Премини към съдържанието
От 1-ви септември 2021 г., вход във форумите ще е възможен само с имейл адрес вместо потребителско име. Ако не помните имейла с който сте се регистрирали, вижте го в настройките на профила си. ×
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

По-бавен компютър


Препоръчан отговор


Усеща се леко забавяне в работата на машината най-вече при google chrome 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-10-2014 01
Ran by Venci (administrator) on VENCI-PC on 20-10-2014 23:10:13
Running from C:\Users\Venci\Desktop
Loaded Profile: Venci (Available profiles: Venci)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Английски (Съединени щати)
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Trace Software International) C:\Program Files\SolidWorks Corp\SolidWorks Electrical\server\EwServer.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\dispatcher.exe
() C:\Program Files\Genymobile\Genymotion\genymotion.exe
() C:\Program Files\Genymobile\Genymotion\player.exe
(Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe
() C:\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
() C:\Program Files\Oracle\VirtualBox\VBoxNetDHCP.exe
() C:\Program Files\Genymobile\Genymotion\tools\adb.exe
() C:\Program Files\Genymobile\Genymotion\tools\adb.exe
() C:\Program Files\Genymobile\Genymotion\tools\adb.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5618456 2013-09-12] (ESET)
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {1ce2e127-df60-11e3-86f4-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {36111fdf-c009-11e3-aea5-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {779e7243-32a3-11e4-8f16-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {91bf97d0-327b-11e4-bc29-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {c014bcf6-32b4-11e4-bc1b-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3328014198-438540201-1253216375-1001\...\MountPoints2: {c07cfd7b-bfbc-11e3-94e8-90e6ba33f1df} - H:\HTC_Sync_Manager_PC.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x55B66FC92BEBCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-04-08]
 
Chrome: 
=======
CHR Profile: C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Диск) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2002-01-01]
CHR Extension: (YouTube) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2002-01-01]
CHR Extension: (Adblock Plus) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-20]
CHR Extension: (Google Търсене) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2002-01-01]
CHR Extension: (Google Wallet) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-08]
CHR Extension: (Gmail) - C:\Users\Venci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2002-01-01]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 ewserver; C:\Program Files\SolidWorks Corp\SolidWorks Electrical\server\EwServer.exe [193024 2014-03-31] (Trace Software International) [File not signed]
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 RemoteSolverDispatcher; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [235656 2014-03-31] (Mentor Graphics Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2014-10-16] (SolidWorks) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2014-04-09] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S3 OSFMount; \??\C:\Users\Venci\Desktop\bin\OSFMount.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-20 23:10 - 2014-10-20 23:10 - 00010761 _____ () C:\Users\Venci\Desktop\FRST.txt
2014-10-20 23:09 - 2014-10-20 23:10 - 00000000 ____D () C:\FRST
2014-10-20 23:07 - 2014-10-20 23:07 - 02110976 _____ (Farbar) C:\Users\Venci\Desktop\FRST64.exe
2014-10-20 22:55 - 2014-10-20 23:00 - 00000996 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-20 22:55 - 2014-10-20 23:00 - 00000992 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-20 22:55 - 2014-10-20 22:55 - 00003992 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-20 22:55 - 2014-10-20 22:55 - 00003740 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-20 22:55 - 2014-10-20 22:55 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-20 22:55 - 2014-10-20 22:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-20 22:35 - 2014-10-20 22:35 - 00000552 _____ () C:\Windows\PFRO.log
2014-10-20 22:34 - 2014-10-20 22:35 - 00000056 _____ () C:\Windows\setupact.log
2014-10-20 22:34 - 2014-10-20 22:34 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-20 22:30 - 2014-10-20 22:31 - 00000000 ___SD () C:\ComboFix
2014-10-20 22:30 - 2011-06-26 09:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-10-20 22:30 - 2010-11-07 20:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-10-20 22:30 - 2009-04-20 07:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-10-20 22:30 - 2000-08-31 03:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-10-20 22:30 - 2000-08-31 03:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-10-20 22:30 - 2000-08-31 03:00 - 00098816 _____ () C:\Windows\sed.exe
2014-10-20 22:30 - 2000-08-31 03:00 - 00080412 _____ () C:\Windows\grep.exe
2014-10-20 22:30 - 2000-08-31 03:00 - 00068096 _____ () C:\Windows\zip.exe
2014-10-20 22:29 - 2014-10-20 22:30 - 00000000 ____D () C:\Qoobox
2014-10-20 22:29 - 2014-10-20 22:29 - 00000000 ____D () C:\Windows\erdnt
2014-10-20 22:26 - 2014-10-20 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-10-20 22:18 - 2014-10-20 22:20 - 00000000 ____D () C:\AdwCleaner
2014-10-20 22:04 - 2014-10-20 22:54 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\Opera
2014-10-20 22:04 - 2014-10-20 22:54 - 00000000 ____D () C:\Users\Venci\AppData\Local\Opera
2014-10-20 22:04 - 2014-10-20 22:54 - 00000000 ____D () C:\Program Files\Opera x64
2014-10-20 22:02 - 2014-10-20 22:03 - 14491632 _____ (Opera Software ASA) C:\Users\Venci\Downloads\Opera_1217_int_Setup_x64.exe
2014-10-20 21:50 - 2014-10-20 21:50 - 00000000 ____D () C:\Users\Venci\AppData\Local\Mozilla
2014-10-20 21:50 - 2014-10-20 21:50 - 00000000 ____D () C:\Users\Venci\AppData\Local\Macromedia
2014-10-20 12:08 - 2014-10-20 12:08 - 00000000 ____D () C:\Users\Venci\Desktop\Нова папка
2014-10-17 18:43 - 2014-10-17 18:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genymotion
2014-10-17 14:08 - 2014-10-17 14:26 - 00000400 __RSH () C:\ProgramData\ntuser.pol
2014-10-17 04:08 - 2014-10-17 04:08 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-10-17 04:08 - 2014-10-17 04:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2014-10-16 20:33 - 2014-10-16 20:54 - 00000000 ____D () C:\Windows\AutoKMS
2014-10-16 20:33 - 2014-10-16 20:33 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-10-16 20:27 - 2014-09-29 03:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 20:27 - 2014-09-20 03:09 - 17867776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 20:27 - 2014-09-20 02:55 - 02339328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 20:27 - 2014-09-20 02:54 - 10920960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 20:27 - 2014-09-20 02:50 - 01385472 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 20:27 - 2014-09-20 02:49 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 20:27 - 2014-09-20 02:48 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 20:27 - 2014-09-20 02:48 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-10-16 20:27 - 2014-09-20 02:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 20:27 - 2014-09-20 02:47 - 02157056 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 20:27 - 2014-09-20 02:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-10-16 20:27 - 2014-09-20 02:47 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 20:27 - 2014-09-20 02:47 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 20:27 - 2014-09-20 02:47 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 20:27 - 2014-09-20 02:46 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 20:27 - 2014-09-20 02:46 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 20:27 - 2014-09-20 02:46 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 20:27 - 2014-09-20 02:46 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 20:27 - 2014-09-20 02:46 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-10-16 20:27 - 2014-09-20 02:46 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-10-16 20:27 - 2014-09-20 02:45 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 20:27 - 2014-09-20 02:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-10-16 20:27 - 2014-09-20 01:53 - 12364288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 20:27 - 2014-09-20 01:44 - 01810432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 20:27 - 2014-09-20 01:41 - 09739776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 20:27 - 2014-09-20 01:39 - 01138688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 20:27 - 2014-09-20 01:38 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 20:27 - 2014-09-20 01:37 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 20:27 - 2014-09-20 01:36 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-10-16 20:27 - 2014-09-20 01:36 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 20:27 - 2014-09-20 01:36 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 20:27 - 2014-09-20 01:35 - 01802752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 20:27 - 2014-09-20 01:35 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-10-16 20:27 - 2014-09-20 01:35 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 20:27 - 2014-09-20 01:35 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 20:27 - 2014-09-20 01:35 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-10-16 20:27 - 2014-09-20 01:34 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 20:27 - 2014-09-20 01:34 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 20:27 - 2014-09-20 01:34 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 20:27 - 2014-09-20 01:34 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 20:27 - 2014-09-20 01:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-10-16 20:27 - 2014-09-20 01:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-10-16 20:27 - 2014-09-20 01:33 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 20:27 - 2014-08-19 06:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-16 20:27 - 2014-08-19 06:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-16 20:27 - 2014-07-07 05:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-16 20:27 - 2014-07-07 05:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-16 20:27 - 2014-07-07 05:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-10-16 20:27 - 2014-07-07 04:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-16 20:27 - 2014-07-07 04:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-10-16 20:27 - 2014-07-07 04:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-16 20:27 - 2014-06-28 03:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-16 20:27 - 2014-06-28 03:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 20:27 - 2014-06-19 01:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 20:26 - 2014-08-19 06:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-16 20:26 - 2014-08-19 06:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-16 20:26 - 2014-08-19 06:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-16 20:26 - 2014-08-19 06:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-16 20:26 - 2014-08-19 06:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-16 20:26 - 2014-08-19 06:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-16 20:26 - 2014-08-19 06:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-16 20:26 - 2014-08-19 06:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-16 20:26 - 2014-08-19 05:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-16 20:26 - 2014-08-19 05:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-16 20:26 - 2014-08-19 05:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-16 20:26 - 2014-07-07 05:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-16 20:26 - 2014-07-07 05:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-16 20:26 - 2014-07-07 05:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-16 20:26 - 2014-07-07 05:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-16 20:26 - 2014-07-07 05:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-16 20:26 - 2014-07-07 05:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-16 20:26 - 2014-07-07 05:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-16 20:26 - 2014-07-07 05:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-10-16 20:26 - 2014-07-07 05:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-16 20:26 - 2014-07-07 04:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-16 20:26 - 2014-07-07 04:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-16 20:26 - 2014-07-07 04:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-16 20:26 - 2014-07-07 04:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-16 20:26 - 2014-07-07 04:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-16 20:26 - 2014-07-07 04:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-16 20:26 - 2014-07-07 04:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-16 20:26 - 2014-07-07 04:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-16 20:26 - 2014-06-28 03:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-16 20:25 - 2014-09-18 05:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 20:25 - 2014-09-18 04:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 20:25 - 2014-09-04 08:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 20:25 - 2014-09-04 08:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 20:25 - 2014-08-29 05:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-16 20:25 - 2014-07-17 05:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 20:25 - 2014-07-17 05:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 20:25 - 2014-07-17 05:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 20:25 - 2014-07-17 05:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 20:25 - 2014-07-17 05:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 20:25 - 2014-07-17 04:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 20:25 - 2014-07-17 04:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 20:25 - 2014-07-17 04:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 20:25 - 2014-07-17 04:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 20:25 - 2014-07-17 04:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-16 20:25 - 2011-01-16 03:01 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 20:24 - 2014-09-13 04:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 20:24 - 2014-09-13 04:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 20:24 - 2014-09-05 05:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 20:24 - 2014-09-05 04:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 20:16 - 2014-10-16 20:16 - 00000000 ____D () C:\Users\Venci\AppData\Local\TempSWBackupDirectory
2014-10-16 20:15 - 2014-10-16 20:15 - 00000000 ____D () C:\Users\Venci\AppData\Local\SolidWorks
2014-10-16 19:55 - 2014-10-16 19:55 - 00000000 ____D () C:\ProgramData\Simpoe
2014-10-16 19:53 - 2014-10-16 19:53 - 00000000 ____D () C:\ProgramData\SolidWorks Flow Simulation
2014-10-16 19:53 - 2014-10-16 19:53 - 00000000 ____D () C:\ProgramData\COSMOS Applications
2014-10-16 19:52 - 2014-10-16 19:52 - 00000000 ____D () C:\Users\Venci\Documents\SolidWorksComposer
2014-10-16 19:51 - 2014-10-16 19:51 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-10-16 19:51 - 2005-03-12 01:07 - 00087040 _____ () C:\Windows\system32\pdfcmnnt.dll
2014-10-16 19:51 - 1998-07-06 01:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-10-16 19:51 - 1998-06-24 01:00 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-10-16 19:48 - 2014-10-16 19:48 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\help_images_otherUI
2014-10-16 19:48 - 2014-10-16 19:48 - 00000000 ____D () C:\Program Files (x86)\SolidWorks Corp
2014-10-16 19:48 - 2014-10-16 19:48 - 00000000 _____ () C:\Windows\eDrawingOfficeAutomator.INI
2014-10-16 19:46 - 2014-10-16 19:46 - 00000000 ____D () C:\Users\Venci\Documents\SolidWorks Visual Studio Tools for Applications
2014-10-16 19:46 - 2014-10-16 19:46 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\DassaultSystemes
2014-10-16 19:46 - 2014-10-16 19:46 - 00000000 ____D () C:\Users\Venci\AppData\Local\DassaultSystemes
2014-10-16 19:46 - 2014-10-16 19:46 - 00000000 ____D () C:\ProgramData\DassaultSystemes
2014-10-16 19:36 - 2014-10-16 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks 2014
2014-10-16 19:32 - 2014-10-16 19:55 - 00000000 ____D () C:\Program Files\SolidWorks Corp
2014-10-16 19:32 - 2014-10-16 19:49 - 00000000 ____D () C:\Program Files\Common Files\SolidWorks Shared
2014-10-16 19:32 - 2014-10-16 19:32 - 00000000 ____D () C:\ProgramData\SolidWorks
2014-10-16 19:32 - 2014-10-16 19:32 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 19:30 - 2014-10-16 19:43 - 00000000 ____D () C:\SolidWorks Data (2)
2014-10-16 19:24 - 2014-10-16 19:24 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8
2014-10-16 19:23 - 2012-02-11 08:46 - 00180312 _____ (Microsoft Corporation) C:\Windows\system32\hadrres.dll
2014-10-16 19:23 - 2012-02-11 08:46 - 00082520 _____ (Microsoft Corporation) C:\Windows\system32\fssres.dll
2014-10-16 19:14 - 2014-10-16 19:14 - 00000000 ____D () C:\Users\Venci\Documents\Visual Studio 2005
2014-10-16 19:14 - 2014-10-16 19:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2014-10-16 19:13 - 2014-10-16 19:13 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-10-16 19:12 - 2014-10-16 19:51 - 00000000 ____D () C:\ProgramData\SolidWorks Electrical
2014-10-16 19:12 - 2014-10-16 19:12 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-10-16 19:11 - 2014-10-16 19:11 - 00000000 ____D () C:\SolidWorks Data
2014-10-16 19:10 - 2014-10-16 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks Installation Manager
2014-10-16 19:06 - 2014-10-16 20:15 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\SolidWorks
2014-10-16 19:06 - 2014-10-16 19:30 - 00000000 ____D () C:\Windows\SolidWorks
2014-10-12 16:02 - 2014-10-12 16:02 - 00003102 _____ () C:\Windows\System32\Tasks\{AC653DED-26D9-4D42-A580-5CE2FA2D6526}
2014-10-10 15:07 - 2014-10-10 15:08 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-10 15:07 - 2014-10-10 15:07 - 00000000 ____D () C:\ProgramData\Sun
2014-10-07 19:04 - 2014-10-08 11:30 - 00000000 ____D () C:\Users\Venci\Documents\FIFA 14
2014-10-07 19:04 - 2014-10-07 19:04 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-10-07 19:03 - 2014-10-07 19:03 - 00000000 ____D () C:\ProgramData\Origin
2014-10-07 17:04 - 2014-10-10 19:00 - 00000000 ____D () C:\Users\Venci\AppData\Local\LogMeIn Hamachi
2014-10-07 17:04 - 2014-10-07 17:04 - 00000000 ____D () C:\Users\Venci\AppData\Local\LogMeIn
2014-10-07 17:04 - 2014-10-07 17:04 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-10-07 17:01 - 2014-10-07 17:01 - 00045270 _____ () C:\Users\Venci\AppData\Roaming\room_v3.dat
2014-10-07 16:55 - 2014-10-07 17:03 - 00000000 ____D () C:\Program Files (x86)\Garena Plus
2014-10-07 15:58 - 2014-10-07 17:13 - 00000000 ____D () C:\Users\Venci\Documents\FIFA 08
2014-10-07 15:51 - 2014-10-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports
2014-10-01 11:42 - 2014-09-25 05:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 11:42 - 2014-09-25 04:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-25 18:53 - 2014-09-25 18:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-24 09:37 - 2014-09-10 01:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 09:37 - 2014-09-10 00:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-21 01:01 - 2014-09-21 01:01 - 00000000 ____D () C:\Program Files\Genymobile
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-20 22:55 - 2002-01-01 01:55 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-20 22:54 - 2002-01-01 01:44 - 00001427 _____ () C:\Users\Venci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-20 22:54 - 2002-01-01 01:44 - 00001393 _____ () C:\Users\Venci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-10-20 22:46 - 2014-08-11 17:09 - 00004958 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Venci-PC-Venci Venci-PC
2014-10-20 22:42 - 2014-09-03 00:08 - 00000000 ____D () C:\Users\Venci\.VirtualBox
2014-10-20 22:42 - 2014-09-01 16:03 - 00000000 ____D () C:\Users\Venci\AppData\Local\Genymobile
2014-10-20 22:40 - 2014-04-24 22:09 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-20 22:36 - 2014-04-08 23:44 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\Skype
2014-10-20 22:35 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-20 22:34 - 2009-07-14 07:45 - 00025936 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-20 22:34 - 2009-07-14 07:45 - 00025936 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-20 22:34 - 2002-01-01 11:41 - 01198871 _____ () C:\Windows\WindowsUpdate.log
2014-10-20 22:24 - 2014-04-09 00:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-10-20 22:05 - 2014-04-09 00:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-20 20:52 - 2014-04-24 22:09 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-20 20:52 - 2014-04-24 22:09 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-20 20:52 - 2014-04-24 22:09 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-20 20:52 - 2014-04-09 00:24 - 00000000 ____D () C:\Users\Venci\AppData\Local\Adobe
2014-10-20 20:33 - 2014-04-17 15:04 - 00000000 ____D () C:\The KMPlayer
2014-10-20 19:58 - 2014-04-09 00:11 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-10-20 19:28 - 2009-07-14 06:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-20 15:37 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\rescache
2014-10-20 11:40 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-19 13:01 - 2014-04-09 00:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-19 13:00 - 2014-04-09 00:13 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-10-19 02:28 - 2002-01-01 01:49 - 00124432 _____ () C:\Users\Venci\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-19 01:47 - 2009-07-14 07:45 - 00460416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-17 19:42 - 2014-04-09 00:04 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\DAEMON Tools Lite
2014-10-17 19:42 - 2014-04-08 19:02 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\uTorrent
2014-10-17 18:05 - 2014-09-19 15:56 - 00000000 ____D () C:\Program Files\Andy
2014-10-17 18:05 - 2002-01-01 01:43 - 00000000 ____D () C:\Users\Venci
2014-10-17 14:08 - 2009-07-14 06:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-10-17 14:08 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-10-17 00:56 - 2009-07-14 08:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-17 00:53 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-17 00:53 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG
2014-10-17 00:53 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-17 00:53 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-10-16 21:48 - 2009-07-14 05:34 - 00000478 _____ () C:\Windows\win.ini
2014-10-16 21:41 - 2014-04-09 11:11 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-16 21:36 - 2014-04-09 11:11 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-16 20:35 - 2014-04-09 00:28 - 00000000 ____D () C:\Windows\pss
2014-10-16 19:30 - 2014-05-14 13:29 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-16 19:23 - 2009-07-14 08:13 - 00912614 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-16 19:13 - 2014-04-09 00:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-10-15 11:11 - 2009-07-14 08:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-10-13 13:24 - 2014-07-31 17:19 - 00000000 ____D () C:\Users\Venci\Documents\My Recorded Scripts
2014-10-12 19:48 - 2014-09-03 00:54 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\TeamViewer
2014-10-09 17:48 - 2014-04-09 00:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-07 19:46 - 2014-07-14 23:27 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-07 19:44 - 2014-04-14 18:40 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\AIMP3
2014-10-07 17:03 - 2014-04-24 22:07 - 00000000 ____D () C:\Users\Venci\AppData\Roaming\GameRanger
2014-10-07 15:55 - 2014-04-24 22:10 - 00000000 ___RD () C:\Users\Venci\Desktop\Games
2014-10-07 15:49 - 2014-04-24 22:09 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-09-25 18:53 - 2014-04-14 17:59 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-25 18:53 - 2014-04-08 23:44 - 00000000 ____D () C:\ProgramData\Skype
2014-09-21 18:46 - 2014-09-03 00:08 - 00000000 ____D () C:\Users\Venci\VirtualBox VMs
 
Files to move or delete:
====================
C:\ProgramData\ezsid.dat
 
 
Some content of TEMP:
====================
C:\Users\Venci\AppData\Local\Temp\Quarantine.exe
C:\Users\Venci\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe
[2014-10-16 20:25] - [2011-01-16 03:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F
 
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll
[2010-11-21 06:24] - [2011-01-16 03:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF
 
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-10-20 15:27
 
==================== End Of Log ============================

Addition.txt

Линк към коментара
Сподели в други сайтове

Здравейте..!

 

Деинсталирайте ComboFix така:

  • Натиснете Start ==> Run ==> въведете командата Combofix /Uninstall ==> OK

CF.jpg
 
Моля, следвайте инструкциите, за да деинсталирате ComboFix. Ще получите съобщение, в което се казва ComboFix е деинсталиран успешно.

 

 

icon13.gif Изтеглете прикачения файл и го запазете там, където сте свалили FRST.exe => fixlist.txt

Стартирайте отново FRST.exe и натиснете бутона Fix веднъж и изчакайте.
Ще се създаде нов лог файла FixLog.txt. Прикачете съдържанието му в следващия си коментар.

 
ЗАБЕЛЕЖКА: Този скрипт е написан специално за този потребител,и за тази конкретна машина. Изпълнението на фикса, на друг компютър може да доведе до увреждане на  операционната ви система

 

 

 

GUZVCQN.jpg  Моля, изтеглете Malwarebytes Anti -Malware и го запомнете на вашия работен плот .
  Кликнете два пъти върху mbam-setup-consumer-2.0.0.1хххх.exe и следвайте инструкциите, за да инсталирате програмата .

  • В секцията Settings = > Detection and Protection => Detection Options, се поставя отметка в квадратчето 'Scan for rootkits'.

 

MBAMsettings.JPG

 

  • В главния прозорец на програмата , щракнете върху 'Update Now'
  • След актуализацията завърши, кликнете на бутона " 'Scan Now  " .
  • Ако има налична актуализация , щракнете върху бутона Update Now button .
  • Ще стартира Threat Scan.
  • Когато сканирането приключи, ако има някакви открити зарази , щракнете върху Apply Actions за да се позволи на Mbam да почисти засеченото. .

 

MBAMReboot.JPG

 

  •   След рестарта ,стартирайте Mbam още веднъж.
  •   Кликнете на History tab > Application Logs .
  •   Кликнете два пъти върху реда , който показва датата и часа на сканирането или View Detailed Log .
  •   Кликнете върху " Copy да Clipboard "

 

MBAMLog.JPG

 

  •   Поставете  съдържанието на клипборда в следващия си  отговор.

 

 

adwcleaner_new.png Сканиране с AdwCleaner
 
Моля, изтеглете и стартирайте програмата AdwCleaner (by Xplode):

  • Затворете всички стартирани програми и браузъри
  • Кликнете два пъти върху adwcleaner.exe за да стартирате инструмента.
  • Натиснете OK, за да потвърдите, че всички стартирани програми ще бъдат затворени.
  • Маркирайте Clean
  • Вашият компютър ще се рестартира автоматично. Текстовия файл ще се отвори след рестарта.
  • Моля, да публикувате съдържанието на този лог в отговора си
  • Можете да намерите лога,който автоматично се запомня тук C:AdwCleaner[s0].txt

 

 

 

thisisujrt.gif Сканиране с Junkware Removal Tool

 

Моля, изтеглете Junkware Removal Tool (by Thisisu ) и запазете на вашия десктоп.

  • Спрете временно работата на защитните програми.
  • Стартирайте инструмента JRT.exe
  • Ще се отвори ДОС прозорец. Натиснете което и да е копче от клавиатурата.
  • Затворете излишните приложения и всички браузъри и изчакайте проверката да завърши.
  • Ще се появи лог файл (който можете да намерите и ръчно на десктопа с името JRT.txt).
  • Моля копирайте съдържанието на лог файла в следващия си пост.

 

 

FRST.gif Сканиране с Farbar Recovery Scan Tool

Повторете сканирането с Farbar Recovery Scan Tool

 

Линк към коментара
Сподели в други сайтове

Чиста система..! Няма наличие на активни зарази..! :)


icon_arrow.gif Изтеглете следния файл и го запазете в папката от която стартирахте FRST.exe.
Стартирайте FRST.exe и натиснете бутона Fix веднъж!
След като приключи публикувайте лог файла - fixlog.txt, който ще се създаде след работата. Той трябва да изтрие карантинната папка на инструмента разположена в C:FRSTQuarantine.

 

 

icon_arrow.gif Изтеглете DelFix и го стартирайте. Сложете отметка пред Remove disinfection tools и след това натиснете бутона Run
Инструмента ще се самоизтрие след като приключи своята задача!
 
1_tmb_68929169_delfix.gif.jpg

 
 
icon_exclaim.gif Деинсталирайте adwcleaner.exe
 

  • Моля, затворете всички отворени програми и интернет браузъри.
  • Кликнете два пъти върху adwcleaner.exe за да стартирате инструмента.
  • Кликнете върху Uninstall .
  • Щракнете върху Yes за да деинсталирате Adwcleaner

icon_arrow.gif Препоръчвам програмата Malwarebytes' Anti-Malware да остане на вашия компютър и периодично да сканирате системата си с нея (поне един -два пъти в седмицата),като не забравяйте да обновите дефинициите и преди всяко сканиране..!Напомням че това не е антивирусна програма а едно изключително добро допълнение към нея..!

 

Какво е състоянието на системата ви след процедурите..наблюдавате ли първоначалните симптоми..?

Линк към коментара
Сподели в други сайтове

Благодаря много за отделеното време. Имам леки проблеми с хрома и от друга тема бях изпратен тук ,но явно проблемът не е във гадинка.Още веднъж благодаря за помощта.
Иначе системата се държи една идея по-бързо.


Линк към коментара
Сподели в други сайтове

Какъв е проблема ..?Уточнете..?

 

Моля, изтеглете ZOEK (by Smeenk) и да го запишете на вашия работен плот
Временно деактивирайте вашата антивирусна и антишпионска защита - инструкции тук

  • Щракнете с десния бутон върху тази икона  51a612a8b27e2-Zoek.pngи изберете RunAsAdmin.jpg Run as Administrator, за да стартирате инструмента.
  • Изчакайте търпеливо, докато  се появи  главната конзола (може да отнеме минута или две).

52b6de58f1952-Zoek_Startpagina_5.0.0.0.P
 

 

  • В главния прозорец, моля поставете в следния скрипт:
createsrpoint;
autoclean;
chromelook;
emptyalltemp;

Уверете се, че  опцията Scan All Users е маркирана.

  • Натиснете Run Script и изчакайте. Сканирането може да отнеме няколко минути.
  • Когато сканирането приключи, ще се отвори лог файл с име zoek-results.
  • Ако е необходимо рестартиране, той ще се отвори след това.
  • Копирайте съдържанието му в следващия си отговор.
Линк към коментара
Сподели в други сайтове

Архивирана тема

Темата е твърде стара и е архивирана. Не можете да добавяте нови отговори в нея, но винаги можете да публикувате нова тема, в която да продължи дискусията. Регистрирайте се или влезте във вашия профил за да публикувате нова тема.

  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Горещи теми в момента

  • Подобни теми

    • от stef000
      Здравейте. Тези съобщения (от снимките) се отварят (всеки път) при пускането на services.msc. Системата е инсталирана преди няколко месеца и е използвана предимно за интернет. Не ми е създавала проблеми. Също така сканирах с няколко програми включително Malwarebyates и KVRT и всичко излиза чисто!
       


      Addition.txt FRST.txt
    • от [email protected]
      Днес си пускам компютъра и ми прави впечатление, че зарежда бавно някой страници а други като например калдата изобщо не зарежда, реших че може да е вирус и се опитах да пусна он лайн скенера на ESET, обаче казва, че не може да зареди базата със сигнатурите. Опитах да дръпна някаква антивирусна от нета и навсякъде нямам достъп. Гледам, че и Уиндоус ъпдейтите са недосръпни. Другото което прави впечатление, че Дефендъра е недостъпен, като кликна на Уиндоус сикюрите прозореца е празен. Като го пуснах някакси гледам че сканира офлайн. Какво мога да направя като не мога да сваля антивирусна ? И нещо друго ако Тубата работи нормално и влизам в др. форуми например, няма как да е от нета?
    • от サムライオートバイ
      Последните няколко дни се интересувах малко от chia и как мога да копам/фармя тази нова валута и посещавах редица сайтове свързани с темата и pool фарминга. На няколко пъти ми пропещяваше антивирусната, но не й обръщах внимание. Предполагам че от там съм лепнал някоя зараза. Ако има значение интернета на PC-то идва от стар андроид телефон с операционна система андроид 8 и хотспот. 

      Addition.txt
      Дава ми: За съжаление при качването на този файл възникна неизвестна грешка в сървъра.
      (Error code: -200)    когато се пробвам да кача Frst.txt FRST.txt
    • от The_Nomad
      Здравейте,
      имах неблагоразумието да кликна на един от модерните линкове, дето разпращат във фейса, като мислех че Касперски ще го спре, но съм забравил че е изключен за малко 😁 Отвори се празна страница и седеше бяла. После включих Касперски и кликнах пак, като този път страницата беше блокирана. Съмнява ме, да не са източили пароли от Операта или нещо друго. В стартъпа нямам нови процеси. Прикачам логовете и снимка от Касперски, ще съм благодарен за помощ. (САМО ДА СПОМЕНА ЧЕ ЪПДЕЙТИТЕ НА УИН СА ИЗКЛЮЧЕНИ НАРОЧНО ОТ МЕН)
      FRST.txtAddition.txt

    • от StikiNetBG
      Здравейте,
      Наложи се да преинсталирам Windows-а си тъй като се получиха многожество проблеми. Установих че причината за това е някакъв wrui вирус, които добавя своето файлово разширение към всеки файл. За съжаление след това файловете не се отварят. Или може би са криптирани по някакъв начин.
      https://geeksadvice.com/remove-wrui-ransomware-virus/ - за този вирус става дума. Посочва се че с програмата RESTORO могат да се възстановят файловете.
      Изтеглих RESTORO, но за неговата пълна функционалност се изисква някакъв лицензен ключ.
       
      Въпроса ми е по какъв начин мога да възстановя отново файловете си. Имам много важни документи които са важни за моята работа.
  • Дарение

×
×
  • Добави ново...

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите Условия за ползване