-08-10 18:32 - 2016-10-15 06:43 - 000574976 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll 2017-08-10 18:32 - 2016-10-15 06:43 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll 2017-08-10 18:32 - 2016-10-15 06:37 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\cmifw.dll 2017-08-10 18:32 - 2016-10-15 06:36 - 000347136 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll 2017-08-10 18:32 - 2016-10-15 06:36 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll 2017-08-10 18:32 - 2016-10-15 06:35 - 003054080 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2017-08-10 18:32 - 2016-10-05 12:33 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll 2017-08-10 18:32 - 2016-10-05 12:31 - 000425472 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe 2017-08-10 18:32 - 2016-09-15 20:29 - 000023392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cmimcext.sys 2017-08-10 18:32 - 2016-09-15 20:26 - 000090400 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2017-08-10 18:32 - 2016-09-15 20:16 - 000206096 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2017-08-10 18:32 - 2016-09-15 20:14 - 000119648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys 2017-08-10 18:32 - 2016-09-15 20:07 - 000128864 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2017-08-10 18:32 - 2016-09-15 19:37 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll 2017-08-10 18:32 - 2016-09-15 19:36 - 000166912 _____ (Microsoft Corporation) C:\Windows\system32\credprovslegacy.dll 2017-08-10 18:32 - 2016-09-15 19:35 - 000280064 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll 2017-08-10 18:32 - 2016-09-15 19:27 - 000250368 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll 2017-08-10 18:32 - 2016-09-15 19:22 - 001709056 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2017-08-10 18:32 - 2016-09-07 08:00 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2017-08-10 18:32 - 2016-09-07 07:59 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll 2017-08-10 18:32 - 2016-09-07 07:56 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2017-08-10 18:32 - 2016-09-07 07:56 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2017-08-10 18:32 - 2016-09-07 07:55 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2017-08-10 18:32 - 2016-09-07 07:53 - 000302592 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2017-08-10 18:32 - 2016-09-07 07:43 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2017-08-10 18:32 - 2016-09-07 07:33 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2017-08-10 18:32 - 2016-08-27 07:44 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\encapi.dll 2017-08-10 18:32 - 2016-08-20 08:21 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL 2017-08-10 18:32 - 2016-08-20 08:21 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\c_GSM7.DLL 2017-08-10 18:32 - 2016-08-20 08:20 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL 2017-08-10 18:32 - 2016-08-19 04:33 - 000162850 _____ C:\Windows\system32\C_932.NLS 2017-08-10 18:32 - 2016-08-06 06:29 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2017-08-10 18:32 - 2016-07-22 04:25 - 000389000 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll 2017-08-10 18:31 - 2017-08-01 22:21 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll 2017-08-10 18:31 - 2017-08-01 22:20 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2017-08-10 18:31 - 2017-08-01 22:20 - 000079712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys 2017-08-10 18:31 - 2017-08-01 21:52 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys 2017-08-10 18:31 - 2017-08-01 21:47 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll 2017-08-10 18:31 - 2017-08-01 21:47 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll 2017-08-10 18:31 - 2017-08-01 21:46 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2017-08-10 18:31 - 2017-08-01 21:46 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2017-08-10 18:31 - 2017-08-01 21:36 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll 2017-08-10 18:31 - 2017-08-01 21:33 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll 2017-08-10 18:31 - 2017-08-01 21:27 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll 2017-08-10 18:31 - 2017-07-12 09:15 - 000101216 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2017-08-10 18:31 - 2017-07-12 09:01 - 000715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys 2017-08-10 18:31 - 2017-07-12 09:00 - 000095584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys 2017-08-10 18:31 - 2017-07-12 08:59 - 001100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe 2017-08-10 18:31 - 2017-07-12 08:59 - 000989024 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe 2017-08-10 18:31 - 2017-07-12 08:59 - 000947040 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi 2017-08-10 18:31 - 2017-07-12 08:56 - 000277856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2017-08-10 18:31 - 2017-07-12 08:21 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthLEEnum.sys 2017-08-10 18:31 - 2017-07-12 08:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll 2017-08-10 18:31 - 2017-07-12 08:12 - 000970240 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe 2017-08-10 18:31 - 2017-07-12 08:06 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll 2017-08-10 18:31 - 2017-07-12 08:03 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll 2017-08-10 18:31 - 2017-07-12 08:01 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2017-08-10 18:31 - 2017-07-07 09:47 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys 2017-08-10 18:31 - 2017-07-07 09:28 - 000927744 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2017-08-10 18:31 - 2017-06-21 10:56 - 001405280 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll 2017-08-10 18:31 - 2017-06-21 10:55 - 002170720 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 001669984 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000822624 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe 2017-08-10 18:31 - 2017-06-21 10:54 - 000813408 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000758624 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000704352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000696160 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000565088 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll 2017-08-10 18:31 - 2017-06-21 10:54 - 000406368 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll 2017-08-10 18:31 - 2017-06-21 10:47 - 000764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll 2017-08-10 18:31 - 2017-06-21 10:36 - 000129888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2017-08-10 18:31 - 2017-06-21 09:57 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\XamlTileRender.dll 2017-08-10 18:31 - 2017-06-21 09:56 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll 2017-08-10 18:31 - 2017-06-21 09:53 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll 2017-08-10 18:31 - 2017-06-21 09:52 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll 2017-08-10 18:31 - 2017-06-21 09:52 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll 2017-08-10 18:31 - 2017-06-21 09:51 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll 2017-08-10 18:31 - 2017-06-21 09:47 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll 2017-08-10 18:31 - 2017-06-21 09:41 - 001021440 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll 2017-08-10 18:31 - 2017-06-03 13:16 - 000279904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2017-08-10 18:31 - 2017-06-03 12:54 - 000187232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2017-08-10 18:31 - 2017-06-03 12:50 - 000381792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2017-08-10 18:31 - 2017-06-03 12:39 - 000455520 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe 2017-08-10 18:31 - 2017-06-03 12:15 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys 2017-08-10 18:31 - 2017-04-28 03:02 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2017-08-10 18:31 - 2017-04-28 03:00 - 000120832 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll 2017-08-10 18:31 - 2017-04-28 02:59 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2017-08-10 18:31 - 2017-04-28 02:58 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll 2017-08-10 18:31 - 2017-04-28 02:57 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll 2017-08-10 18:31 - 2017-04-28 02:54 - 000967680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2017-08-10 18:31 - 2017-04-28 02:50 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\adsnt.dll 2017-08-10 18:31 - 2017-04-28 02:48 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2017-08-10 18:31 - 2017-04-28 02:47 - 000942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2017-08-10 18:31 - 2017-04-28 02:41 - 000828416 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2017-08-10 18:31 - 2017-04-28 02:37 - 000881664 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2017-08-10 18:31 - 2017-03-28 09:10 - 000178528 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll 2017-08-10 18:31 - 2017-03-28 08:36 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicDisplay.sys 2017-08-10 18:31 - 2017-03-28 08:08 - 003542016 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2017-08-10 18:31 - 2017-03-04 10:35 - 000590952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2017-08-10 18:31 - 2017-03-04 10:24 - 000090976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys 2017-08-10 18:31 - 2017-03-04 10:07 - 000811872 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe 2017-08-10 18:31 - 2017-03-04 10:07 - 000110944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys 2017-08-10 18:31 - 2017-03-04 09:57 - 000372432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll 2017-08-10 18:31 - 2017-03-04 09:34 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys 2017-08-10 18:31 - 2017-03-04 09:33 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll 2017-08-10 18:31 - 2017-03-04 09:28 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll 2017-08-10 18:31 - 2017-03-04 09:20 - 000203776 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll 2017-08-10 18:31 - 2016-12-21 09:54 - 005511680 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll 2017-08-10 18:31 - 2016-12-14 08:33 - 001356864 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe 2017-08-10 18:31 - 2016-12-14 08:33 - 001054048 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll 2017-08-10 18:31 - 2016-12-14 08:33 - 000992096 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll 2017-08-10 18:31 - 2016-12-14 08:33 - 000779616 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll 2017-08-10 18:31 - 2016-12-14 08:33 - 000513376 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll 2017-08-10 18:31 - 2016-12-14 08:33 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\AppVShNotify.exe 2017-08-10 18:31 - 2016-12-14 08:33 - 000190816 _____ (Microsoft Corporation) C:\Windows\system32\AppVDllSurrogate.exe 2017-08-10 18:31 - 2016-12-14 08:18 - 000335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2017-08-10 18:31 - 2016-12-14 08:14 - 000418952 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2017-08-10 18:31 - 2016-12-14 08:14 - 000089416 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll 2017-08-10 18:31 - 2016-12-09 12:37 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll 2017-08-10 18:31 - 2016-11-11 13:00 - 000219488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys 2017-08-10 18:31 - 2016-11-11 12:26 - 000163840 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll 2017-08-10 18:31 - 2016-11-11 12:25 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRHelper.dll 2017-08-10 18:31 - 2016-11-11 12:24 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll 2017-08-10 18:31 - 2016-11-11 12:24 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll 2017-08-10 18:31 - 2016-11-11 12:22 - 000143360 _____ (Microsoft Corporation) C:\Windows\system32\EDPCleanup.exe 2017-08-10 18:31 - 2016-11-11 12:19 - 000620544 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe 2017-08-10 18:31 - 2016-11-11 12:19 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll 2017-08-10 18:31 - 2016-11-11 12:07 - 001691136 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2017-08-10 18:31 - 2016-11-02 14:00 - 000534096 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2017-08-10 18:31 - 2016-11-02 13:23 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetailsUpdate.dll 2017-08-10 18:31 - 2016-10-15 07:38 - 000500064 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2017-08-10 18:31 - 2016-10-15 06:56 - 000219648 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll 2017-08-10 18:31 - 2016-10-15 06:55 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2017-08-10 18:31 - 2016-10-15 06:51 - 000429568 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll 2017-08-10 18:31 - 2016-10-15 06:39 - 000631296 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll 2017-08-10 18:31 - 2016-10-15 06:31 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys 2017-08-10 18:31 - 2016-10-05 13:09 - 000064352 _____ (Avago Technologies) C:\Windows\system32\Drivers\MegaSas2i.sys 2017-08-10 18:31 - 2016-10-05 12:24 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll 2017-08-10 18:31 - 2016-09-15 20:29 - 000169056 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll 2017-08-10 18:31 - 2016-09-15 20:29 - 000127328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys 2017-08-10 18:31 - 2016-09-15 19:43 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys 2017-08-10 18:31 - 2016-09-15 19:42 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys 2017-08-10 18:31 - 2016-09-15 19:38 - 000427008 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll 2017-08-10 18:31 - 2016-09-15 19:35 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll 2017-08-10 18:31 - 2016-09-15 19:35 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\rshx32.dll 2017-08-10 18:31 - 2016-09-07 08:29 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\EhStorTcgDrv.sys 2017-08-10 18:31 - 2016-09-07 07:39 - 003116544 _____ (Microsoft Corporation) C:\Windows\system32\MSAJApi.dll 2017-08-10 18:31 - 2016-08-20 08:20 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys 2017-08-10 18:31 - 2016-08-20 08:18 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys 2017-08-10 18:31 - 2016-08-20 08:15 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2017-08-10 18:31 - 2016-08-06 07:16 - 000073568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys 2017-08-10 18:31 - 2016-08-06 07:16 - 000020320 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll 2017-08-10 18:31 - 2016-08-06 06:47 - 000038400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2017-08-10 18:31 - 2016-08-06 06:46 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2017-08-10 18:30 - 2016-09-10 16:21 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\capimg.sys 2017-08-10 17:44 - 2016-12-21 10:08 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2017-08-10 17:44 - 2016-12-21 07:44 - 000120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2017-08-10 17:43 - 2017-06-03 13:50 - 000192856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 001564512 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 001214816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000629088 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000544096 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000335712 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000334176 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000233824 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2017-08-10 17:43 - 2017-06-03 13:14 - 000096608 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2017-08-10 17:43 - 2017-06-03 13:14 - 000034648 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe 2017-08-10 17:00 - 2017-06-03 12:15 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll 2017-08-10 17:00 - 2017-04-28 02:56 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll 2017-08-10 17:00 - 2017-03-28 08:42 - 000051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll 2017-08-10 17:00 - 2017-03-04 09:36 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll 2017-08-10 17:00 - 2016-12-14 07:40 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll 2017-08-04 02:20 - 2017-08-04 02:18 - 000565416 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2017-08-03 03:29 - 2017-08-03 03:29 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Macromedia 2017-08-03 03:28 - 2017-08-30 17:38 - 000000000 ____D C:\KMPlayer 2017-08-03 03:28 - 2017-08-03 03:28 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer 2017-08-03 03:06 - 2017-08-03 03:06 - 000004608 _____ C:\Windows\SECOH-QAD.exe 2017-08-03 03:06 - 2017-08-03 03:06 - 000003584 _____ C:\Windows\SECOH-QAD.dll 2017-08-03 03:04 - 2017-08-03 03:04 - 000000712 _____ C:\Users\CrossX\Desktop\Download.lnk 2017-08-03 03:03 - 2017-08-03 03:03 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\WinRAR 2017-08-03 03:03 - 2017-08-03 03:03 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-03 03:03 - 2017-08-03 03:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-03 03:03 - 2017-08-03 03:03 - 000000000 ____D C:\Program Files\WinRAR 2017-08-03 02:59 - 2017-08-31 03:00 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\BitTorrent 2017-08-03 02:59 - 2017-08-03 02:59 - 000000897 _____ C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2017-08-03 02:55 - 2017-01-20 04:15 - 006625792 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtwlane.sys 2017-08-03 02:55 - 2017-01-20 04:15 - 001156096 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll 2017-08-03 02:55 - 2017-01-20 00:12 - 000022454 _____ C:\Windows\system32\Drivers\rtldata.txt 2017-08-03 02:49 - 2017-08-03 02:49 - 000003160 _____ C:\Windows\System32\Tasks\StartCN 2017-08-03 02:49 - 2017-08-03 02:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2017-08-03 02:49 - 2017-08-03 02:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard 2017-08-03 02:48 - 2017-08-03 02:48 - 000000000 ____D C:\Program Files (x86)\AMD 2017-08-03 02:44 - 2017-08-03 02:44 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\ATI 2017-08-03 02:44 - 2017-08-03 02:44 - 000000000 ____D C:\Users\CrossX\AppData\Local\ATI 2017-08-03 02:44 - 2017-08-03 02:44 - 000000000 ____D C:\ProgramData\ATI 2017-08-03 02:44 - 2017-08-03 02:44 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2017-08-03 02:44 - 2017-06-15 22:32 - 000541984 _____ C:\Windows\system32\vulkan-1.dll 2017-08-03 02:44 - 2017-06-15 22:32 - 000525088 _____ C:\Windows\SysWOW64\vulkan-1.dll 2017-08-03 02:44 - 2017-06-15 22:32 - 000254240 _____ C:\Windows\system32\vulkaninfo.exe 2017-08-03 02:44 - 2017-06-15 22:32 - 000233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2017-08-03 02:43 - 2017-07-27 02:06 - 000555432 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000540072 _____ C:\Windows\system32\GameManager64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000486824 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000374184 _____ C:\Windows\SysWOW64\GameManager32.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000285096 _____ C:\Windows\system32\hsa-thunk64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000250792 _____ C:\Windows\SysWOW64\hsa-thunk.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000200104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000178600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000159656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000144296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000053664 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2017-08-03 02:43 - 2017-07-27 02:06 - 000051112 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000933288 _____ (AMD) C:\Windows\system32\coinst_17.30.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000789928 _____ (AMD) C:\Windows\system32\atieclxx.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000561064 _____ C:\Windows\system32\dgtrayicon.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000560552 _____ (AMD) C:\Windows\system32\atiesrxx.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000492456 _____ C:\Windows\system32\atieah64.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000378280 _____ C:\Windows\system32\clinfo.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000342952 _____ C:\Windows\SysWOW64\atieah32.exe 2017-08-03 02:43 - 2017-07-27 02:05 - 000253864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000212392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000176552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000142248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000133032 _____ (AMD) C:\Windows\system32\atimuixx.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000123816 _____ C:\Windows\system32\atidxx64.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000037800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2017-08-03 02:43 - 2017-07-27 02:05 - 000037800 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 012502952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 010283432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 002920360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 002535336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 001061792 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 001061792 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000674728 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe 2017-08-03 02:43 - 2017-07-27 02:04 - 000476072 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000165440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000157176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000144800 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000123304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000121256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000110504 _____ C:\Windows\SysWOW64\atidxx32.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000107944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2017-08-03 02:43 - 2017-07-27 02:04 - 000077736 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000872872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000704424 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000141344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000112224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000100264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2017-08-03 02:43 - 2017-07-27 02:03 - 000083880 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000587648 _____ C:\Windows\system32\amdmiracast.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000523176 _____ C:\Windows\system32\amdgfxinfo64.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000369064 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000206784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000174688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000149216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000141344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000125920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2017-08-03 02:43 - 2017-07-27 02:02 - 000112216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2017-08-03 02:43 - 2017-07-26 22:35 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2017-08-03 02:43 - 2017-07-26 22:35 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2017-08-03 02:43 - 2017-07-26 22:35 - 000814864 _____ C:\Windows\SysWOW64\atiapfxx.blb 2017-08-03 02:43 - 2017-07-26 22:35 - 000814864 _____ C:\Windows\system32\atiapfxx.blb 2017-08-03 02:43 - 2017-07-26 22:35 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2017-08-03 02:43 - 2017-07-26 22:35 - 000120880 _____ C:\Windows\system32\kapp_ci.sbin 2017-08-03 02:43 - 2017-07-26 22:35 - 000114704 _____ C:\Windows\system32\kapp_si.sbin 2017-08-03 02:43 - 2017-07-26 22:35 - 000031039 _____ C:\Windows\system32\AMDKernelEvents.man 2017-08-03 02:43 - 2017-07-26 22:35 - 000000145 _____ C:\Windows\SysWOW64\amd-vulkan32.json 2017-08-03 02:43 - 2017-07-26 22:35 - 000000145 _____ C:\Windows\system32\amd-vulkan64.json 2017-08-03 02:32 - 2017-08-03 02:56 - 000000000 ____D C:\Users\CrossX\AppData\Local\AMD 2017-08-03 02:17 - 2017-08-03 02:44 - 000000000 ____D C:\ProgramData\Package Cache 2017-08-03 02:16 - 2017-08-03 02:16 - 000000000 ____D C:\AMD 2017-08-03 02:13 - 2017-08-03 02:49 - 000000000 ____D C:\Program Files\AMD 2017-08-03 02:13 - 2017-08-03 02:13 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2017-08-03 02:05 - 2017-08-03 02:05 - 000000000 ____D C:\Windows\SysWOW64\sda 2017-08-03 02:00 - 2017-08-03 02:00 - 000000000 ____D C:\Users\CrossX\AppData\Local\Comms 2017-08-03 01:53 - 2017-08-29 10:27 - 000000000 __SHD C:\Users\CrossX\IntelGraphicsProfiles 2017-08-03 01:52 - 2017-08-29 10:26 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-08-03 01:52 - 2017-08-03 01:59 - 000000000 ____D C:\Intel 2017-08-03 01:52 - 2017-08-03 01:52 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2017-08-03 01:52 - 2017-08-03 01:52 - 000000000 ____D C:\Program Files\Intel 2017-08-03 01:52 - 2017-08-03 01:52 - 000000000 ____D C:\Program Files (x86)\Intel 2017-08-03 01:52 - 2017-08-03 01:52 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin 2017-08-03 01:47 - 2017-08-03 00:54 - 000000000 ____D C:\Windows\Panther 2017-08-03 01:18 - 2017-08-03 01:18 - 000000000 ____D C:\Program Files (x86)\Lenovo 2017-08-03 01:16 - 2017-08-03 01:16 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2017-08-03 01:16 - 2017-08-03 01:16 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2017-08-03 01:16 - 2017-08-03 01:16 - 000000000 ____D C:\Windows\system32\DAX2 2017-08-03 01:16 - 2017-08-03 01:16 - 000000000 ____D C:\Program Files\Realtek 2017-08-03 01:12 - 2017-08-03 01:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2017-08-03 01:12 - 2017-08-03 01:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2017-08-03 01:12 - 2015-08-13 20:25 - 000044216 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2017-08-03 01:11 - 2017-08-29 03:55 - 000000000 ____D C:\ProgramData\Synaptics 2017-08-03 01:11 - 2017-08-03 01:12 - 000000000 ____D C:\Program Files\Synaptics 2017-08-03 01:11 - 2017-08-03 01:11 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_wbf_vfs_lvcmn_01_11_00.Wdf 2017-08-03 01:10 - 2017-08-03 01:10 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Приложения в Chrome 2017-08-03 01:09 - 2017-08-03 01:09 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Google 2017-08-03 01:07 - 2017-08-29 03:13 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-08-03 01:06 - 2017-08-03 01:07 - 000000000 ____D C:\Program Files (x86)\Google 2017-08-03 01:06 - 2017-08-03 01:06 - 000003516 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2017-08-03 01:06 - 2017-08-03 01:06 - 000003392 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2017-08-03 01:05 - 2017-08-03 01:21 - 000000000 ____D C:\Users\CrossX\AppData\Local\Google 2017-08-03 01:03 - 2017-08-03 01:04 - 000000000 ____D C:\Users\CrossX\AppData\Local\MicrosoftEdge 2017-08-03 01:02 - 2017-08-29 04:00 - 000994792 _____ C:\Windows\system32\PerfStringBackup.INI 2017-08-03 01:02 - 2017-08-03 01:02 - 000002394 _____ C:\Users\CrossX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-08-03 01:02 - 2017-08-03 01:02 - 000000000 ___RD C:\Users\CrossX\OneDrive 2017-08-03 01:02 - 2017-08-03 01:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2017-08-03 00:59 - 2017-08-27 22:28 - 000000000 ____D C:\Users\CrossX\AppData\Local\Packages 2017-08-03 00:59 - 2017-08-11 16:38 - 000000000 __RHD C:\Users\Public\AccountPictures 2017-08-03 00:59 - 2017-08-03 02:25 - 000000000 ____D C:\Users\CrossX\AppData\Local\ConnectedDevicesPlatform 2017-08-03 00:59 - 2017-08-03 00:59 - 000000000 ____D C:\Windows\CSC 2017-08-03 00:59 - 2017-08-03 00:59 - 000000000 ____D C:\Users\CrossX\AppData\Roaming\Adobe 2017-08-03 00:59 - 2017-08-03 00:59 - 000000000 ____D C:\Users\CrossX\AppData\Local\VirtualStore 2017-08-03 00:59 - 2017-08-03 00:59 - 000000000 ____D C:\Users\CrossX\AppData\Local\TileDataLayer 2017-08-03 00:59 - 2017-08-03 00:59 - 000000000 ____D C:\Users\CrossX\AppData\Local\Publishers 2017-08-03 00:59 - 2017-04-28 04:01 - 002717184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2017-08-03 00:58 - 2017-08-29 04:01 - 000000000 ____D C:\Users\CrossX 2017-08-03 00:58 - 2017-08-03 00:58 - 000000020 ___SH C:\Users\CrossX\ntuser.ini 2017-08-03 00:58 - 2017-08-03 00:58 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore 2017-08-03 00:58 - 2017-08-03 00:58 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer 2017-08-03 00:58 - 2017-08-03 00:58 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\Packages 2017-08-03 00:58 - 2017-08-03 00:58 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform 2017-08-03 00:57 - 2017-08-03 00:57 - 000000020 ___SH C:\Users\defaultuser0\ntuser.ini 2017-08-03 00:56 - 2017-08-03 00:57 - 000000000 ____D C:\Users\defaultuser0 2017-08-03 00:50 - 2017-08-03 00:50 - 000000000 ____D C:\ProgramData\USOShared 2017-08-03 00:49 - 2017-08-29 03:55 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-08-03 00:48 - 2017-08-31 02:34 - 000000000 ____D C:\Windows\system32\SleepStudy 2017-08-03 00:48 - 2017-08-11 16:32 - 000194192 _____ C:\Windows\system32\FNTCACHE.DAT 2017-08-03 00:48 - 2017-08-03 00:48 - 000000000 ____D C:\Windows\ServiceProfiles ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-27 22:28 - 2016-07-16 14:47 - 000000000 ___HD C:\Program Files\WindowsApps 2017-08-27 22:28 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\AppReadiness 2017-08-27 13:27 - 2016-07-16 09:04 - 000262144 _____ C:\Windows\system32\config\BBI 2017-08-27 13:24 - 2016-07-16 14:45 - 000000000 ____D C:\Windows\INF 2017-08-13 23:52 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2017-08-12 18:05 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\rescache 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___SD C:\Windows\SysWOW64\F12 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___SD C:\Windows\system32\F12 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___SD C:\Windows\system32\dsc 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___RD C:\Windows\PrintDialog 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\SysWOW64\setup 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\SysWOW64\oobe 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\setup 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\oobe 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\migwiz 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\lv-LV 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\lt-LT 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\et-EE 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\es-MX 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\en-GB 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\appraiser 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\ShellExperiences 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\Provisioning 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\PolicyDefinitions 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\bcastdvr 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2017-08-11 16:27 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2017-08-11 16:27 - 2016-07-16 09:04 - 000000000 ____D C:\Windows\SysWOW64\Dism 2017-08-11 16:27 - 2016-07-16 09:04 - 000000000 ____D C:\Windows\system32\Sysprep 2017-08-11 16:27 - 2016-07-16 09:04 - 000000000 ____D C:\Windows\system32\Dism 2017-08-11 16:27 - 2016-07-16 09:04 - 000000000 ____D C:\Windows\servicing 2017-08-11 16:26 - 2016-07-17 01:34 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2017-08-11 16:26 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2017-08-11 16:26 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files\Windows Defender 2017-08-11 16:26 - 2016-07-16 14:47 - 000000000 ____D C:\Program Files\Common Files\System 2017-08-11 16:23 - 2016-07-16 14:47 - 000015425 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2017-08-10 19:11 - 2016-07-16 14:36 - 000000000 ____D C:\Windows\CbsTemp 2017-08-03 16:52 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\appcompat 2017-08-03 02:15 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2017-08-03 01:47 - 2016-07-16 14:47 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2017-08-03 01:46 - 2016-07-17 01:20 - 000000000 ____D C:\Windows\SysWOW64\WCN 2017-08-03 01:46 - 2016-07-17 01:20 - 000000000 ____D C:\Windows\system32\WCN 2017-08-03 01:46 - 2016-07-16 14:47 - 000000000 ___RD C:\Windows\MiracastView 2017-08-03 00:59 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\spool 2017-08-03 00:59 - 2016-07-16 14:47 - 000000000 ____D C:\Windows\system32\FxsTmp 2017-08-03 00:50 - 2016-07-16 14:47 - 000000000 ____D C:\ProgramData\USOPrivate 2017-08-03 00:50 - 2016-07-16 14:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-08-03 00:49 - 2016-07-16 09:04 - 000032768 _____ C:\Windows\system32\config\ELAM ==================== Files in the root of some directories ======= 2017-08-11 19:51 - 2017-08-31 02:37 - 000007593 _____ () C:\Users\CrossX\AppData\Local\Resmon.ResmonCfg 2017-08-03 01:16 - 2017-08-03 01:16 - 000000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-08-28 17:08 ==================== End of FRST.txt ============================ Addition.txt
  16. Здравейте! Преди няколко дена си занесох лаптопа в сервиз, защото беше много бавничък и ми казаха, че са изтрили 36 вируса. Взех го вчера и забелязвам, че все още е бавен! Благодаря предварително! Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-08-2017 Ran by User (administrator) on PC (30-08-2017 12:20:06) Running from C:\Users\User\Desktop Loaded Profiles: User (Available Profiles: User) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Български (България) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Hewlett-Packard Company) C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe (Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_svc.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_bg.exe (Dell Inc.) C:\Program Files\Dell\Ambient Light Sensor\AlsSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe (AVAST Software s.r.o.) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [488816 2011-01-04] (Alps Electric Co., Ltd.) HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [570664 2008-05-28] (Nero AG) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [213824 2017-04-16] (AVAST Software) HKLM\...\Run: [StatusAlerts] => C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe [330040 2014-02-12] (Hewlett-Packard Company) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG) HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd) HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27815896 2017-07-28] (Skype Technologies S.A.) HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\MountPoints2: F - F:\AutoRun.exe HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\MountPoints2: {c54fd4f3-97a9-11e3-8443-0025644a7ccf} - F:\AutoRun.exe HKU\S-1-5-21-533062283-1319507512-3948496807-1000\...\MountPoints2: {c54fd500-97a9-11e3-8443-0025644a7ccf} - G:\AutoRun.exe HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files\Garmin\Express Tray\tray.exe" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell System Manager.lnk [2012-11-23] ShortcutTarget: Dell System Manager.lnk -> C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe (Dell Inc.) GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 Tcpip\..\Interfaces\{4F0D9387-60AA-46CC-A545-F4C0A516EA0C}: [DhcpNameServer] 192.168.0.1 192.168.0.1 Tcpip\..\Interfaces\{DDAEF4EF-0718-4A0A-898E-481BCBE7DAE9}: [DhcpNameServer] 192.168.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-533062283-1319507512-3948496807-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKU\S-1-5-21-533062283-1319507512-3948496807-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01 HKU\S-1-5-21-533062283-1319507512-3948496807-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\S-1-5-21-533062283-1319507512-3948496807-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\S-1-5-21-533062283-1319507512-3948496807-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-04-16] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-06-01] (Skype Technologies) Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Common Files\A&W\MidRadio.ocx [2003-02-11] (YAMAHA CORPORATION) FireFox: ======== FF DefaultProfile: 04k4c1sj.default-1495476444165 FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\04k4c1sj.default-1495476444165 [2017-08-30] FF Homepage: Mozilla\Firefox\Profiles\04k4c1sj.default-1495476444165 -> google.bg FF Extension: (Firefox Screenshots) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\04k4c1sj.default-1495476444165\features\{9d2e852d-caeb-40cd-972f-0baa543745c6}\screenshots@mozilla.org.xpi [2017-08-26] FF Extension: (No Name) - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2017-06-21] [not signed] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF48 FF Extension: (Avast Online Security) - C:\Program Files\Alwil Software\Avast5\WebRep\FF48 [2017-04-16] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\Alwil Software\Avast5\SafePrice\FF48 FF Extension: (Avast SafePrice) - C:\Program Files\Alwil Software\Avast5\SafePrice\FF48 [2017-04-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-08] () FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @spoon.net/Spoon Plugin 3.33 -> C:\Program Files\Spoon\3.33.8.527\npMozillaSpoonPlugin.dll [No File] FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://google.bg/ CHR StartupUrls: Default -> "hxxp://google.bg/" CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 CHR DefaultSearchKeyword: Default -> bing1.com CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&FORM=AVASDF&PC=AV01 CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2017-08-30] CHR Extension: (Google Документи) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-28] CHR Extension: (Google Диск) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-27] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04] CHR Extension: (Google Търсене) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-27] CHR Extension: (Avast SafePrice) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-08-29] CHR Extension: (Google Документи офлайн) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24] CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-29] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-28] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-28] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found> CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 alssvc; C:\Program Files\Dell\Ambient Light Sensor\AlsSvc.exe [382232 2008-06-03] (Dell Inc.) R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5758120 2017-04-16] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [261712 2017-04-16] (AVAST Software) R2 dcpsysmgrsvc; C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [390000 2011-07-28] (Dell Inc.) R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed] R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed] R2 Unchecky; C:\Program Files\Unchecky\bin\unchecky_svc.exe [302872 2017-08-12] (RaMMicHaeL) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [255184 2017-04-16] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148208 2017-04-16] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [267528 2017-04-16] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41176 2017-04-16] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-04-16] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-04-16] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107928 2017-04-29] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [90336 2017-04-16] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-04-16] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [764064 2017-04-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [472760 2017-04-29] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118800 2017-04-16] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [279800 2017-04-16] (AVAST Software) R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.) S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [179520 2010-09-17] (DEVGURU Co., LTD.(www.devguru.co.kr)) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-30 12:13 - 2017-08-30 12:20 - 000014792 _____ C:\Users\User\Desktop\FRST.txt 2017-08-30 12:13 - 2017-08-30 12:13 - 000000000 ____D C:\FRST 2017-08-30 12:10 - 2017-08-30 12:10 - 001792512 _____ (Farbar) C:\Users\User\Desktop\FRST.exe 2017-08-30 09:33 - 2017-08-30 09:33 - 000000000 ____D C:\ProgramData\SWCUTemp 2017-08-29 17:30 - 2009-07-30 20:08 - 008418199 _____ C:\Users\User\Desktop\Teст Температури.exe 2017-08-29 16:18 - 2012-03-08 11:55 - 007170657 _____ C:\Users\User\Desktop\Тест хард диск.exe 2017-08-29 16:17 - 2017-08-29 16:17 - 000001164 _____ C:\Users\User\Desktop\Auslogics Disk Defrag.lnk 2017-08-29 16:17 - 2017-08-29 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2017-08-29 16:17 - 2017-08-29 16:17 - 000000000 ____D C:\Program Files\Auslogics 2017-08-29 15:56 - 2017-08-29 15:57 - 000000000 ____D C:\Users\User\Desktop\от работен плот 2017-08-29 14:40 - 2017-08-29 14:40 - 000000000 ____D C:\ProgramData\Malwarebytes ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-30 12:14 - 2009-07-14 07:34 - 000021472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-08-30 12:14 - 2009-07-14 07:34 - 000021472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-08-30 11:51 - 2016-02-09 21:35 - 000000000 ____D C:\Users\User\Desktop\Хотел 2017-08-30 09:36 - 2010-11-21 00:01 - 000786558 _____ C:\Windows\system32\PerfStringBackup.INI 2017-08-30 09:36 - 2009-07-14 05:37 - 000000000 ____D C:\Windows\inf 2017-08-30 09:34 - 2012-11-23 08:41 - 000000000 ____D C:\Users\User\AppData\Roaming\Skype 2017-08-30 09:33 - 2013-06-01 18:15 - 000000428 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2017-08-30 09:31 - 2009-07-14 07:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-08-29 17:26 - 2015-03-21 14:49 - 000000432 __RSH C:\ProgramData\ntuser.pol 2017-08-29 15:31 - 2012-12-30 22:30 - 000000000 ____D C:\Program Files\Google 2017-08-29 15:30 - 2015-02-27 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2017-08-29 15:28 - 2013-02-21 17:07 - 000000000 ____D C:\Program Files\Scratch 2017-08-29 15:27 - 2016-08-08 11:08 - 000000000 ____D C:\Users\User\AppData\Roaming\iFunbox_UserCache 2017-08-29 15:19 - 2016-09-09 18:05 - 000000000 ____D C:\Users\User\AppData\Roaming\JAM Software 2017-08-29 15:06 - 2011-04-12 04:37 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2017-08-29 14:35 - 2015-12-31 17:35 - 000000000 ____D C:\AdwCleaner 2017-08-29 14:21 - 2012-12-29 15:57 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2017-08-29 14:21 - 2012-12-29 15:57 - 000000000 ____D C:\Program Files\Kaspersky Lab 2017-08-29 14:18 - 2012-12-29 17:38 - 000262144 _____ C:\Windows\system32\config\elam 2017-08-29 14:17 - 2015-12-04 01:12 - 000000000 ____D C:\Program Files\Common Files\AV 2017-08-29 09:45 - 2014-05-21 23:12 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-08-29 09:45 - 2014-05-21 23:12 - 000002087 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-08-27 08:15 - 2014-05-04 13:41 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2017-08-26 14:53 - 2017-06-21 12:29 - 000000000 ____D C:\Program Files\Mozilla Firefox 2017-08-17 11:06 - 2016-11-18 17:33 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2017-08-08 12:43 - 2012-11-23 16:40 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2017-08-08 12:43 - 2012-11-23 08:40 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2017-08-08 12:43 - 2012-11-23 08:40 - 000000000 ____D C:\Windows\system32\Macromed 2017-08-05 17:05 - 2016-03-09 10:09 - 000000984 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-08-05 17:04 - 2012-11-23 08:38 - 000000000 ____D C:\Program Files\Common Files\Adobe AIR 2017-08-03 23:20 - 2012-11-23 08:41 - 000000000 ____D C:\ProgramData\Skype 2017-08-02 14:11 - 2013-01-13 18:31 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics 2017-08-02 12:18 - 2016-08-15 19:31 - 000012304 _____ C:\Windows\system32\Native.exe ==================== Files in the root of some directories ======= 2012-12-25 20:32 - 2012-12-25 20:32 - 000000000 ____H () C:\Users\User\AppData\Roaming\76f77676ff6f.txt 2012-12-25 19:51 - 2012-12-27 10:24 - 000000000 ____H () C:\Users\User\AppData\Roaming\789g979gg.txt 2012-12-25 10:12 - 2012-12-25 10:12 - 000000000 ____H () C:\Users\User\AppData\Roaming\futf6d786d.txt 2013-09-17 09:07 - 2014-03-31 09:51 - 000000175 _____ () C:\Users\User\AppData\Roaming\WB.CFG 2013-03-04 14:58 - 2013-03-04 14:58 - 000003584 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-02-06 19:13 - 2013-02-06 19:13 - 000004096 ____H () C:\Users\User\AppData\Local\keyfile3.drm 2014-04-27 11:17 - 2014-04-27 11:17 - 000000017 _____ () C:\Users\User\AppData\Local\resmon.resmoncfg 2012-11-25 19:22 - 2012-11-25 19:22 - 004446016 ____N () C:\Users\User\AppData\Local\Tempmusic.ogg Some files in TEMP: ==================== 2017-08-29 22:56 - 2017-08-29 22:56 - 000000000 _____ () C:\Users\User\AppData\Local\Temp\iieim70b.dll ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-08-21 09:54 ==================== End of FRST.txt ============================ Addition.txt
  17. През 2015 компютърът ми беше заразен с Cryptowall 3.0. Понеже тогава нямаше начин да си възстановя информацията, бях изкарал въпросния хард диск и си сложих нов, започвайки всичко наново... Въпросът ми е, към днешна дата дали се е намерило лек за този вирус и дали има начин да си върна информацията ?
  18. Здравейте. Съмнява ме, че системата е заразена с някоя гадинка. Почти през час се налага я рестартирам защото забива и нищо не се отваря. Понякога се губи интернета и се налага отново рестарт. Дори и диспечера със задачи не се отваря всекой път., а когато се отвори диска е почти на 100% натовареност. Addition.txt FRST.txt
  19. Здравейте всички, днес офисния компютър се зарази и всички файлове на него се криптираха с разширение ".lukitus". Моля за помощ! Има ли начин да бъдат възстановени?
  20. Здравейте! При опит да отворя fraps ми показа грешка Themida Може ли да проверим за вируси? Addition.txt FRST.txt HitmanPro_20170818_1553.log Malware.txt
  21. Цяла папка в компютъра е засегната, вътре имам някои важни файлове. Всичките са с разширение .odin. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-08-2017 Ran by 11 (administrator) on 11-PC (18-08-2017 10:47:52) Running from C:\Users\11\Desktop Loaded Profiles: 11 (Available Profiles: 11) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Български (България) Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe (CANON INC.) C:\Windows\System32\CNAB3RPK.EXE (Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Viber Media S.Ã r.l.) C:\Users\11\AppData\Local\Viber\Viber.exe (Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\WINWORD.EXE (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation) HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\Run: [uTorrent] => C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe [2150336 2017-08-02] (BitTorrent Inc.) HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3880640 2017-07-03] (Disc Soft Ltd) HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\Run: [Viber] => C:\Users\11\AppData\Local\Viber\Viber.exe [30867536 2017-08-03] (Viber Media S.Ã r.l.) HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1421224 2017-08-04] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\MountPoints2: H - H:\HiSuiteDownLoader.exe HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\MountPoints2: {888878a9-7777-11e7-b2b3-6470021bcfea} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\MountPoints2: {d48670a0-7cd5-11e7-aebf-6470021bcfea} - F:\setup.exe HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\...\MountPoints2: {ee9fdf7e-7b67-11e7-ad89-6470021bcfea} - F:\HiSuiteDownLoader.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP3000 Status Window.lnk [2017-08-15] ShortcutTarget: Canon LBP3000 Status Window.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\CNAB3LAK.EXE (CANON INC.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2017-08-16] ShortcutTarget: SPDriverInstall.lnk -> C:\Program Files\MediaTek\SP Driver\SPDriverInstall (No File) GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 212.39.90.42 8.8.8.8 Tcpip\..\Interfaces\{71902526-8799-4AA6-847E-117D3D8A13E1}: [DhcpNameServer] 212.39.90.42 8.8.8.8 Internet Explorer: ================== HKU\S-1-5-21-1762113390-2743852867-4213644173-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp FireFox: ======== FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-02] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-02] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\11\AppData\Local\Google\Chrome\User Data\Default [2017-08-18] CHR Extension: (Google Презентации) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-02] CHR Extension: (Google Документи) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-02] CHR Extension: (Google Диск) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-02] CHR Extension: (YouTube) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-02] CHR Extension: (Adobe Acrobat) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-07] CHR Extension: (Електронни таблици от Google) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-02] CHR Extension: (Google Документи офлайн) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-02] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-02] CHR Extension: (Gmail) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-02] CHR Extension: (Chrome Media Router) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-02] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [276288 2012-08-07] (Intel Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2324672 2017-07-03] (Disc Soft Ltd) R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [1102352 2017-08-04] (Garmin Ltd. or its subsidiaries) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1763584 2013-06-29] (Atheros Communications, Inc.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2017-08-09] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [40504 2017-08-09] (Disc Soft Ltd) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-18 10:47 - 2017-08-18 10:47 - 000008299 _____ C:\Users\11\Desktop\FRST.txt 2017-08-18 10:47 - 2017-08-18 10:47 - 000000000 ____D C:\FRST 2017-08-18 10:46 - 2017-08-18 10:46 - 001792512 _____ (Farbar) C:\Users\11\Desktop\FRST.exe 2017-08-18 10:36 - 2017-08-18 10:47 - 000000000 ____D C:\Program Files\Reimage 2017-08-18 10:36 - 2017-08-18 10:46 - 000000140 _____ C:\Windows\Reimage.ini 2017-08-18 10:36 - 2017-08-18 10:36 - 000604928 _____ (Reimage) C:\Users\11\Downloads\ReimageRepair.exe 2017-08-17 17:00 - 2017-08-17 17:00 - 000014731 _____ C:\Users\11\Downloads\HealthStatus.html 2017-08-17 16:50 - 2017-08-17 16:50 - 000062464 _____ C:\Users\11\Downloads\deklaracia_7_zdravnoosig_vnoski (1).xls 2017-08-17 16:44 - 2017-08-17 16:44 - 000062464 _____ C:\Users\11\Downloads\deklaracia_7_zdravnoosig_vnoski.xls 2017-08-17 16:37 - 2017-08-17 16:37 - 000092160 _____ C:\Users\11\Downloads\Deklaracia_1_20177 (1).xls 2017-08-17 16:37 - 2017-08-17 16:37 - 000033134 _____ C:\Users\11\Downloads\Deklaracia_7_2017.xlsx 2017-08-17 16:36 - 2017-08-17 16:36 - 000092160 _____ C:\Users\11\Downloads\Deklaracia_1_20177.xls 2017-08-16 14:37 - 2017-08-16 14:37 - 003732163 _____ C:\Users\11\Desktop\robot.rar 2017-08-16 14:05 - 2017-08-16 14:33 - 000000000 ____D C:\Users\11\Desktop\robot 2017-08-16 14:01 - 2017-08-16 14:06 - 057118257 _____ C:\Users\11\Downloads\MTK Usb Driver v1.0.8.zip 2017-08-16 13:50 - 2017-08-16 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SP Driver 2017-08-16 13:50 - 2017-08-16 13:50 - 000000000 ____D C:\Users\11\.android 2017-08-16 13:50 - 2017-08-16 13:50 - 000000000 ____D C:\Program Files\MediaTek 2017-08-16 13:49 - 2017-08-16 13:49 - 000000000 ____D C:\Users\11\Desktop\MTK_USB_All_1.0.1 2017-08-16 13:48 - 2017-08-16 13:49 - 057116528 _____ C:\Users\11\Downloads\MTK_USB_All_v1.0.1.zip 2017-08-16 13:20 - 2017-08-16 13:20 - 000012359 _____ C:\Users\11\Downloads\Mature nl Sabrina Jade - Hardcore (04.08.2017) rq.mp4.torrent 2017-08-16 13:07 - 2017-08-16 13:07 - 000016211 _____ C:\Users\11\Downloads\[pornolab.net].t1887011.torrent 2017-08-16 12:39 - 2017-08-16 12:39 - 000013351 _____ C:\Users\11\Downloads\[pornolab.net].t1887010.torrent 2017-08-15 16:32 - 2017-08-15 16:32 - 000223558 _____ C:\Users\11\Desktop\machine8.bmp 2017-08-15 16:27 - 2017-08-15 16:27 - 000000000 ____D C:\ProgramData\GRETECH 2017-08-15 16:26 - 2017-08-15 16:26 - 000002033 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk 2017-08-15 16:26 - 2017-08-15 16:26 - 000001133 _____ C:\Users\Public\Desktop\GOM Player.lnk 2017-08-15 16:26 - 2017-08-15 16:26 - 000000000 ____D C:\Users\11\AppData\Roaming\GRETECH 2017-08-15 16:26 - 2017-08-15 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM 2017-08-15 16:26 - 2017-08-15 16:26 - 000000000 ____D C:\Program Files\GRETECH 2017-08-15 16:26 - 2017-08-15 16:26 - 000000000 _____ C:\end 2017-08-15 16:25 - 2017-08-15 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Printer Uninstaller 2017-08-15 16:25 - 2017-08-15 16:25 - 000000000 ____D C:\Program Files\Canon 2017-08-15 16:25 - 2012-12-28 06:01 - 000075136 _____ C:\Users\11\Downloads\Windows 8_Notice.pdf 2017-08-15 16:25 - 2012-10-27 18:00 - 000192512 _____ (CANON INC.) C:\Windows\system32\CNAB3EMU.DLL 2017-08-15 16:25 - 2012-10-27 18:00 - 000163840 _____ (CANON INC.) C:\Windows\system32\CNAB3SMK.DLL 2017-08-15 16:25 - 2012-10-27 18:00 - 000113856 _____ (CANON INC.) C:\Windows\system32\CNAB3RPK.EXE 2017-08-15 16:25 - 2012-10-27 18:00 - 000106496 _____ (CANON INC.) C:\Windows\system32\CNAB3LMK.DLL 2017-08-15 16:25 - 2012-10-27 18:00 - 000057344 _____ (CANON INC.) C:\Windows\system32\CNAB3PTU.DLL 2017-08-15 16:24 - 2017-08-15 16:24 - 027679768 _____ (GOM & Company) C:\Users\11\Downloads\GOMPLAYERGLOBALSETUP_CHROME.EXE 2017-08-15 16:24 - 2017-08-15 16:24 - 000000000 ____D C:\Users\11\Downloads\LBP3000_R150_V330_W32_uk_EN_1 2017-08-15 16:23 - 2017-08-15 16:24 - 009616960 _____ C:\Users\11\Downloads\LBP3000_R150_V330_W32_uk_EN_1.exe 2017-08-14 15:51 - 2017-08-14 15:51 - 000048690 _____ C:\Users\11\Downloads\Primo_BG_Speedcam.zip 2017-08-14 14:48 - 2017-08-14 14:54 - 000000000 ____D C:\Users\11\Desktop\igo8 -4 2017-08-14 14:26 - 2011-12-06 10:55 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\system32\CSVer.dll 2017-08-14 12:37 - 2017-08-14 13:20 - 251892247 _____ C:\Users\11\Downloads\Intel_Chipset_XPVistaWin7_V9301019.zip 2017-08-14 12:37 - 2017-08-14 12:37 - 003119651 _____ C:\Users\11\Downloads\P8H61-M-ASUS-4801.zip 2017-08-14 12:35 - 2017-08-14 12:35 - 000000941 _____ C:\Users\Public\Desktop\AIDA64 Engineer Edition.lnk 2017-08-14 12:35 - 2017-08-14 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIDA64 Engineer Edition 2017-08-14 12:34 - 2017-08-14 12:35 - 000000000 ____D C:\Program Files\AIDA64 2017-08-14 11:49 - 2017-08-14 11:49 - 000000000 ____D C:\Users\11\Documents\Garmin 2017-08-14 11:36 - 2017-08-14 11:37 - 069999448 _____ (Microsoft Corporation) C:\Users\11\Downloads\NDP452-KB2901907-x86-x64-AllOS-ENU.exe 2017-08-14 11:36 - 2017-04-28 01:50 - 003550208 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2017-08-14 11:30 - 2017-08-14 14:05 - 000000000 ____D C:\ProgramData\Garmin 2017-08-14 11:30 - 2017-08-14 11:43 - 000000000 ____D C:\Users\11\AppData\Local\Garmin_Ltd._or_its_subsid 2017-08-14 11:30 - 2017-08-14 11:30 - 000001860 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2017-08-14 11:30 - 2017-08-14 11:30 - 000000000 ____D C:\Users\11\AppData\Roaming\Garmin 2017-08-14 11:30 - 2017-08-14 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2017-08-14 11:30 - 2017-08-14 11:30 - 000000000 ____D C:\Program Files\Garmin 2017-08-14 11:30 - 2017-08-14 11:30 - 000000000 ____D C:\Program Files\DIFX 2017-08-14 11:29 - 2017-08-14 11:29 - 000000000 ____D C:\ProgramData\Package Cache 2017-08-10 14:18 - 2017-08-10 14:18 - 000000981 _____ C:\Users\Public\Desktop\Fotosizer.lnk 2017-08-10 14:18 - 2017-08-10 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotosizer 2017-08-10 14:18 - 2017-08-10 14:18 - 000000000 ____D C:\Program Files\Fotosizer 2017-08-10 14:11 - 2017-08-10 14:17 - 000000000 ____D C:\Users\11\Desktop\Карина 2017-08-10 14:07 - 2017-08-10 14:07 - 000001067 _____ C:\Users\Public\Desktop\FastStone Image Viewer.lnk 2017-08-10 14:07 - 2017-08-10 14:07 - 000000000 ____D C:\Users\11\AppData\Roaming\FastStone 2017-08-10 14:07 - 2017-08-10 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer 2017-08-10 14:07 - 2017-08-10 14:07 - 000000000 ____D C:\Program Files\FastStone Image Viewer 2017-08-10 14:02 - 2017-08-18 08:48 - 000000000 ____D C:\Users\11\AppData\Roaming\ViberPC 2017-08-10 14:02 - 2017-08-11 12:17 - 000000000 ____D C:\Users\11\Documents\ViberDownloads 2017-08-10 14:02 - 2017-08-10 14:02 - 000000903 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk 2017-08-10 14:02 - 2017-08-10 14:02 - 000000901 _____ C:\Users\11\Desktop\Viber.lnk 2017-08-10 14:02 - 2017-08-10 14:02 - 000000000 ____D C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber 2017-08-10 14:02 - 2017-08-10 14:02 - 000000000 ____D C:\Users\11\AppData\Local\Viber Media S.à r.l 2017-08-10 14:01 - 2017-08-10 14:02 - 000000000 ____D C:\Users\11\AppData\Local\Viber 2017-08-10 14:01 - 2017-08-10 14:01 - 000000000 ____D C:\Users\11\AppData\Local\Package Cache 2017-08-09 13:48 - 2017-08-09 13:48 - 000002217 _____ C:\Users\11\Desktop\Counter-Strike 1.6 CSS Edition.lnk 2017-08-09 13:47 - 2017-08-09 13:47 - 000000000 ____D C:\Program Files\Valve 2017-08-09 12:13 - 2017-08-09 13:38 - 000000472 __RSH C:\ProgramData\ntuser.pol 2017-08-09 12:13 - 2017-08-09 12:13 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2017-08-09 12:13 - 2017-08-09 12:13 - 000000000 ____D C:\Users\11\AppData\Local\Disc_Soft_Ltd 2017-08-09 11:56 - 2017-08-09 11:56 - 000040504 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2017-08-09 11:55 - 2017-08-09 12:13 - 000000000 ____D C:\Users\11\AppData\Roaming\DAEMON Tools Lite 2017-08-09 11:55 - 2017-08-09 12:13 - 000000000 ____D C:\Program Files\DAEMON Tools Lite 2017-08-09 11:55 - 2017-08-09 11:55 - 000026168 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2017-08-09 11:55 - 2017-08-09 11:55 - 000001930 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2017-08-09 11:55 - 2017-08-09 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2017-08-09 11:55 - 2017-08-09 11:55 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite 2017-08-07 14:55 - 2017-08-07 14:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2017-08-07 14:55 - 2017-08-07 14:55 - 000000000 ____D C:\Program Files\Common Files\Wise Installation Wizard 2017-08-07 14:40 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2017-08-07 14:40 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2017-08-07 13:38 - 2017-08-07 13:38 - 000000000 ____D C:\tts 2017-08-07 09:20 - 2017-08-07 09:20 - 000000000 ____D C:\Users\11\AppData\Roaming\Adobe 2017-08-07 09:20 - 2017-08-07 09:20 - 000000000 ____D C:\Users\11\AppData\LocalLow\Adobe 2017-08-07 09:20 - 2017-08-07 09:20 - 000000000 ____D C:\Users\11\AppData\Local\CEF 2017-08-07 09:16 - 2017-08-14 11:37 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-08-07 09:16 - 2017-08-07 09:16 - 000002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2017-08-07 09:16 - 2017-08-07 09:16 - 000000000 ____D C:\Program Files\Common Files\Adobe 2017-08-07 09:16 - 2017-08-07 09:16 - 000000000 ____D C:\Program Files\Adobe 2017-08-07 09:15 - 2017-08-07 15:12 - 000000000 ____D C:\ProgramData\Adobe 2017-08-07 09:14 - 2017-08-07 09:20 - 000000000 ____D C:\Users\11\AppData\Local\Adobe 2017-08-07 09:01 - 2017-08-07 09:01 - 000000000 ____D C:\Windows\PCHEALTH 2017-08-07 09:01 - 2017-08-07 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2017-08-07 09:01 - 2017-08-07 09:01 - 000000000 ____D C:\Program Files\Microsoft Works 2017-08-07 09:01 - 2017-08-07 09:01 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 2017-08-07 09:01 - 2017-08-07 09:01 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2017-08-07 08:59 - 2017-08-07 09:01 - 000000000 ____D C:\Program Files\Microsoft Office 2017-08-07 08:59 - 2017-08-07 08:59 - 000000000 __RHD C:\MSOCache 2017-08-07 08:59 - 2017-08-07 08:59 - 000000000 ____D C:\Users\11\AppData\Local\Microsoft Help 2017-08-02 16:46 - 2017-08-02 16:46 - 000000000 ____D C:\Users\11\AppData\Roaming\WinRAR 2017-08-02 16:46 - 2017-08-02 16:46 - 000000000 ____D C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-02 16:46 - 2017-08-02 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-02 16:46 - 2017-08-02 16:46 - 000000000 ____D C:\Program Files\WinRAR 2017-08-02 16:33 - 2017-08-18 08:47 - 000000340 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2017-08-02 15:57 - 2017-08-02 15:57 - 000000000 ____D C:\Users\11\Documents\Virtual Machines 2017-08-02 15:47 - 2017-08-07 08:53 - 000000000 ____D C:\Users\11\AppData\Roaming\VMware 2017-08-02 15:47 - 2017-08-02 16:41 - 000000000 ____D C:\Users\11\AppData\Local\VMware 2017-08-02 15:45 - 2017-08-02 15:45 - 000001024 _____ C:\Windows\system32\%TMP% 2017-08-02 15:44 - 2017-08-07 08:54 - 000000000 ____D C:\ProgramData\VMware 2017-08-02 15:31 - 2017-08-02 15:31 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2017-08-02 15:19 - 2017-08-02 15:19 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk 2017-08-02 15:18 - 2017-08-02 15:19 - 000000000 ____D C:\Windows\WindowsMobile 2017-08-02 15:05 - 2017-08-02 14:10 - 000000000 ____D C:\Windows\Panther 2017-08-02 14:57 - 2017-08-02 14:58 - 000000000 ____D C:\ProgramData\DriverGenius 2017-08-02 14:57 - 2017-08-02 14:57 - 000000000 ___SD C:\Users\11\AppData\LocalLow\Temp 2017-08-02 14:56 - 2017-08-02 14:57 - 000000000 ____D C:\DriverGenius-Downloads 2017-08-02 14:52 - 2017-08-18 09:05 - 000000000 ____D C:\Users\11\AppData\Roaming\uTorrent 2017-08-02 14:52 - 2017-08-02 14:52 - 000000810 _____ C:\Users\11\Desktop\µTorrent.lnk 2017-08-02 14:52 - 2017-08-02 14:52 - 000000790 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2017-08-02 14:48 - 2017-08-02 16:48 - 000000000 ____D C:\Program Files\DriverToolkit 2017-08-02 14:48 - 2017-08-02 14:48 - 000000000 ____D C:\Users\11\AppData\Local\DriverToolkit 2017-08-02 14:46 - 2017-08-18 08:51 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-08-02 14:46 - 2017-08-18 08:51 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-08-02 14:45 - 2017-08-07 14:38 - 000084896 _____ C:\Users\11\AppData\Local\GDIPFONTCACHEV1.DAT 2017-08-02 14:45 - 2017-08-02 14:56 - 000000000 ____D C:\Users\11\AppData\Local\Google 2017-08-02 14:45 - 2017-08-02 14:45 - 000000000 ____D C:\Users\11\AppData\Local\Deployment 2017-08-02 14:45 - 2017-08-02 14:45 - 000000000 ____D C:\Users\11\AppData\Local\Apps\2.0 2017-08-02 14:45 - 2017-08-02 14:45 - 000000000 ____D C:\Program Files\Google 2017-08-02 14:42 - 2017-08-02 14:42 - 000015384 _____ C:\Windows\system32\results.xml 2017-08-02 14:30 - 2017-08-14 14:26 - 000000000 ____D C:\Program Files\Intel 2017-08-02 14:30 - 2017-08-02 14:30 - 000000000 ____D C:\ProgramData\Intel 2017-08-02 14:30 - 2017-08-02 14:30 - 000000000 ____D C:\Program Files\Common Files\Intel 2017-08-02 14:30 - 2012-08-03 09:34 - 000056320 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2017-08-02 14:29 - 2017-08-02 14:29 - 000001769 _____ C:\Windows\Language_trs.ini 2017-08-02 14:29 - 2017-08-02 14:29 - 000000000 ____D C:\Intel 2017-08-02 14:21 - 2017-08-02 14:21 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2017-08-02 14:11 - 2017-08-02 14:11 - 000001401 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-08-02 14:10 - 2017-08-16 13:50 - 000000000 ____D C:\Users\11 2017-08-02 14:10 - 2017-08-09 13:49 - 000000000 ____D C:\Users\11\AppData\Local\VirtualStore 2017-08-02 14:10 - 2017-08-02 14:10 - 000000020 ___SH C:\Users\11\ntuser.ini 2017-08-02 14:10 - 2011-04-12 04:36 - 000000000 ____D C:\Users\11\AppData\Roaming\Media Center Programs 2017-08-02 14:08 - 2017-08-02 14:08 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2017-08-02 14:08 - 2017-08-02 14:08 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-08-18 09:50 - 2009-07-14 07:34 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-08-18 09:50 - 2009-07-14 07:34 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-08-18 08:52 - 2010-11-21 00:01 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI 2017-08-18 08:52 - 2009-07-14 05:37 - 000000000 ____D C:\Windows\inf 2017-08-18 08:47 - 2009-07-14 07:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-08-09 12:13 - 2009-07-14 05:37 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2017-08-07 15:00 - 2009-07-14 07:33 - 000343200 _____ C:\Windows\system32\FNTCACHE.DAT 2017-08-07 09:01 - 2009-07-14 05:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2017-08-07 09:00 - 2011-04-12 04:37 - 000000000 ____D C:\Windows\ShellNew 2017-08-02 15:04 - 2009-07-14 07:52 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2017-08-02 14:10 - 2009-07-14 05:37 - 000000000 ____D C:\Windows\rescache 2017-08-02 14:08 - 2009-07-14 07:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-08-02 14:07 - 2009-07-14 05:37 - 000000000 ____D C:\Windows\system32\sysprep 2017-08-02 14:06 - 2011-04-12 04:37 - 000000000 ____D C:\Windows\CSC Some files in TEMP: ==================== 2017-06-20 04:59 - 2017-06-20 04:59 - 000164424 _____ (Microsoft Corporation) C:\Users\11\AppData\Local\Temp\atl110.dll 2017-08-09 11:53 - 2017-08-09 11:54 - 026624872 _____ (Disc Soft Ltd) C:\Users\11\AppData\Local\Temp\DTLite1060-0275_split.exe 2017-08-09 11:56 - 2017-08-09 11:56 - 001005568 _____ (Microsoft Corporation) C:\Users\11\AppData\Local\Temp\dt_D25F.tmp.exe 2017-06-20 04:59 - 2017-06-20 04:59 - 000069632 _____ () C:\Users\11\AppData\Local\Temp\HwInfo.dll 2017-06-20 04:59 - 2017-06-20 04:59 - 000900096 _____ () C:\Users\11\AppData\Local\Temp\NSISPromotionEx.dll 2017-08-18 10:36 - 2017-08-18 10:36 - 012171856 _____ (Reimage) C:\Users\11\AppData\Local\Temp\ReimagePackage.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-08-11 09:35 ==================== End of FRST.txt ============================ Addition.txt
  22. Здравейте! Работя във транспортна фирма и току що започнаха да се появяват някакви съобщения в АБВ пощата Mail Delivery System/ Subsystem, както и други най-различни. Очевидно това е спам или някакъв вид вирус, и препраща зловредни имейли и на наши клиенти. Моля кажете как да спра това нашествие. Благодаря предварително!!
  23. Здравейте отново Пиша ви днес относно Лаптоп Samsung. Тази сутрин пускайки го зареди доста бавно и мудно. Параметри процесор Mobile QuadCore AMD A8-3530MX, 1900 MHz x64 Видео AMD Radeon HD 6620G 512МБ. Рам DDR 3 4гб.Биос AMI EFI реших да погледна какво се случва в таск и забелязах че CPU се товари на моменти до 100% и не пада под 90% Снимки от таск. Addition.txt FRST64 Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2017 Ran by Vezuvius (administrator) on DESKTOP-E85C0S6 (29-07-2017 13:47:12) Running from C:\Users\Vezuvius\Desktop Loaded Profiles: Vezuvius (Available Profiles: defaultuser0 & Vezuvius) Platform: Windows 10 Home Version 1703 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe () C:\ProgramData\Connection Manager\OnlineUpdate\ouc.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242200 2016-11-11] (ELAN Microelectronics Corp.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-29] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-06] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-18] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9292504 2016-12-21] (Piriform Ltd) HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd) HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.) HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation) HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\MountPoints2: {bc40a69c-704c-11e7-95ba-e8039a87635c} - "D:\Lenovo_Suite.exe" HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\MountPoints2: {da6216c2-7365-11e7-95ba-e8039a87635c} - "D:\AutoRun.exe" HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\MountPoints2: {da621750-7365-11e7-95ba-e8039a87635c} - "D:\AutoRun.exe" HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\...\MountPoints2: {da6218a9-7365-11e7-95ba-e8039a87635c} - "D:\AutoRun.exe" GroupPolicy: Restriction <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{f2d00ac4-2cd7-41f9-a52c-26c2366b94ff}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{f2fb60fd-65c9-4102-a135-5589ed81d6e5}: [NameServer] 85.118.197.4 85.118.197.68 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com SearchScopes: HKLM -> DefaultScope value is missing SearchScopes: HKU\S-1-5-21-4134839552-3122026374-3985651594-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 SearchScopes: HKU\S-1-5-21-4134839552-3122026374-3985651594-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-07-05] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-19] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-06-18] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-26] (Oracle Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-07-19] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-26] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-05] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-05] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-05] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-05] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 467wl01d.default-1493924236225 FF ProfilePath: C:\Users\Vezuvius\AppData\Roaming\Mozilla\Firefox\Profiles\467wl01d.default-1493924236225 [2017-07-29] FF Extension: (convert2mp3.net YouTube2MP3 Converter) - C:\Users\Vezuvius\AppData\Roaming\Mozilla\Firefox\Profiles\467wl01d.default-1493924236225\Extensions\info@convert2mp3.net.xpi [2017-06-27] FF Extension: (AdBlocker for YouTube™) - C:\Users\Vezuvius\AppData\Roaming\Mozilla\Firefox\Profiles\467wl01d.default-1493924236225\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2017-05-20] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-25] () FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-25] () FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-26] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-27] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-27] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File] Chrome: ======= CHR DefaultProfile: Profile 1 CHR DefaultSearchURL: Profile 1 -> hxxp://srch.bar/{searchTerms} CHR DefaultSuggestURL: Profile 1 -> hxxp://srch.bar/?s={searchTerms} CHR Profile: C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-28] CHR Extension: (Google Преводач) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-05-04] CHR Extension: (Google Диск) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-03] CHR Extension: (YouTube) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-03] CHR Extension: (Google Документи офлайн) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-03] CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-03] CHR Extension: (Gmail) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-03] CHR Extension: (Chrome Media Router) - C:\Users\Vezuvius\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-14] CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-4134839552-3122026374-3985651594-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated) R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-18] (Advanced Micro Devices, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4412104 2017-07-18] (Microsoft Corporation) S2 Connection Manager. RunOuc; C:\Program Files (x86)\Connection Manager\UpdateDog\ouc.exe [656976 2013-05-21] () S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [129752 2016-11-11] (ELAN Microelectronics Corp.) R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed] S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed] R2 FoxitReaderService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe [1659456 2017-06-29] (Foxit Software Inc.) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-04-10] () R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-07-26] (TeamViewer GmbH) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.) S3 Andbus; C:\WINDOWS\System32\drivers\lgandbus64.sys [19456 2012-03-02] (LG Electronics Inc.) S3 AndDiag; C:\WINDOWS\System32\drivers\lganddiag64.sys [27648 2012-03-02] (LG Electronics Inc.) S3 AndGps; C:\WINDOWS\System32\drivers\lgandgps64.sys [27136 2012-03-02] (LG Electronics Inc.) S3 AndNetDiag; C:\WINDOWS\System32\drivers\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.) S3 AndNetDiag2; C:\WINDOWS\System32\drivers\lgandnetdiag264.sys [29184 2012-07-03] (LG Electronics Inc.) S3 AndNetGps; C:\WINDOWS\System32\drivers\lgandnetgps64.sys [28160 2012-07-03] (LG Electronics Inc.) R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Advanced Micro Devices) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-01-26] (www.winchiphead.com) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-12-06] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-12-06] (Disc Soft Ltd) S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [41024 2015-09-23] (ELAN Microelectronic Corp.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek ) S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] () S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-07-22] (QUALCOMM Incorporated) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU Co., LTD.) S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU Co., LTD.) S3 usbbus; C:\WINDOWS\System32\drivers\lgx64bus.sys [17920 2012-03-02] (LG Electronics Inc.) S3 UsbDiag; C:\WINDOWS\System32\drivers\lgx64diag.sys [28160 2012-03-02] (LG Electronics Inc.) S3 UsbGps; C:\WINDOWS\System32\drivers\lgx64gps.sys [27136 2012-03-02] (LG Electronics Inc.) S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [25592 2015-06-15] (Windows (R) Win 7 DDK provider) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation) R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-05-21] (Zemana Ltd.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-07-29 23:46 - 2017-07-29 12:55 - 101449728 _____ C:\WINDOWS\system32\config\SOFTWARE 2017-07-29 23:44 - 2017-07-29 23:44 - 00000000 ____D C:\WINDOWS\Microsoft Antimalware 2017-07-29 13:47 - 2017-07-29 13:48 - 00018541 _____ C:\Users\Vezuvius\Desktop\FRST.txt 2017-07-29 13:47 - 2017-07-29 13:47 - 00000000 ____D C:\FRST 2017-07-29 13:06 - 2017-07-29 13:06 - 02381312 _____ (Farbar) C:\Users\Vezuvius\Desktop\FRST64.exe 2017-07-29 12:37 - 2017-07-29 13:05 - 00000000 ___HD C:\Users\Public\Documents\AdobeGC 2017-07-29 11:14 - 2017-07-29 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connection Manager 2017-07-29 11:14 - 2017-07-29 11:14 - 00000000 ____D C:\ProgramData\Connection Manager 2017-07-29 11:13 - 2017-07-29 11:14 - 00000000 ____D C:\Program Files (x86)\Connection Manager 2017-07-29 11:13 - 2013-06-29 12:17 - 00246272 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_juwwanecm.sys 2017-07-29 11:13 - 2013-03-04 11:32 - 00110592 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcacm.sys 2017-07-29 11:13 - 2013-03-04 11:32 - 00091648 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jubusenum.sys 2017-07-29 11:13 - 2013-03-04 11:32 - 00077312 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcecm.sys 2017-07-29 11:13 - 2013-03-04 11:32 - 00030720 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_juextctrl.sys 2017-07-29 11:13 - 2013-01-25 04:16 - 00109568 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwusbdev.sys 2017-07-29 11:13 - 2012-12-22 04:46 - 00014976 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys 2017-07-29 11:13 - 2012-08-20 03:37 - 01490656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01007.dll 2017-07-29 11:13 - 2010-10-08 11:59 - 00032768 _____ (Huawei Tech. Co., Ltd.) C:\WINDOWS\system32\Drivers\ewdcsc.sys 2017-07-29 11:13 - 2010-09-26 13:09 - 00022016 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwupgrade.sys 2017-07-29 11:13 - 2010-08-06 02:43 - 01001472 _____ (DiBcom SA) C:\WINDOWS\system32\Drivers\mod7700.sys 2017-07-29 11:12 - 2017-07-29 11:14 - 00000000 ____D C:\ProgramData\DatacardService 2017-07-28 22:56 - 2017-07-28 22:56 - 00012756 _____ C:\Users\Vezuvius\Desktop\tempdecal.wad 2017-07-28 21:48 - 2017-07-28 21:48 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsignaed761161c195ba5 2017-07-28 21:47 - 2017-07-28 21:47 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\MPC-HC 2017-07-28 21:42 - 2017-07-28 21:42 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsign45c6284a8e499856 2017-07-28 21:41 - 2017-07-28 21:41 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsignf5ce8b2dfbc23b05 2017-07-28 21:41 - 2017-07-28 21:41 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsigndc27872901c039fb 2017-07-28 21:40 - 2017-07-28 21:40 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsigndcf1ec6a777a2558 2017-07-28 21:40 - 2017-07-28 21:40 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsign500f796b4ab32198 2017-07-27 22:21 - 2017-07-27 21:56 - 206874496 ____N C:\Users\Vezuvius\Desktop\Lenovo_A1000_VID_20170727_215141.mp4 2017-07-27 13:46 - 2017-07-27 13:46 - 00003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4134839552-3122026374-3985651594-1002 2017-07-25 10:12 - 2017-07-25 10:12 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsigne86cb57f8856a376 2017-07-25 10:12 - 2017-07-25 10:12 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsigndf7a0c6442528816 2017-07-25 10:12 - 2017-07-25 10:12 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Tempzxpsign19465079a430dc9d 2017-07-24 11:48 - 2017-07-24 11:48 - 00476928 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-07-22 18:54 - 2017-07-22 18:54 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\TeamViewer 2017-07-22 18:49 - 2017-07-29 07:47 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk 2017-07-22 18:49 - 2017-07-29 07:47 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2017-07-21 18:18 - 2017-07-21 18:18 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\NetworkTiles 2017-07-21 15:15 - 2017-07-21 15:16 - 00000000 ____D C:\Users\Vezuvius\Downloads\Malwarebytes Anti-Malware Premium v3.1.2.1733 RePack 2017-07-21 15:15 - 2017-07-21 15:15 - 00000000 ____D C:\Users\Vezuvius\AppData\LocalLow\uTorrent 2017-07-19 14:46 - 2017-07-19 14:46 - 00000992 _____ C:\Users\Vezuvius\Desktop\Counter-Strike 1.6 LH 2013.lnk 2017-07-19 14:46 - 2017-07-19 14:46 - 00000959 _____ C:\Users\Vezuvius\Desktop\UCP - Counter-Strike 1.6 LH 2013.lnk 2017-07-19 14:46 - 2017-07-19 14:46 - 00000917 _____ C:\Users\Vezuvius\Desktop\Counter-Strike Tool's.lnk 2017-07-19 14:46 - 2017-07-19 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 LH 2013 2017-07-19 02:26 - 2017-07-19 02:26 - 00000279 _____ C:\Users\Vezuvius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recycle Bin.lnk 2017-07-18 13:47 - 2017-07-18 13:49 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Auslogics 2017-07-18 13:47 - 2017-07-18 13:47 - 00000000 ____D C:\ProgramData\TEMP 2017-07-18 13:37 - 2017-07-18 13:37 - 00733443 _____ (Marc Richarme) C:\Users\Vezuvius\Desktop\_83-.exe 2017-07-18 13:06 - 2017-07-18 13:06 - 00000765 _____ C:\Users\Vezuvius\Desktop\Downloads - Shortcut.lnk 2017-07-18 12:48 - 2017-07-18 12:51 - 00014618 _____ C:\Users\Vezuvius\Desktop\TrackerScheme.res 2017-07-18 12:23 - 1998-06-18 00:00 - 00089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5DB.DLL 2017-07-16 20:38 - 2017-07-16 20:39 - 219570826 ____R () C:\Users\Vezuvius\Downloads\counter-strike1.6s.exe 2017-07-16 20:36 - 2017-07-21 16:44 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2017-07-16 20:32 - 2017-07-16 20:34 - 268592965 ____R (CSwarzone) C:\Users\Vezuvius\Downloads\Counter-Strike.exe 2017-07-16 18:10 - 2017-07-16 18:11 - 246109307 ____R (LongHorn ) C:\Users\Vezuvius\Downloads\lh2013.exe 2017-07-16 05:09 - 2017-07-18 13:11 - 00000000 ____D C:\Users\Vezuvius\Desktop\ВИДЕО КЛИПОВЕ 2017-07-14 23:24 - 2017-07-14 23:24 - 00000000 ____D C:\Users\Vezuvius\Documents\League of Legends 2017-07-14 23:16 - 2017-07-14 23:16 - 00000000 ____D C:\ProgramData\Riot Games 2017-07-14 23:16 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll 2017-07-14 23:16 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll 2017-07-14 23:16 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll 2017-07-14 23:16 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll 2017-07-14 23:16 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll 2017-07-14 23:15 - 2017-07-14 23:15 - 00000000 ____D C:\Riot Games 2017-07-14 23:15 - 2017-07-14 23:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2017-07-14 23:13 - 2017-07-14 23:16 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Riot Games 2017-07-14 23:13 - 2017-07-14 23:13 - 32529256 _____ (Riot Games) C:\Users\Vezuvius\Downloads\LeagueofLegends_EUNE_Installer_2016_11_10.exe 2017-07-13 16:35 - 2017-07-13 16:45 - 00000000 ____D C:\Users\Vezuvius\Desktop\Retro_cool_Music 2017-07-13 16:29 - 2017-07-16 18:46 - 00000000 ____D C:\Users\Vezuvius\Downloads\Prison Break - Season 03 DVDRip (BGAUDIO) 2017-07-12 15:07 - 2017-07-07 09:37 - 31652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll 2017-07-12 15:07 - 2017-07-07 09:37 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll 2017-07-12 15:07 - 2017-07-07 09:31 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2017-07-12 15:07 - 2017-07-07 09:30 - 02165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2017-07-12 15:07 - 2017-07-07 09:30 - 00750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2017-07-12 15:07 - 2017-07-07 09:29 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2017-07-12 15:07 - 2017-07-07 09:27 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2017-07-12 15:07 - 2017-07-07 09:26 - 20373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2017-07-12 15:07 - 2017-07-07 09:26 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2017-07-12 15:07 - 2017-07-07 09:25 - 00035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll 2017-07-12 15:07 - 2017-07-07 09:14 - 02956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-07-12 15:07 - 2017-07-07 09:14 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2017-07-12 15:07 - 2017-07-07 09:14 - 00790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2017-07-12 15:07 - 2017-07-07 09:10 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2017-07-12 15:07 - 2017-07-07 09:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll 2017-07-12 15:07 - 2017-07-07 09:07 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll 2017-07-12 15:07 - 2017-07-07 09:06 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll 2017-07-12 15:07 - 2017-07-07 09:05 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2017-07-12 15:07 - 2017-07-07 09:05 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2017-07-12 15:07 - 2017-07-07 09:05 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2017-07-12 15:07 - 2017-07-07 09:04 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2017-07-12 15:07 - 2017-07-07 09:04 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2017-07-12 15:07 - 2017-07-07 09:04 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2017-07-12 15:07 - 2017-07-07 09:03 - 06123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2017-07-12 15:07 - 2017-07-07 09:03 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2017-07-12 15:07 - 2017-07-07 09:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2017-07-12 15:07 - 2017-07-07 09:02 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2017-07-12 15:07 - 2017-07-07 09:02 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2017-07-12 15:07 - 2017-07-07 09:01 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-07-12 15:07 - 2017-07-07 09:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2017-07-12 15:07 - 2017-07-07 09:00 - 07596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2017-07-12 15:07 - 2017-07-07 09:00 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2017-07-12 15:07 - 2017-07-07 09:00 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2017-07-12 15:07 - 2017-07-07 09:00 - 01565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2017-07-12 15:07 - 2017-07-07 09:00 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2017-07-12 15:07 - 2017-07-07 08:59 - 03656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-07-12 15:07 - 2017-07-07 08:59 - 01355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll 2017-07-12 15:07 - 2017-07-07 08:59 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2017-07-12 15:07 - 2017-07-07 08:58 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2017-07-12 15:07 - 2017-07-07 08:58 - 02782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2017-07-12 15:07 - 2017-07-07 08:58 - 01237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll 2017-07-12 15:07 - 2017-07-07 08:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2017-07-12 15:07 - 2017-07-07 08:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2017-07-12 15:07 - 2017-07-07 08:53 - 01301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll 2017-07-12 15:07 - 2017-07-07 08:53 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe 2017-07-12 15:07 - 2017-06-20 08:15 - 01620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2017-07-12 15:07 - 2017-06-20 08:15 - 00455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll 2017-07-12 15:07 - 2017-06-20 08:14 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2017-07-12 15:07 - 2017-06-20 08:13 - 00787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2017-07-12 15:07 - 2017-06-20 08:06 - 00754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2017-07-12 15:07 - 2017-06-20 08:06 - 00278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll 2017-07-12 15:07 - 2017-06-20 08:05 - 00438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll 2017-07-12 15:07 - 2017-06-20 08:04 - 01077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll 2017-07-12 15:07 - 2017-06-20 08:04 - 00181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2017-07-12 15:07 - 2017-06-20 08:04 - 00049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll 2017-07-12 15:07 - 2017-06-20 08:03 - 05806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2017-07-12 15:07 - 2017-06-20 08:02 - 01121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2017-07-12 15:07 - 2017-06-20 08:02 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll 2017-07-12 15:07 - 2017-06-20 08:01 - 00176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll 2017-07-12 15:07 - 2017-06-20 07:49 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll 2017-07-12 15:07 - 2017-06-20 07:49 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll 2017-07-12 15:07 - 2017-06-20 07:45 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll 2017-07-12 15:07 - 2017-06-20 07:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll 2017-07-12 15:07 - 2017-06-20 07:43 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll 2017-07-12 15:07 - 2017-06-20 07:43 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll 2017-07-12 15:07 - 2017-06-20 07:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll 2017-07-12 15:07 - 2017-06-20 07:42 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll 2017-07-12 15:07 - 2017-06-20 07:42 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2017-07-12 15:07 - 2017-06-20 07:42 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll 2017-07-12 15:07 - 2017-06-20 07:42 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll 2017-07-12 15:07 - 2017-06-20 07:41 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll 2017-07-12 15:07 - 2017-06-20 07:40 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2017-07-12 15:07 - 2017-06-20 07:40 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll 2017-07-12 15:07 - 2017-06-20 07:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll 2017-07-12 15:07 - 2017-06-20 07:39 - 02671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2017-07-12 15:07 - 2017-06-20 07:39 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2017-07-12 15:07 - 2017-06-20 07:39 - 00646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2017-07-12 15:07 - 2017-06-20 07:39 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll 2017-07-12 15:07 - 2017-06-20 07:39 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2017-07-12 15:07 - 2017-06-20 07:38 - 01451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2017-07-12 15:07 - 2017-06-20 07:38 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe 2017-07-12 15:07 - 2017-06-20 07:38 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2017-07-12 15:07 - 2017-06-20 07:38 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2017-07-12 15:07 - 2017-06-20 07:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2017-07-12 15:07 - 2017-06-20 07:35 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2017-07-12 15:07 - 2017-06-20 07:35 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2017-07-12 15:07 - 2017-06-20 07:35 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll 2017-07-12 15:07 - 2017-06-20 07:34 - 02750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2017-07-12 15:07 - 2017-06-20 07:31 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2017-07-12 15:07 - 2017-06-20 07:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll 2017-07-12 15:07 - 2017-06-20 07:30 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2017-07-12 15:06 - 2017-07-07 09:57 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2017-07-12 15:06 - 2017-07-07 09:57 - 00125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2017-07-12 15:06 - 2017-07-07 09:39 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2017-07-12 15:06 - 2017-07-07 09:39 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2017-07-12 15:06 - 2017-07-07 09:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2017-07-12 15:06 - 2017-07-07 09:31 - 05820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2017-07-12 15:06 - 2017-07-07 09:31 - 00129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2017-07-12 15:06 - 2017-07-07 09:30 - 00949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2017-07-12 15:06 - 2017-07-07 09:29 - 00123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll 2017-07-12 15:06 - 2017-07-07 09:26 - 01195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2017-07-12 15:06 - 2017-07-07 09:26 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2017-07-12 15:06 - 2017-07-07 09:23 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2017-07-12 15:06 - 2017-07-07 09:13 - 13839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2017-07-12 15:06 - 2017-07-07 09:12 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2017-07-12 15:06 - 2017-07-07 09:09 - 20504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-07-12 15:06 - 2017-07-07 09:09 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2017-07-12 15:06 - 2017-07-07 09:05 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-07-12 15:06 - 2017-07-07 09:05 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-07-12 15:06 - 2017-07-07 09:05 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll 2017-07-12 15:06 - 2017-07-07 09:04 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2017-07-12 15:06 - 2017-07-07 09:04 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2017-07-12 15:06 - 2017-07-07 09:00 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2017-07-12 15:06 - 2017-07-07 08:59 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2017-07-12 15:06 - 2017-07-07 08:59 - 01494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2017-07-12 15:06 - 2017-07-07 08:58 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2017-07-12 15:06 - 2017-06-20 08:34 - 00192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2017-07-12 15:06 - 2017-06-20 08:09 - 00406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2017-07-12 15:06 - 2017-06-20 08:08 - 04469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2017-07-12 15:06 - 2017-06-20 08:07 - 02475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2017-07-12 15:06 - 2017-06-20 08:07 - 00346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll 2017-07-12 15:06 - 2017-06-20 08:07 - 00138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll 2017-07-12 15:06 - 2017-06-20 08:04 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2017-07-12 15:06 - 2017-06-20 08:04 - 01178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2017-07-12 15:06 - 2017-06-20 08:03 - 00864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2017-07-12 15:06 - 2017-06-20 08:03 - 00443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2017-07-12 15:06 - 2017-06-20 07:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll 2017-07-12 15:06 - 2017-06-20 07:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2017-07-12 15:06 - 2017-06-20 07:43 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll 2017-07-12 15:06 - 2017-06-20 07:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2017-07-12 15:06 - 2017-06-20 07:43 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2017-07-12 15:06 - 2017-06-20 07:42 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll 2017-07-12 15:06 - 2017-06-20 07:42 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2017-07-12 15:06 - 2017-06-20 07:41 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2017-07-12 15:06 - 2017-06-20 07:41 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2017-07-12 15:06 - 2017-06-20 07:41 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2017-07-12 15:06 - 2017-06-20 07:41 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll 2017-07-12 15:06 - 2017-06-20 07:40 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2017-07-12 15:06 - 2017-06-20 07:40 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2017-07-12 15:06 - 2017-06-20 07:40 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll 2017-07-12 15:06 - 2017-06-20 07:40 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll 2017-07-12 15:06 - 2017-06-20 07:38 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2017-07-12 15:06 - 2017-06-20 07:38 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2017-07-12 15:06 - 2017-06-20 07:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2017-07-12 15:06 - 2017-06-20 07:34 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2017-07-12 15:06 - 2017-06-20 07:34 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2017-07-12 15:06 - 2017-06-20 07:34 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2017-07-12 15:06 - 2017-06-20 07:34 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2017-07-12 15:06 - 2017-06-20 07:30 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv 2017-07-12 15:06 - 2017-06-20 07:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll 2017-07-12 15:04 - 2017-07-07 10:13 - 00336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2017-07-12 15:04 - 2017-07-07 10:11 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2017-07-12 15:04 - 2017-07-07 09:27 - 01640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2017-07-12 15:04 - 2017-07-07 09:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe 2017-07-12 15:04 - 2017-06-20 09:00 - 00558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll 2017-07-12 15:04 - 2017-06-20 08:12 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2017-07-12 15:04 - 2017-06-20 08:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll 2017-07-12 15:04 - 2017-06-20 08:05 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2017-07-12 15:04 - 2017-06-20 08:02 - 03377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2017-07-12 15:04 - 2017-06-20 08:00 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2017-07-12 15:03 - 2017-07-07 10:24 - 00117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2017-07-12 15:03 - 2017-07-07 10:22 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-07-12 15:03 - 2017-07-07 10:21 - 32688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll 2017-07-12 15:03 - 2017-07-07 10:20 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2017-07-12 15:03 - 2017-07-07 10:17 - 01017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2017-07-12 15:03 - 2017-07-07 10:14 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2017-07-12 15:03 - 2017-07-07 10:14 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2017-07-12 15:03 - 2017-07-07 10:12 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2017-07-12 15:03 - 2017-07-07 10:12 - 00318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2017-07-12 15:03 - 2017-07-07 10:12 - 00228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2017-07-12 15:03 - 2017-07-07 10:11 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2017-07-12 15:03 - 2017-07-07 10:10 - 21353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-07-12 15:03 - 2017-07-07 10:10 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2017-07-12 15:03 - 2017-07-07 10:09 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll 2017-07-12 15:03 - 2017-07-07 09:27 - 03670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-07-12 15:03 - 2017-07-07 09:27 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2017-07-12 15:03 - 2017-07-07 09:27 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll 2017-07-12 15:03 - 2017-07-07 09:24 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll 2017-07-12 15:03 - 2017-07-07 09:23 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2017-07-12 15:03 - 2017-07-07 09:23 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2017-07-12 15:03 - 2017-07-07 09:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2017-07-12 15:03 - 2017-07-07 09:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll 2017-07-12 15:03 - 2017-07-07 09:22 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2017-07-12 15:03 - 2017-07-07 09:21 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2017-07-12 15:03 - 2017-07-07 09:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll 2017-07-12 15:03 - 2017-07-07 09:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2017-07-12 15:03 - 2017-07-07 09:19 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2017-07-12 15:03 - 2017-07-07 09:19 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll 2017-07-12 15:03 - 2017-07-07 09:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2017-07-12 15:03 - 2017-07-07 09:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll 2017-07-12 15:03 - 2017-07-07 09:17 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2017-07-12 15:03 - 2017-07-07 09:17 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2017-07-12 15:03 - 2017-07-07 09:17 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2017-07-12 15:03 - 2017-07-07 09:17 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2017-07-12 15:03 - 2017-07-07 09:16 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2017-07-12 15:03 - 2017-07-07 09:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2017-07-12 15:03 - 2017-07-07 09:15 - 08238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-07-12 15:03 - 2017-07-07 09:15 - 00922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2017-07-12 15:03 - 2017-07-07 09:14 - 08211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2017-07-12 15:03 - 2017-07-07 09:14 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2017-07-12 15:03 - 2017-07-07 09:14 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2017-07-12 15:03 - 2017-07-07 09:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 04730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-07-12 15:03 - 2017-07-07 09:12 - 01420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2017-07-12 15:03 - 2017-07-07 09:12 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2017-07-12 15:03 - 2017-07-07 09:11 - 00986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2017-07-12 15:03 - 2017-07-07 09:11 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2017-07-12 15:03 - 2017-07-07 09:10 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2017-07-12 15:03 - 2017-07-07 09:10 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-07-12 15:03 - 2017-07-07 09:08 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2017-07-12 15:03 - 2017-07-07 09:07 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2017-07-12 15:03 - 2017-07-07 09:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2017-07-12 15:03 - 2017-07-07 09:07 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll 2017-07-12 15:03 - 2017-07-07 09:04 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll 2017-07-12 15:03 - 2017-07-02 01:52 - 00031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin 2017-07-12 15:03 - 2017-06-20 09:03 - 00820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2017-07-12 15:03 - 2017-06-20 09:02 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2017-07-12 15:03 - 2017-06-20 08:59 - 06554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2017-07-12 15:03 - 2017-06-20 08:58 - 00833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2017-07-12 15:03 - 2017-06-20 08:57 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2017-07-12 15:03 - 2017-06-20 08:57 - 00204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll 2017-07-12 15:03 - 2017-06-20 08:16 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll 2017-07-12 15:03 - 2017-06-20 08:16 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll 2017-07-12 15:03 - 2017-06-20 08:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2017-07-12 15:03 - 2017-06-20 08:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll 2017-07-12 15:03 - 2017-06-20 08:13 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe 2017-07-12 15:03 - 2017-06-20 08:12 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2017-07-12 15:03 - 2017-06-20 08:12 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll 2017-07-12 15:03 - 2017-06-20 08:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll 2017-07-12 15:03 - 2017-06-20 08:10 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2017-07-12 15:03 - 2017-06-20 08:10 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll 2017-07-12 15:03 - 2017-06-20 08:09 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll 2017-07-12 15:03 - 2017-06-20 08:08 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2017-07-12 15:03 - 2017-06-20 08:08 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2017-07-12 15:03 - 2017-06-20 08:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll 2017-07-12 15:03 - 2017-06-20 08:08 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll 2017-07-12 15:03 - 2017-06-20 08:07 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2017-07-12 15:03 - 2017-06-20 08:07 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2017-07-12 15:03 - 2017-06-20 08:07 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2017-07-12 15:03 - 2017-06-20 08:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2017-07-12 15:03 - 2017-06-20 08:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll 2017-07-12 15:03 - 2017-06-20 08:05 - 04447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2017-07-12 15:03 - 2017-06-20 08:05 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll 2017-07-12 15:03 - 2017-06-20 08:05 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2017-07-12 15:03 - 2017-06-20 08:05 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2017-07-12 15:03 - 2017-06-20 08:05 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2017-07-12 15:03 - 2017-06-20 08:04 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2017-07-12 15:03 - 2017-06-20 08:04 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2017-07-12 15:03 - 2017-06-20 08:04 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2017-07-12 15:03 - 2017-06-20 08:04 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2017-07-12 15:03 - 2017-06-20 08:04 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll 2017-07-12 15:03 - 2017-06-20 08:03 - 01396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2017-07-12 15:03 - 2017-06-20 08:02 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2017-07-12 15:03 - 2017-06-20 08:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2017-07-12 15:03 - 2017-06-20 08:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2017-07-12 15:03 - 2017-06-20 08:01 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2017-07-12 15:03 - 2017-06-20 08:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2017-07-12 15:03 - 2017-06-20 08:01 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2017-07-12 15:03 - 2017-06-20 08:00 - 03057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2017-07-12 15:03 - 2017-06-20 07:59 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2017-07-12 15:03 - 2017-06-20 07:56 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2017-07-12 15:02 - 2017-07-07 17:00 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll 2017-07-12 15:02 - 2017-07-07 10:27 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2017-07-12 15:02 - 2017-07-07 10:26 - 01065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2017-07-12 15:02 - 2017-07-07 10:25 - 00899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2017-07-12 15:02 - 2017-07-07 10:23 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2017-07-12 15:02 - 2017-07-07 10:22 - 01186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2017-07-12 15:02 - 2017-07-07 10:22 - 00119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2017-07-12 15:02 - 2017-07-07 10:21 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll 2017-07-12 15:02 - 2017-07-07 10:20 - 00519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2017-07-12 15:02 - 2017-07-07 10:20 - 00382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2017-07-12 15:02 - 2017-07-07 10:15 - 02444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-07-12 15:02 - 2017-07-07 10:14 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2017-07-12 15:02 - 2017-07-07 10:14 - 01171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2017-07-12 15:02 - 2017-07-07 10:10 - 01337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2017-07-12 15:02 - 2017-07-07 10:10 - 01325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2017-07-12 15:02 - 2017-07-07 10:10 - 00372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2017-07-12 15:02 - 2017-07-07 10:10 - 00254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2017-07-12 15:02 - 2017-07-07 10:07 - 01106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2017-07-12 15:02 - 2017-07-07 10:07 - 00058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2017-07-12 15:02 - 2017-07-07 09:40 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-07-12 15:02 - 2017-07-07 09:27 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2017-07-12 15:02 - 2017-07-07 09:27 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll 2017-07-12 15:02 - 2017-07-07 09:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2017-07-12 15:02 - 2017-07-07 09:27 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll 2017-07-12 15:02 - 2017-07-07 09:26 - 17364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2017-07-12 15:02 - 2017-07-07 09:25 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2017-07-12 15:02 - 2017-07-07 09:21 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll 2017-07-12 15:02 - 2017-07-07 09:20 - 23681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-07-12 15:02 - 2017-07-07 09:20 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2017-07-12 15:02 - 2017-07-07 09:19 - 07149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2017-07-12 15:02 - 2017-07-07 09:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2017-07-12 15:02 - 2017-07-07 09:18 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2017-07-12 15:02 - 2017-07-07 09:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2017-07-12 15:02 - 2017-07-07 09:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll 2017-07-12 15:02 - 2017-07-07 09:17 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2017-07-12 15:02 - 2017-07-07 09:17 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2017-07-12 15:02 - 2017-07-07 09:16 - 12786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-07-12 15:02 - 2017-07-07 09:14 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2017-07-12 15:02 - 2017-07-07 09:14 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2017-07-12 15:02 - 2017-07-07 09:13 - 05892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2017-07-12 15:02 - 2017-07-07 09:12 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2017-07-12 15:02 - 2017-07-07 09:12 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2017-07-12 15:02 - 2017-07-07 09:12 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 03139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 02649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2017-07-12 15:02 - 2017-07-07 09:11 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2017-07-12 15:02 - 2017-07-07 09:10 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2017-07-12 15:02 - 2017-07-07 09:06 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2017-07-12 15:02 - 2017-07-07 09:06 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll 2017-07-12 15:02 - 2017-07-07 09:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe 2017-07-12 15:02 - 2017-07-07 09:04 - 01703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2017-07-12 15:02 - 2017-07-07 09:04 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll 2017-07-12 15:02 - 2017-06-20 09:18 - 01564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-07-12 15:02 - 2017-06-20 09:18 - 00096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-07-12 15:02 - 2017-06-20 09:17 - 00629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-07-12 15:02 - 2017-06-20 09:17 - 00544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-07-12 15:02 - 2017-06-20 09:17 - 00334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-07-12 15:02 - 2017-06-20 09:17 - 00136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-07-12 15:02 - 2017-06-20 09:17 - 00034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-07-12 15:02 - 2017-06-20 09:16 - 01214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-07-12 15:02 - 2017-06-20 09:16 - 00335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-07-12 15:02 - 2017-06-20 09:11 - 01395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2017-07-12 15:02 - 2017-06-20 09:11 - 00411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2017-07-12 15:02 - 2017-06-20 09:10 - 02327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2017-07-12 15:02 - 2017-06-20 09:10 - 01930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2017-07-12 15:02 - 2017-06-20 09:08 - 01242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2017-07-12 15:02 - 2017-06-20 09:05 - 01057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2017-07-12 15:02 - 2017-06-20 09:04 - 04847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2017-07-12 15:02 - 2017-06-20 09:04 - 00472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2017-07-12 15:02 - 2017-06-20 09:02 - 02645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2017-07-12 15:02 - 2017-06-20 09:00 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2017-07-12 15:02 - 2017-06-20 09:00 - 00142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys 2017-07-12 15:02 - 2017-06-20 08:59 - 01220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2017-07-12 15:02 - 2017-06-20 08:59 - 01054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2017-07-12 15:02 - 2017-06-20 08:59 - 00583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2017-07-12 15:02 - 2017-06-20 08:59 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2017-07-12 15:02 - 2017-06-20 08:58 - 00406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll 2017-07-12 15:02 - 2017-06-20 08:58 - 00203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll 2017-07-12 15:02 - 2017-06-20 08:14 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys 2017-07-12 15:02 - 2017-06-20 08:12 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll 2017-07-12 15:02 - 2017-06-20 08:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys 2017-07-12 15:02 - 2017-06-20 08:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll 2017-07-12 15:02 - 2017-06-20 08:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2017-07-12 15:02 - 2017-06-20 08:10 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2017-07-12 15:02 - 2017-06-20 08:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe 2017-07-12 15:02 - 2017-06-20 08:09 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2017-07-12 15:02 - 2017-06-20 08:09 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll 2017-07-12 15:02 - 2017-06-20 08:08 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll 2017-07-12 15:02 - 2017-06-20 08:08 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll 2017-07-12 15:02 - 2017-06-20 08:08 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2017-07-12 15:02 - 2017-06-20 08:08 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2017-07-12 15:02 - 2017-06-20 08:07 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2017-07-12 15:02 - 2017-06-20 08:07 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2017-07-12 15:02 - 2017-06-20 08:07 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2017-07-12 15:02 - 2017-06-20 08:07 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll 2017-07-12 15:02 - 2017-06-20 08:06 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll 2017-07-12 15:02 - 2017-06-20 08:05 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2017-07-12 15:02 - 2017-06-20 08:05 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2017-07-12 15:02 - 2017-06-20 08:05 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2017-07-12 15:02 - 2017-06-20 08:05 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll 2017-07-12 15:02 - 2017-06-20 08:05 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll 2017-07-12 15:02 - 2017-06-20 08:04 - 01425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe 2017-07-12 15:02 - 2017-06-20 08:03 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2017-07-12 15:02 - 2017-06-20 08:02 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2017-07-12 15:02 - 2017-06-20 08:02 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2017-07-12 15:02 - 2017-06-20 08:02 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll 2017-07-12 15:02 - 2017-06-20 08:01 - 04536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2017-07-12 15:02 - 2017-06-20 08:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2017-07-12 15:02 - 2017-06-20 08:01 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2017-07-12 15:02 - 2017-06-20 08:00 - 02171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2017-07-12 15:02 - 2017-06-20 07:59 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2017-07-12 15:02 - 2017-06-20 07:59 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2017-07-12 15:02 - 2017-06-20 07:58 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2017-07-12 15:02 - 2017-06-20 07:57 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2017-07-12 15:02 - 2017-06-20 07:57 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll 2017-07-12 15:02 - 2017-06-20 07:56 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll 2017-07-12 15:02 - 2017-06-20 07:56 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv 2017-07-12 15:02 - 2017-06-20 07:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll 2017-07-12 15:01 - 2017-07-07 10:27 - 01147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2017-07-12 15:01 - 2017-07-07 10:27 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2017-07-12 15:01 - 2017-07-07 10:27 - 00965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2017-07-12 15:01 - 2017-07-07 10:27 - 00821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2017-07-12 15:01 - 2017-07-07 10:20 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2017-07-12 15:01 - 2017-07-07 10:13 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2017-07-12 15:01 - 2017-07-07 10:13 - 00554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2017-07-12 15:01 - 2017-07-07 10:13 - 00147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll 2017-07-12 15:01 - 2017-07-07 09:22 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2017-07-12 15:01 - 2017-07-07 09:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys 2017-07-12 15:01 - 2017-06-20 09:15 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-07-12 15:01 - 2017-06-20 09:06 - 00279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2017-07-12 15:01 - 2017-06-20 09:03 - 00179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll 2017-07-12 15:01 - 2017-06-20 09:03 - 00102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe 2017-07-12 15:01 - 2017-06-20 09:02 - 00426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll 2017-07-12 15:01 - 2017-06-20 08:13 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll 2017-07-12 15:01 - 2017-06-20 08:12 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2017-07-12 15:01 - 2017-06-20 08:10 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll 2017-07-12 15:01 - 2017-06-20 08:10 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll 2017-07-12 15:01 - 2017-06-20 08:07 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2017-07-12 15:01 - 2017-06-20 08:07 - 00916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2017-07-12 15:01 - 2017-06-20 08:05 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2017-07-12 15:01 - 2017-06-20 08:04 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2017-07-12 15:01 - 2017-06-20 08:02 - 03204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll 2017-07-11 13:27 - 2017-07-11 13:27 - 00000000 ____D C:\ProgramData\ATI 2017-07-11 13:26 - 2017-07-11 13:27 - 00000000 ____D C:\Program Files\AMD Quick Stream 2017-07-11 13:26 - 2017-07-11 13:26 - 00000000 ____D C:\Users\Vezuvius\Documents\Any Video Converter 2017-07-11 13:26 - 2017-07-11 13:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream 2017-07-11 13:26 - 2017-07-11 13:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2017-07-11 13:25 - 2017-07-11 13:25 - 00000000 ____D C:\Program Files (x86)\AMD 2017-07-11 12:39 - 2017-07-18 13:26 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Anvsoft 2017-07-11 12:39 - 2017-07-11 12:39 - 00000000 ____D C:\Program Files (x86)\Anvsoft 2017-07-11 12:39 - 2015-04-03 01:14 - 00229056 _____ (AppEx Networks Corporation) C:\WINDOWS\system32\Drivers\appexDrv.sys 2017-07-08 18:12 - 2017-07-08 18:17 - 00000444 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2017-07-08 16:42 - 2017-07-11 11:39 - 00000000 ____D C:\Users\Vezuvius\Desktop\Car-Crazy-Music 2017-07-08 06:49 - 2017-07-08 06:49 - 00002222 _____ C:\Users\Public\Desktop\Foxit Reader.lnk 2017-07-08 06:49 - 2017-07-08 06:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 2017-07-05 19:09 - 2017-07-05 19:10 - 02308157 _____ C:\Users\Vezuvius\Desktop\Запиши_20170705144042.m4a 2017-07-04 17:28 - 2017-07-29 12:50 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MessengerForDesktop.com 2017-07-04 17:27 - 2017-07-29 12:50 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\messengerfordesktop 2017-07-04 16:40 - 2017-07-09 12:11 - 00001224 _____ C:\Users\Vezuvius\Desktop\New Text Document.txt 2017-07-04 12:52 - 2017-07-04 12:52 - 00000000 ____D C:\Users\Vezuvius\Desktop\Рецепти 2017-07-03 09:45 - 2017-07-03 09:45 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\PlaysTV 2017-07-01 09:07 - 2017-07-01 09:07 - 00000000 __SHD C:\found.001 2017-06-30 02:33 - 2017-06-30 02:33 - 00000000 __SHD C:\found.000 ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-07-29 13:47 - 2017-05-21 13:52 - 00041751 _____ C:\WINDOWS\ZAM_Guard.krnl.trace 2017-07-29 13:44 - 2017-01-30 15:22 - 00000000 ____D C:\Users\Vezuvius\AppData\LocalLow\Mozilla 2017-07-29 13:16 - 2016-12-06 22:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2017-07-29 12:57 - 2017-06-27 14:08 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Raptr 2017-07-29 12:56 - 2017-06-22 22:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-07-29 12:56 - 2017-05-21 13:52 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware 2017-07-29 12:55 - 2017-03-18 14:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-07-29 12:51 - 2017-06-22 22:57 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3C4A9BC7-531F-4BBF-9189-663B486AA8D3} 2017-07-29 12:51 - 2017-05-21 13:52 - 00066419 _____ C:\WINDOWS\ZAM.krnl.trace 2017-07-29 12:41 - 2017-06-22 23:00 - 01322946 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-07-29 12:27 - 2017-06-22 22:42 - 00000000 ____D C:\Users\Vezuvius 2017-07-29 11:18 - 2017-03-19 00:01 - 00000000 ____D C:\WINDOWS\INF 2017-07-29 11:14 - 2016-12-06 19:44 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\VirtualStore 2017-07-29 08:03 - 2017-06-22 22:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-07-28 21:42 - 2016-12-06 22:49 - 00000000 ____D C:\Users\Vezuvius\Documents\Adobe 2017-07-28 21:42 - 2016-12-06 19:44 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Adobe 2017-07-28 05:18 - 2017-03-19 00:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-07-27 13:46 - 2016-12-06 19:49 - 00002376 _____ C:\Users\Vezuvius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-07-27 13:46 - 2016-12-06 19:49 - 00000000 ___RD C:\Users\Vezuvius\OneDrive 2017-07-25 18:56 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-07-25 18:56 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-07-25 18:56 - 2016-12-06 22:43 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Adobe 2017-07-25 10:46 - 2017-03-19 00:03 - 00000000 ___HD C:\Program Files\WindowsApps 2017-07-25 10:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-07-24 11:50 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-07-24 11:46 - 2016-12-06 20:38 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\uTorrent 2017-07-21 16:46 - 2017-05-19 00:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-07-21 16:42 - 2017-01-30 15:22 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-07-21 16:42 - 2017-01-30 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-07-21 16:42 - 2016-12-06 20:21 - 00001241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-07-21 15:38 - 2016-12-06 19:49 - 00000000 ____D C:\Users\Vezuvius\AppData\Roaming\Skype 2017-07-21 11:50 - 2017-06-19 10:00 - 00000000 ____D C:\Users\Vezuvius\Desktop\Niki 2017-07-14 02:16 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\rescache 2017-07-12 21:11 - 2016-12-06 19:44 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ___SD C:\WINDOWS\system32\F12 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\migwiz 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\en-GB 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\appraiser 2017-07-12 17:46 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-07-12 17:45 - 2017-03-19 00:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-07-12 17:45 - 2017-03-19 00:03 - 00000000 ___RD C:\Program Files\Windows Defender 2017-07-12 17:45 - 2017-03-19 00:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2017-07-12 17:45 - 2017-03-19 00:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2017-07-12 17:45 - 2017-03-19 00:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2017-07-12 15:16 - 2017-03-18 23:51 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-07-12 15:13 - 2016-12-06 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-07-12 15:10 - 2016-12-06 21:10 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-07-11 13:26 - 2017-06-22 22:41 - 00000000 ____D C:\ProgramData\AMD 2017-07-11 13:26 - 2017-06-22 22:39 - 00000000 ____D C:\Program Files\AMD 2017-07-11 13:24 - 2016-12-07 03:05 - 00000000 ____D C:\AMD 2017-07-08 06:49 - 2016-12-06 20:43 - 00000000 ____D C:\ProgramData\Foxit Software 2017-07-03 10:22 - 2017-03-19 05:29 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN 2017-07-03 10:22 - 2017-03-19 05:29 - 00000000 ____D C:\WINDOWS\system32\WCN 2017-07-03 10:22 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2017-07-03 10:22 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2017-07-03 10:21 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-07-03 10:21 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\IME 2017-07-03 10:21 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\Help 2017-07-03 10:21 - 2017-03-19 00:03 - 00000000 ____D C:\Program Files\Common Files\System 2017-07-03 10:21 - 2017-03-18 14:40 - 00000000 ____D C:\WINDOWS\servicing 2017-07-03 02:01 - 2016-12-06 19:44 - 00000000 ____D C:\Users\Vezuvius\AppData\Local\Packages 2017-07-03 02:00 - 2017-06-27 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2017-07-03 02:00 - 2017-06-27 14:09 - 00000000 ____D C:\Program Files (x86)\Raptr Inc 2017-07-03 01:57 - 2017-03-19 00:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-07-01 09:10 - 2017-01-30 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-06-30 17:47 - 2017-03-19 00:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-06-30 17:47 - 2017-03-19 00:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2017-06-30 00:31 - 2017-06-28 19:23 - 00000000 ____D C:\Users\Vezuvius\Downloads\Prison Break - Season 01 (DVDrip Dual Audio) ==================== Files in the root of some directories ======= 2016-12-07 13:56 - 2016-12-07 17:12 - 0000033 _____ () C:\Users\Vezuvius\AppData\Roaming\AdobeWLCMCache.dat 2014-11-18 14:22 - 2014-11-18 14:22 - 33160370 ____R () C:\Users\Vezuvius\AppData\Roaming\K.J_121026.exe 2017-06-22 22:39 - 2017-06-22 22:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-07-29 07:45 ==================== End of FRST.txt ============================
  24. Здравейте. Имам проблем. Разбрах, че имам вирус, защото започнаха да ми се отварят от само себе си прозорци на различни страници в браузера ми. Сега вече няма и интернет на компютъра си, а той е свързан с кабел, не мисля, че проблема е с кабел. Какво да направя? Дори и да нямам интернет страниците отново се отварят, но заради липсата на нет и не зареждат. Благодаря ви предварително!
×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.