Премини към съдържанието
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

Неработещи windows defender и windows edge browser след изтриване на вирус.


Препоръчан отговор


Здравейте, проблемът е следния- днес към 13:40 отворих файл, които започна да изтегля програми, игри, без мое позволение, развали ми шрифта на иконите. След това изтеглих https://www.malwarebytes.com/ [free], пуснах да сканира системата ми (ОС: Windows 10 Pro x64).Откри ми 350 вируса, които поставих под карантина и след това изтрих. След това потърсих из C диска си подозрителни папки, такива със странни имена, ориентирах се и по дата на промяната. Изтрих няколко папки и файлове от "Програмни файлове" и "Програмни файлове x86", мисля че също и от Програмни файлове>Common Files. След това почистих папката си "Изтеглени файлове", тоест изтрих проблемната програма с размер ~2мб. Изпразних кошчето. Установих, че Windows Defender не може да се стартира (е спрян) и браузъра (Windows Edge) не отваря никоя уеб страница.
В момента пиша от Google Chrome, изтеглен през Internet Explorer. Изтеглих си и https://www.eset.com/bg/download/home/detail/family/2/ [също free], пуснах също да сканира (първоначална проверка) и откри 2/3 инфектирани файла, след което изпълних действието на програмата по подразбиране. 
Ще ви помоля да ми дадете насоки как да изтрия остатъците от злонамерения софтуер, също и как да поправя browser-a си.

----------------------------------------------------------------------

Edit : https://imgur.com/uLQpR9U - [Time ~ 15:33:xx]

          https://imgur.com/vpYByT8

          https://imgur.com/4bffc0e

          https://imgur.com/78uz1SZ

          https://imgur.com/I4jSuXP

----------------------------------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.03.2018
Ran by Administrator 1 (administrator) on DESKTOP-BQT0R28 (11-03-2018 15:16:40)
Running from C:\Users\Administrator 1\Desktop
Loaded Profiles: Administrator 1 (Available Profiles: Administrator 1)
Platform: Windows 10 Pro Version 1709 16299.251 (X64) Language: Български (България)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_daa5fd44d52a5762\igfxCUIService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_daa5fd44d52a5762\IntelCpHDCPSvc.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_daa5fd44d52a5762\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_daa5fd44d52a5762\igfxEM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9029.22105.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9029.22105.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9029.22105.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11802.1001.8.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16697352 2016-08-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [324352 2017-12-18] (ESET)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle Corporation)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [131360 2018-01-17] (Intel)
HKLM-x32\...\Run: [HDD Regenerator] => "C:\Program Files (x86)\HDD Regenerator\HDD Regenerator.exe"
HKLM-x32\...\Run: [boostPc] => "C:\Program Files (x86)\boostPc\boostPc.exe"
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\...\Run: [Steam] => D:\Programs\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\ProgramData\DreamScreen\DreamCompress.scr
GroupPolicy: Restriction - Windows Defender <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{274671e8-1989-11e8-8a52-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{a326f77b-de8f-45ae-8bb6-a7b69897c43d}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{a326f77b-de8f-45ae-8bb6-a7b69897c43d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a7c65fd3-ca06-4f8f-8438-e57df76fada1}: [NameServer] 8.8.8.8

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2054842250-3291440368-2934754424-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-24] (Oracle Corporation)

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-24] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-03-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-03-11] (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default [2018-03-11]
CHR Extension: (Презентации) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-11]
CHR Extension: (Документи) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-11]
CHR Extension: (Google Диск) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-11]
CHR Extension: (YouTube) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-11]
CHR Extension: (Таблици) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-11]
CHR Extension: (Google Документи офлайн) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-03-11]
CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-03-11]
CHR Extension: (Gmail) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-03-11]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator 1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-11]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-03-02] ()
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22304 2018-01-17] (Intel)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1940584 2017-12-18] (ESET)
S2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17976 2016-09-20] (Intel Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6440736 2018-03-03] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2018-02-24] (Microsoft Corporation)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [182544 2018-01-11] ()
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\NisSrv.exe [356152 2018-03-01] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MsMpEng.exe [106280 2018-03-01] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AsrDrv102; C:\WINDOWS\SysWOW64\Drivers\AsrDrv102.sys [22248 2018-03-07] (ASRock Incorporation) [File not signed]
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [543184 2016-07-26] (Intel Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [134368 2018-01-19] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-03-11] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180088 2018-01-19] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [106304 2018-01-19] (ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [76200 2018-01-18] ()
S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [88072 2018-03-01] (Multi Theft Auto)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-26] (REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193248 2018-03-11] (Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [109800 2018-03-11] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [45960 2018-03-11] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-03-11] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [101600 2018-03-11] (Malwarebytes)
S1 MpKsl19b6e120; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9BB4AB41-6449-4A74-B0BD-74CD8156514E}\MpKsl19b6e120.sys [58120 2018-03-11] () [File not signed]
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [41512 2018-01-11] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-03-01] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [288296 2018-03-01] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129568 2018-03-01] (Microsoft Corporation)
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-11 15:16 - 2018-03-11 15:17 - 000013422 _____ C:\Users\Administrator 1\Desktop\FRST.txt
2018-03-11 15:16 - 2018-03-11 15:16 - 002403328 _____ (Farbar) C:\Users\Administrator 1\Desktop\FRST64.exe
2018-03-11 15:16 - 2018-03-11 15:16 - 000000000 ____D C:\FRST
2018-03-11 15:15 - 2018-03-11 15:16 - 002403328 _____ (Farbar) C:\Users\Administrator 1\Downloads\FRST64.exe
2018-03-11 14:07 - 2018-03-11 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2018-03-11 14:07 - 2018-03-11 14:07 - 000000000 ____D C:\ProgramData\ESET
2018-03-11 14:07 - 2018-03-11 14:07 - 000000000 ____D C:\Program Files\ESET
2018-03-11 14:01 - 2018-03-11 14:01 - 004260984 _____ (ESET) C:\Users\Administrator 1\Downloads\eset_nod32_antivirus_live_installer.exe
2018-03-11 13:46 - 2018-03-11 13:46 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-11 13:46 - 2018-03-11 13:46 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-03-11 13:45 - 2018-03-11 13:45 - 000003516 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-03-11 13:45 - 2018-03-11 13:45 - 000003392 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-03-11 13:44 - 2018-03-11 13:45 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Deployment
2018-03-11 13:44 - 2018-03-11 13:44 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Apps\2.0
2018-03-11 13:32 - 2018-03-11 13:32 - 000000290 __RSH C:\Users\Administrator 1\ntuser.pol
2018-03-11 13:23 - 2018-03-11 13:32 - 000000000 ____D C:\ProgramData\DreamScreen
2018-03-11 13:23 - 2018-03-11 13:29 - 000000000 ____D C:\ProgramData\DreamCompress
2018-03-11 13:23 - 2018-03-11 13:24 - 000101600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-03-11 13:23 - 2018-03-11 13:23 - 000253664 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-03-11 13:23 - 2018-03-11 13:23 - 000193248 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-03-11 13:23 - 2018-03-11 13:23 - 000109800 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-03-11 13:23 - 2018-03-11 13:23 - 000045960 ____N (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-03-11 13:23 - 2018-03-11 13:23 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-03-11 13:23 - 2018-03-11 13:23 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\DreamScreen
2018-03-11 13:23 - 2018-03-11 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-03-11 13:23 - 2018-03-11 13:23 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-03-11 13:23 - 2018-03-11 13:23 - 000000000 ____D C:\Program Files\Malwarebytes
2018-03-11 13:23 - 2018-01-18 08:03 - 000076200 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2018-03-11 13:22 - 2018-03-11 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightning
2018-03-11 13:20 - 2018-03-11 13:32 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\x2pre4hjvjk
2018-03-11 13:20 - 2018-03-11 13:28 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\swuwjqiseok
2018-03-11 13:20 - 2018-03-11 13:22 - 000003228 __RSH C:\ProgramData\ntuser.pol
2018-03-11 13:20 - 2018-03-11 13:20 - 000000003 _____ C:\Users\Administrator 1\AppData\Local\wbem.ini
2018-03-11 13:20 - 2018-03-11 13:20 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\OneSystemCare
2018-03-11 11:31 - 2018-03-11 11:32 - 069202856 _____ (Malwarebytes ) C:\Users\Administrator 1\Downloads\mb3-setup-consumer-3.4.4.2398-1.0.322-1.0.4284.exe
2018-03-11 11:27 - 2018-03-11 11:27 - 000000000 ____D C:\Users\Administrator 1\AppData\LocalLow\Adobe
2018-03-11 11:24 - 2018-03-11 11:24 - 000000589 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
2018-03-11 11:20 - 2018-03-11 11:24 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-03-10 17:22 - 2018-01-05 20:04 - 000002449 _____ C:\Users\Administrator 1\Desktop\settings.xml
2018-03-10 15:00 - 2018-03-10 15:00 - 000000000 ____D C:\Users\Administrator 1\Desktop\Rockstar Games
2018-03-10 14:54 - 2018-03-10 14:54 - 000000000 ____D C:\Users\Administrator 1\Documents\OpenIV
2018-03-10 14:38 - 2018-03-10 14:38 - 000002746 _____ C:\Users\Administrator 1\Downloads\818058-GTA 5 For Super Low PC's 10.1.zip
2018-03-10 14:27 - 2018-03-10 14:27 - 000001316 _____ C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2018-03-10 14:27 - 2018-03-10 14:27 - 000001314 _____ C:\Users\Administrator 1\Desktop\OpenIV.lnk
2018-03-10 14:27 - 2018-03-10 14:27 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\New Technology Studio
2018-03-10 14:26 - 2018-03-10 14:26 - 004555776 _____ (New Technology Studio) C:\Users\Administrator 1\Downloads\ovisetup.exe
2018-03-10 12:37 - 2018-03-10 12:37 - 000000279 _____ C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Кошче.lnk
2018-03-10 12:37 - 2018-03-10 12:37 - 000000279 _____ C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Кошче (2).lnk
2018-03-10 12:02 - 2018-03-10 12:02 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Downloaded Installations
2018-03-10 12:02 - 2018-03-10 12:02 - 000000000 ____D C:\ProgramData\TEMP
2018-03-10 12:01 - 2018-03-10 12:01 - 006791440 _____ (Abstradrome ) C:\Users\Administrator 1\Downloads\hr2011.exe
2018-03-10 11:38 - 2018-03-10 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2018-03-10 11:37 - 2018-03-10 11:37 - 001754192 _____ (CPUID, Inc. ) C:\Users\Administrator 1\Downloads\cpu-z_1.83-en.exe
2018-03-10 10:12 - 2018-03-10 10:12 - 000000000 ____D C:\Users\Administrator 1\Documents\Rockstar Games
2018-03-10 10:12 - 2018-03-10 10:12 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Rockstar Games
2018-03-10 10:12 - 2018-03-10 10:12 - 000000000 ____D C:\ProgramData\Steam
2018-03-10 10:11 - 2018-03-10 10:11 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Apple Computer
2018-03-10 10:11 - 2018-03-10 10:11 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Apple Computer
2018-03-10 10:06 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2018-03-10 10:06 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2018-03-10 10:06 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2018-03-10 10:06 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2018-03-10 10:06 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2018-03-10 10:06 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2018-03-10 10:05 - 2018-03-10 10:05 - 000000000 ____D C:\Program Files\Rockstar Games
2018-03-10 10:05 - 2018-03-10 10:05 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2018-03-10 09:53 - 2018-03-10 09:53 - 000000000 ____D C:\ProgramData\Socialclub
2018-03-10 09:53 - 2018-03-10 09:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
2018-03-07 21:30 - 2018-03-07 21:39 - 571870790 _____ C:\Users\Administrator 1\Downloads\_Oceanofgames.com_Half_Life_1.zip
2018-03-07 20:48 - 2016-10-05 02:37 - 000426104 _____ (Intel Corporation) C:\WINDOWS\system32\PROUnstl.exe
2018-03-07 20:48 - 2016-08-24 17:10 - 000002291 ____N C:\WINDOWS\system32\SetupBD.din
2018-03-07 20:39 - 2018-03-07 20:39 - 000022248 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrDrv102.sys
2018-03-07 18:15 - 2018-03-07 18:15 - 000327221 _____ C:\Users\Administrator 1\Downloads\Grand_Theft_Auto_V_R.G._Games.torrent
2018-03-06 18:18 - 2018-02-22 04:23 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-03-06 18:18 - 2018-02-22 04:23 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-03-06 18:18 - 2018-02-22 04:14 - 000270752 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-03-06 18:18 - 2018-02-22 04:13 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-03-06 18:18 - 2018-02-22 04:13 - 000077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-03-06 18:18 - 2018-02-22 04:12 - 000613280 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-03-06 18:18 - 2018-02-22 04:11 - 000138136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-06 18:18 - 2018-02-22 04:11 - 000109984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-03-06 18:18 - 2018-02-22 04:10 - 001577880 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-03-06 18:18 - 2018-02-22 04:10 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-03-06 18:18 - 2018-02-22 04:09 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-06 18:18 - 2018-02-22 04:08 - 001206688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-03-06 18:18 - 2018-02-22 04:08 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-03-06 18:18 - 2018-02-22 04:08 - 000758168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-03-06 18:18 - 2018-02-22 04:08 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-03-06 18:18 - 2018-02-22 04:08 - 000387488 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-03-06 18:18 - 2018-02-22 04:07 - 008603040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-03-06 18:18 - 2018-02-22 04:07 - 001415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-03-06 18:18 - 2018-02-22 04:07 - 001209248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-03-06 18:18 - 2018-02-22 04:07 - 000194456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2018-03-06 18:18 - 2018-02-22 04:07 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-03-06 18:18 - 2018-02-22 04:06 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-03-06 18:18 - 2018-02-22 04:06 - 000662936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-03-06 18:18 - 2018-02-22 04:06 - 000460704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-03-06 18:18 - 2018-02-22 04:06 - 000272792 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-03-06 18:18 - 2018-02-22 04:03 - 000733600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-03-06 18:18 - 2018-02-22 04:03 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-03-06 18:18 - 2018-02-22 04:03 - 000082848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-03-06 18:18 - 2018-02-22 04:02 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-03-06 18:18 - 2018-02-22 04:00 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-03-06 18:18 - 2018-02-22 04:00 - 000187296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-03-06 18:18 - 2018-02-22 03:59 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-03-06 18:18 - 2018-02-22 03:54 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-03-06 18:18 - 2018-02-22 03:52 - 000103328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-03-06 18:18 - 2018-02-22 03:51 - 000555424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-03-06 18:18 - 2018-02-22 03:51 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-03-06 18:18 - 2018-02-22 03:51 - 000045472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-03-06 18:18 - 2018-02-22 03:50 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-03-06 18:18 - 2018-02-22 03:50 - 000229272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-03-06 18:18 - 2018-02-22 02:53 - 000211872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-03-06 18:18 - 2018-02-22 02:50 - 025253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-03-06 18:18 - 2018-02-22 02:41 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-03-06 18:18 - 2018-02-22 02:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-03-06 18:18 - 2018-02-22 02:31 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-03-06 18:18 - 2018-02-22 02:30 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-03-06 18:18 - 2018-02-22 02:30 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-03-06 18:18 - 2018-02-22 02:30 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-03-06 18:18 - 2018-02-22 02:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-03-06 18:18 - 2018-02-22 02:28 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-06 18:18 - 2018-02-22 02:27 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-03-06 18:18 - 2018-02-22 02:26 - 023671808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-03-06 18:18 - 2018-02-22 02:26 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2018-03-06 18:18 - 2018-02-22 02:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-03-06 18:18 - 2018-02-22 02:22 - 008110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-03-06 18:18 - 2018-02-22 02:20 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-03-06 18:18 - 2018-02-22 02:18 - 019352576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-03-06 18:18 - 2018-02-22 02:18 - 018923008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-03-06 18:18 - 2018-02-22 02:18 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-03-06 18:18 - 2018-02-22 02:16 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-03-06 18:18 - 2018-02-22 02:16 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-03-06 18:18 - 2018-02-22 02:16 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-03-06 18:18 - 2018-02-22 02:12 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-03-06 18:18 - 2018-02-22 02:12 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-03-06 17:44 - 2018-03-06 17:44 - 000003628 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-BQT0R28-Administrator 1
2018-03-05 14:21 - 2018-03-11 11:24 - 000000000 ____D C:\Users\Administrator 1\Documents\Adobe
2018-03-05 14:16 - 2018-03-11 11:26 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Adobe
2018-03-05 14:16 - 2018-03-11 11:21 - 000000000 ____D C:\ProgramData\Adobe
2018-03-05 14:16 - 2018-03-05 14:16 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-03-03 14:05 - 2018-03-10 18:07 - 000007597 _____ C:\Users\Administrator 1\AppData\Local\Resmon.ResmonCfg
2018-03-02 12:49 - 2018-03-01 18:47 - 000000219 ___SH C:\Users\Public\Libraries.ini
2018-03-02 12:39 - 2018-03-02 12:39 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\NVIDIA Corporation
2018-03-02 12:38 - 2018-03-02 12:38 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\FortniteGame
2018-03-01 13:46 - 2018-03-01 13:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-02-28 19:15 - 2018-02-28 19:15 - 000000677 _____ C:\Users\Public\Desktop\Rules of Survival.lnk
2018-02-28 19:15 - 2018-02-28 19:15 - 000000677 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rules of Survival.lnk
2018-02-28 15:18 - 2018-02-28 15:18 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Binding of Isaac
2018-02-28 14:02 - 2018-02-28 14:02 - 000000000 ____D C:\Users\Administrator 1\Documents\Assassin's Creed III
2018-02-28 14:02 - 2018-02-28 14:02 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Theta
2018-02-27 21:12 - 2018-02-27 21:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-02-27 12:56 - 2018-03-02 12:38 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\UnrealEngine
2018-02-27 12:56 - 2018-02-27 12:56 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\UnrealEngineLauncher
2018-02-27 12:56 - 2018-02-27 12:56 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\EpicGamesLauncher
2018-02-27 12:55 - 2018-02-27 13:00 - 000000000 ____D C:\ProgramData\Epic
2018-02-27 12:55 - 2018-02-27 12:55 - 000000897 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2018-02-26 20:28 - 2018-03-07 21:32 - 000022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
2018-02-26 20:28 - 2018-02-26 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2018-02-26 20:28 - 2018-02-26 20:28 - 000000000 ____D C:\ProgramData\ASRock
2018-02-26 20:28 - 2018-02-26 20:28 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2018-02-26 20:09 - 2018-02-26 20:13 - 000000000 ____D C:\ProgramData\ProductData
2018-02-26 20:09 - 2018-02-26 20:09 - 000000000 ____D C:\WINDOWS\IObit
2018-02-26 20:08 - 2018-02-26 20:14 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\IObit
2018-02-26 20:08 - 2018-02-26 20:10 - 000000000 ____D C:\Users\Administrator 1\AppData\LocalLow\IObit
2018-02-26 20:08 - 2018-02-26 20:10 - 000000000 ____D C:\ProgramData\IObit
2018-02-26 20:08 - 2018-02-26 20:09 - 000003078 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Administrator 1)
2018-02-26 20:08 - 2018-02-26 20:08 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2018-02-26 18:50 - 2018-02-26 18:50 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\MAXON
2018-02-26 16:59 - 2018-02-26 17:00 - 000000000 ____D C:\Program Files (x86)\MTA San Andreas 1.5
2018-02-26 16:59 - 2018-02-26 16:59 - 000002193 _____ C:\Users\Public\Desktop\MTA San Andreas 1.5.lnk
2018-02-26 16:59 - 2018-02-26 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.5
2018-02-26 16:57 - 2018-03-08 13:03 - 000000712 _____ C:\Users\Administrator 1\Desktop\GTA San Andreas.lnk
2018-02-26 16:23 - 2018-03-02 21:06 - 000000000 ____D C:\Users\Administrator 1\Documents\GTA San Andreas User Files
2018-02-26 16:15 - 2018-02-26 16:15 - 000000000 ____D C:\Users\Administrator 1\Documents\League of Legends
2018-02-26 15:47 - 2018-02-26 15:47 - 000000617 _____ C:\Users\Public\Desktop\League of Legends.lnk
2018-02-26 15:47 - 2018-02-26 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2018-02-26 11:48 - 2018-03-05 18:03 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-02-26 11:48 - 2018-02-26 11:48 - 000002890 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-02-26 11:48 - 2018-02-26 11:48 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-02-26 11:48 - 2018-02-26 11:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-02-26 11:48 - 2018-02-26 11:48 - 000000000 ____D C:\Program Files\CCleaner
2018-02-26 11:12 - 2018-02-26 11:12 - 001201242 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2018-02-26 11:12 - 2018-02-26 11:12 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-02-26 11:12 - 2018-02-26 11:12 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Intel Corporation
2018-02-26 11:09 - 2018-02-26 11:09 - 000000000 ____D C:\ProgramData\NortonInstaller
2018-02-26 11:01 - 2018-02-26 11:01 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-02-26 11:01 - 2018-02-26 11:01 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-02-26 11:01 - 2018-02-26 11:01 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-02-26 11:01 - 2018-02-26 11:01 - 000000000 ____D C:\Program Files\Realtek
2018-02-26 11:00 - 2018-02-26 11:00 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-02-26 11:00 - 2018-02-26 11:00 - 000000000 ____D C:\Program Files (x86)\Realtek
2018-02-26 11:00 - 2016-08-26 03:18 - 072520720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2018-02-26 11:00 - 2016-08-26 03:18 - 024414760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRenderAVX64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 024323312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRender64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 017377488 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioCapture64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 015202040 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE3.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 014057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 013122584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 012988352 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 010534696 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 007172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 007096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 006947183 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-02-26 11:00 - 2016-08-26 03:18 - 006374320 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 006264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2018-02-26 11:00 - 2016-08-26 03:18 - 005793528 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 005593616 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 005341352 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 005293064 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2018-02-26 11:00 - 2016-08-26 03:18 - 003299824 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 003291320 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 003283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 003203592 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 003134720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002895104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2018-02-26 11:00 - 2016-08-26 03:18 - 002825104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002776224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002706864 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002439048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002203752 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002110600 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002073096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 002050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001920820 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2018-02-26 11:00 - 2016-08-26 03:18 - 001780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001607136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001529144 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001422928 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001360520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001213664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001186840 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001166160 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001115144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001041744 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 001001800 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000999856 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000873464 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000864344 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000858200 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000854032 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000725944 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000678184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000677672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000601144 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000571376 _____ (Intel Corporation) C:\WINDOWS\system32\tbb_waves.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000498648 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000472312 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000438696 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000416512 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000372744 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000366128 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000360344 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000258864 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000203848 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000192984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000190936 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000190936 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000179600 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000154368 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000112496 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Caf64api.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000088328 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2018-02-26 11:00 - 2016-08-26 03:18 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2018-02-26 11:00 - 2016-08-26 03:18 - 000000736 _____ C:\WINDOWS\system32\cxapo.prop
2018-02-26 10:59 - 2018-02-26 11:02 - 000000000 ___HD C:\Program Files (x86)\Temp
2018-02-26 10:59 - 2016-04-11 07:38 - 002838232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2018-02-25 22:01 - 2018-02-25 22:01 - 000000717 _____ C:\Users\Administrator 1\Desktop\Сияна.lnk
2018-02-25 22:01 - 2018-02-25 22:00 - 000000728 _____ C:\Users\Administrator 1\Desktop\Иванчо.lnk
2018-02-25 22:00 - 2018-02-25 22:00 - 000000695 _____ C:\Users\Administrator 1\Desktop\Ива.lnk
2018-02-25 20:26 - 2018-02-25 20:26 - 000000000 ____D C:\Users\Administrator 1\Intel
2018-02-25 19:48 - 2018-02-25 19:48 - 000003834 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2018-02-25 19:43 - 2018-02-25 19:43 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Intel
2018-02-25 19:40 - 2018-02-25 19:40 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-02-25 19:40 - 2017-09-14 01:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-02-25 19:40 - 2017-09-14 01:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-02-25 19:40 - 2017-09-14 01:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-02-25 19:40 - 2017-09-14 01:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-02-25 19:19 - 2018-03-11 13:59 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant
2018-02-25 19:19 - 2018-02-26 11:12 - 000000000 ____D C:\ProgramData\Intel
2018-02-25 19:19 - 2018-02-25 19:19 - 000003762 _____ C:\WINDOWS\System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2018-02-25 19:19 - 2018-02-25 19:19 - 000003528 _____ C:\WINDOWS\System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2018-02-25 19:19 - 2018-02-25 19:19 - 000002690 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
2018-02-25 19:19 - 2018-02-25 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant
2018-02-25 19:19 - 2018-01-11 01:25 - 000041512 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys
2018-02-25 15:57 - 2018-02-25 15:57 - 000000000 ____D C:\ProgramData\Riot Games
2018-02-25 15:55 - 2008-07-12 08:18 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2018-02-25 15:55 - 2008-07-12 08:18 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2018-02-25 15:55 - 2008-07-12 08:18 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2018-02-25 15:40 - 2018-02-25 15:40 - 000000000 ____D C:\Users\Administrator 1\Documents\FeedbackHub
2018-02-25 13:23 - 2018-02-25 13:23 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Macromedia
2018-02-25 13:15 - 2018-02-25 13:17 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\DevilDaggers
2018-02-25 13:15 - 2018-02-25 13:15 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Steam
2018-02-25 13:11 - 2018-02-25 18:00 - 000000840 _____ C:\Users\Administrator 1\Desktop\Devil Daggers.lnk
2018-02-25 09:45 - 2018-02-25 19:55 - 000003398 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2054842250-3291440368-2934754424-1001
2018-02-24 21:30 - 2018-02-25 19:43 - 000016976 _____ C:\WINDOWS\system32\results.xml
2018-02-24 21:28 - 2018-03-11 13:32 - 000000000 __SHD C:\Users\Administrator 1\IntelGraphicsProfiles
2018-02-24 21:28 - 2018-03-07 20:48 - 000000000 ____D C:\Program Files\Intel
2018-02-24 21:28 - 2018-02-26 16:52 - 000000000 ____D C:\ProgramData\MTA San Andreas All
2018-02-24 21:28 - 2018-02-26 11:18 - 000000000 ____D C:\Program Files (x86)\Intel
2018-02-24 21:26 - 2018-02-24 21:28 - 000000000 ____D C:\Intel
2018-02-24 21:08 - 2015-11-05 17:30 - 001070232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx
2018-02-24 21:08 - 2015-11-05 17:30 - 000617896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2018-02-24 21:08 - 2015-03-16 13:58 - 000444840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshflxgd.ocx
2018-02-24 21:08 - 2014-09-10 10:14 - 000163480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000660120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomct2.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000416408 _____ (Microsoft Corporation ) C:\WINDOWS\SysWOW64\comct332.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000279192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatgrd.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000259736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msflxgrd.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatlst.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000222360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tabctl32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000219288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\richtx32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000218776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dblist32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000212112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mci32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000179352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmask32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comct232.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000131728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000130712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2018-02-24 21:08 - 2013-11-25 06:27 - 000127640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswinsck.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000119960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomm32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000108696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstkprp.dll
2018-02-24 21:08 - 2013-11-25 06:27 - 000104088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\picclp32.ocx
2018-02-24 21:08 - 2013-11-25 06:27 - 000084624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysinfo.ocx
2018-02-24 21:08 - 2011-01-12 13:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71deu.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71ita.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71fra.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71esp.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71enu.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71kor.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71jpn.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71cht.dll
2018-02-24 21:08 - 2011-01-12 13:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71chs.dll
2018-02-24 21:08 - 2011-01-12 13:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2018-02-24 21:08 - 2011-01-12 12:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2018-02-24 21:08 - 2007-02-01 22:13 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2018-02-24 21:08 - 2007-02-01 19:11 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2018-02-24 21:08 - 2007-01-30 22:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2018-02-24 21:08 - 2006-08-26 00:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2018-02-24 21:08 - 2006-08-26 00:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2018-02-24 21:08 - 2006-08-26 00:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2018-02-24 21:08 - 2006-08-25 23:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2018-02-24 21:08 - 2005-01-20 19:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2018-02-24 21:08 - 2002-01-05 05:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp70.dll
2018-02-24 21:08 - 1996-01-12 03:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vb40032.dll
2018-02-24 21:08 - 1993-07-23 19:31 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2018-02-24 21:05 - 2018-03-11 11:38 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\libraries
2018-02-24 20:55 - 2018-03-11 13:37 - 000698248 _____ C:\WINDOWS\system32\perfh002.dat
2018-02-24 20:55 - 2018-03-11 13:37 - 000212472 _____ C:\WINDOWS\system32\perfc002.dat
2018-02-24 20:54 - 2018-02-24 20:54 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-02-24 20:54 - 2018-02-24 20:54 - 000000000 ____D C:\Program Files\MSBuild
2018-02-24 20:54 - 2018-02-24 20:54 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-02-24 20:54 - 2018-02-24 20:54 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-02-24 20:52 - 2017-09-28 15:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-02-24 20:52 - 2017-09-28 15:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-02-24 20:52 - 2017-09-28 15:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-02-24 20:52 - 2017-09-22 18:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-02-24 20:52 - 2017-09-22 18:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-02-24 20:52 - 2017-09-22 18:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-02-24 20:50 - 2018-03-11 11:20 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-24 20:50 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2018-02-24 20:50 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2018-02-24 20:50 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2018-02-24 20:50 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2018-02-24 20:50 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2018-02-24 20:50 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2018-02-24 20:50 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2018-02-24 20:50 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2018-02-24 20:50 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2018-02-24 20:50 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2018-02-24 20:50 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2018-02-24 20:50 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2018-02-24 20:50 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2018-02-24 20:50 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2018-02-24 20:49 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2018-02-24 20:49 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2018-02-24 20:49 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2018-02-24 20:49 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2018-02-24 20:49 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2018-02-24 20:49 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2018-02-24 20:49 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2018-02-24 20:49 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2018-02-24 20:49 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2018-02-24 20:49 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2018-02-24 20:49 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2018-02-24 20:49 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2018-02-24 20:49 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2018-02-24 20:49 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2018-02-24 20:49 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2018-02-24 20:49 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2018-02-24 20:49 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2018-02-24 20:49 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2018-02-24 20:49 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2018-02-24 20:49 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2018-02-24 20:49 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2018-02-24 20:49 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2018-02-24 20:49 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2018-02-24 20:49 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2018-02-24 20:49 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2018-02-24 20:49 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2018-02-24 20:49 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2018-02-24 20:49 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2018-02-24 20:49 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2018-02-24 20:49 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2018-02-24 20:49 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2018-02-24 20:49 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2018-02-24 20:49 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2018-02-24 20:49 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2018-02-24 20:49 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2018-02-24 20:49 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2018-02-24 20:49 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2018-02-24 20:49 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2018-02-24 20:49 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2018-02-24 20:49 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2018-02-24 20:49 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2018-02-24 20:49 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2018-02-24 20:49 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2018-02-24 20:49 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2018-02-24 20:49 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2018-02-24 20:49 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2018-02-24 20:49 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2018-02-24 20:49 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2018-02-24 20:49 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2018-02-24 20:49 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2018-02-24 20:49 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2018-02-24 20:49 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2018-02-24 20:49 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2018-02-24 20:49 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2018-02-24 20:49 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2018-02-24 20:49 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2018-02-24 20:49 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2018-02-24 20:49 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2018-02-24 20:49 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2018-02-24 20:49 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2018-02-24 20:49 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2018-02-24 20:49 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2018-02-24 20:49 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2018-02-24 20:49 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2018-02-24 20:49 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2018-02-24 20:49 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2018-02-24 20:49 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2018-02-24 20:49 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2018-02-24 20:49 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2018-02-24 20:49 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2018-02-24 20:49 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2018-02-24 20:49 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2018-02-24 20:49 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2018-02-24 20:49 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2018-02-24 20:49 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2018-02-24 20:49 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2018-02-24 20:49 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2018-02-24 20:49 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2018-02-24 20:49 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2018-02-24 20:49 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2018-02-24 20:49 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2018-02-24 20:49 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2018-02-24 20:49 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2018-02-24 20:49 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2018-02-24 20:49 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2018-02-24 20:49 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2018-02-24 20:49 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2018-02-24 20:49 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2018-02-24 20:49 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2018-02-24 20:49 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2018-02-24 20:49 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2018-02-24 20:49 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2018-02-24 20:49 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2018-02-24 20:49 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2018-02-24 20:48 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2018-02-24 20:48 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2018-02-24 20:48 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2018-02-24 20:48 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2018-02-24 20:48 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2018-02-24 20:48 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2018-02-24 20:48 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2018-02-24 20:48 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2018-02-24 20:48 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2018-02-24 20:48 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2018-02-24 20:46 - 2018-02-26 16:59 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2018-02-24 20:46 - 2018-02-24 20:53 - 000000944 _____ C:\Users\Administrator 1\Desktop\Counter-Strike Global Offensive.lnk
2018-02-24 20:46 - 2018-02-24 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Global Offensive
2018-02-24 20:31 - 2018-02-24 20:31 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\DBG
2018-02-24 20:10 - 2018-02-10 08:16 - 002406456 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-24 20:10 - 2018-02-10 08:14 - 004504464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-02-24 20:10 - 2018-02-10 08:10 - 000614160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-24 20:10 - 2018-02-10 08:09 - 003904296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-02-24 20:10 - 2018-02-10 08:08 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-02-24 20:10 - 2018-02-10 08:04 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-24 20:10 - 2018-02-10 08:03 - 001619808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-02-24 20:10 - 2018-02-10 07:17 - 002255112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-02-24 20:10 - 2018-02-10 07:09 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-02-24 20:10 - 2018-02-10 07:06 - 006481640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-02-24 20:10 - 2018-02-10 07:06 - 004670728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-02-24 20:10 - 2018-02-10 07:04 - 001491352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-02-24 20:10 - 2018-02-10 06:50 - 003665408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-02-24 20:10 - 2018-02-10 06:47 - 017160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-24 20:10 - 2018-02-10 06:47 - 013704192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-02-24 20:10 - 2018-02-10 06:45 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-02-24 20:10 - 2018-02-10 06:43 - 008020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-24 20:10 - 2018-02-10 06:43 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-02-24 20:10 - 2018-02-10 06:40 - 012831744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-02-24 20:10 - 2018-02-10 06:40 - 004113408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-24 20:10 - 2018-02-10 06:40 - 003405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-02-24 20:10 - 2018-02-10 06:39 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-02-24 20:10 - 2018-02-10 06:39 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-02-24 20:10 - 2018-02-10 06:39 - 002741248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-02-24 20:10 - 2018-02-10 06:38 - 006567936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-02-24 20:10 - 2018-02-10 06:38 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-02-24 20:10 - 2018-02-10 06:38 - 003169280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-24 20:10 - 2018-02-09 05:35 - 004959688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2018-02-24 20:10 - 2018-01-01 14:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-02-24 20:10 - 2018-01-01 14:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-02-24 20:10 - 2018-01-01 13:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-02-24 20:10 - 2018-01-01 13:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-02-24 20:09 - 2018-02-24 20:09 - 000000335 _____ C:\Users\Administrator 1\Desktop\computer.lnk
2018-02-24 20:09 - 2018-02-10 08:21 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-02-24 20:09 - 2018-02-10 08:20 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-02-24 20:09 - 2018-02-10 08:19 - 001133888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-24 20:09 - 2018-02-10 08:18 - 001193192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-24 20:09 - 2018-02-10 08:18 - 000319864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-02-24 20:09 - 2018-02-10 08:18 - 000098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2018-02-24 20:09 - 2018-02-10 08:18 - 000022400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2018-02-24 20:09 - 2018-02-10 08:16 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-02-24 20:09 - 2018-02-10 08:15 - 002514944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-02-24 20:09 - 2018-02-10 08:15 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-02-24 20:09 - 2018-02-10 08:15 - 000471968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-02-24 20:09 - 2018-02-10 08:14 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-02-24 20:09 - 2018-02-10 08:14 - 001002592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-02-24 20:09 - 2018-02-10 08:13 - 001416392 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-02-24 20:09 - 2018-02-10 08:13 - 000535960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-02-24 20:09 - 2018-02-10 08:13 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-02-24 20:09 - 2018-02-10 08:13 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-02-24 20:09 - 2018-02-10 08:12 - 004537040 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2018-02-24 20:09 - 2018-02-10 08:12 - 001313016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-02-24 20:09 - 2018-02-10 08:12 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-02-24 20:09 - 2018-02-10 08:11 - 001029528 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-02-24 20:09 - 2018-02-10 08:11 - 000711432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-02-24 20:09 - 2018-02-10 08:11 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-02-24 20:09 - 2018-02-10 08:10 - 002447768 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-02-24 20:09 - 2018-02-10 08:10 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-02-24 20:09 - 2018-02-10 08:10 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-02-24 20:09 - 2018-02-10 08:10 - 000154520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-24 20:09 - 2018-02-10 08:09 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-02-24 20:09 - 2018-02-10 08:09 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-02-24 20:09 - 2018-02-10 08:09 - 000491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-02-24 20:09 - 2018-02-10 08:09 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-24 20:09 - 2018-02-10 08:08 - 003010248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-02-24 20:09 - 2018-02-10 08:08 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-02-24 20:09 - 2018-02-10 08:08 - 000687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-02-24 20:09 - 2018-02-10 08:08 - 000398824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-24 20:09 - 2018-02-10 08:08 - 000096200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2018-02-24 20:09 - 2018-02-10 08:08 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-02-24 20:09 - 2018-02-10 08:07 - 004506576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-02-24 20:09 - 2018-02-10 08:07 - 002710728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-02-24 20:09 - 2018-02-10 08:07 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-02-24 20:09 - 2018-02-10 08:07 - 000436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 004486904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000824896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000819096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2018-02-24 20:09 - 2018-02-10 08:06 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-02-24 20:09 - 2018-02-10 08:06 - 000594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000519144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-24 20:09 - 2018-02-10 08:06 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-02-24 20:09 - 2018-02-10 08:06 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000189336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000100248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-24 20:09 - 2018-02-10 08:06 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-24 20:09 - 2018-02-10 08:05 - 000688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-24 20:09 - 2018-02-10 08:05 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-24 20:09 - 2018-02-10 08:05 - 000070856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 006791984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 001778584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 001628056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 001430760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-02-24 20:09 - 2018-02-10 08:04 - 001426672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 001254144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-02-24 20:09 - 2018-02-10 08:04 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-02-24 20:09 - 2018-02-10 08:04 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-02-24 20:09 - 2018-02-10 08:04 - 000339872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 000212880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-24 20:09 - 2018-02-10 08:04 - 000093592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-02-24 20:09 - 2018-02-10 08:03 - 000849304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-24 20:09 - 2018-02-10 08:03 - 000722616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-02-24 20:09 - 2018-02-10 08:03 - 000706600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-24 20:09 - 2018-02-10 08:03 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-24 20:09 - 2018-02-10 08:03 - 000098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-02-24 20:09 - 2018-02-10 08:02 - 002220952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 001420696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-02-24 20:09 - 2018-02-10 08:02 - 000831384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000813976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000744856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000670104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000645528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000628632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000397720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2018-02-24 20:09 - 2018-02-10 08:02 - 000231320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2018-02-24 20:09 - 2018-02-10 08:02 - 000040352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll
2018-02-24 20:09 - 2018-02-10 07:22 - 001930224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-02-24 20:09 - 2018-02-10 07:21 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-02-24 20:09 - 2018-02-10 07:18 - 001384288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-02-24 20:09 - 2018-02-10 07:18 - 000022424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2018-02-24 20:09 - 2018-02-10 07:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-02-24 20:09 - 2018-02-10 07:17 - 000542856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2018-02-24 20:09 - 2018-02-10 07:15 - 001145624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-02-24 20:09 - 2018-02-10 07:12 - 004382032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2018-02-24 20:09 - 2018-02-10 07:11 - 001250528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2018-02-24 20:09 - 2018-02-10 07:10 - 000422592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-02-24 20:09 - 2018-02-10 07:09 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-02-24 20:09 - 2018-02-10 07:09 - 002338776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-02-24 20:09 - 2018-02-10 07:09 - 001123456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-02-24 20:09 - 2018-02-10 07:09 - 000559976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-02-24 20:09 - 2018-02-10 07:09 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2018-02-24 20:09 - 2018-02-10 07:08 - 003980720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2018-02-24 20:09 - 2018-02-10 07:08 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-02-24 20:09 - 2018-02-10 07:08 - 000592792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000527864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000123808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000089504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000083216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2018-02-24 20:09 - 2018-02-10 07:07 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-02-24 20:09 - 2018-02-10 07:06 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-02-24 20:09 - 2018-02-10 07:06 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 001149272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000718232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000654456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000551672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000193248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000079256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2018-02-24 20:09 - 2018-02-10 07:05 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2018-02-24 20:09 - 2018-02-10 07:05 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-02-24 20:09 - 2018-02-10 07:04 - 000027032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVClientPS.dll
2018-02-24 20:09 - 2018-02-10 07:03 - 000505160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2018-02-24 20:09 - 2018-02-10 06:50 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-02-24 20:09 - 2018-02-10 06:50 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-02-24 20:09 - 2018-02-10 06:50 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-02-24 20:09 - 2018-02-10 06:50 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-02-24 20:09 - 2018-02-10 06:49 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-02-24 20:09 - 2018-02-10 06:49 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-24 20:09 - 2018-02-10 06:49 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-02-24 20:09 - 2018-02-10 06:49 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-02-24 20:09 - 2018-02-10 06:49 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-02-24 20:09 - 2018-02-10 06:49 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-02-24 20:09 - 2018-02-10 06:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-02-24 20:09 - 2018-02-10 06:49 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-24 20:09 - 2018-02-10 06:49 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-24 20:09 - 2018-02-10 06:48 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-24 20:09 - 2018-02-10 06:48 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-02-24 20:09 - 2018-02-10 06:48 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-02-24 20:09 - 2018-02-10 06:47 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-02-24 20:09 - 2018-02-10 06:47 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-02-24 20:09 - 2018-02-10 06:46 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-02-24 20:09 - 2018-02-10 06:46 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2018-02-24 20:09 - 2018-02-10 06:46 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:46 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2018-02-24 20:09 - 2018-02-10 06:45 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-02-24 20:09 - 2018-02-10 06:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EnterpriseAppMgmtClient.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2018-02-24 20:09 - 2018-02-10 06:44 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2018-02-24 20:09 - 2018-02-10 06:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 003756032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-02-24 20:09 - 2018-02-10 06:43 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppManagementConfiguration.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2018-02-24 20:09 - 2018-02-10 06:43 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 001113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2018-02-24 20:09 - 2018-02-10 06:42 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2018-02-24 20:09 - 2018-02-10 06:42 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-02-24 20:09 - 2018-02-10 06:42 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-24 20:09 - 2018-02-10 06:42 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-02-24 20:09 - 2018-02-10 06:42 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvr32.exe
2018-02-24 20:09 - 2018-02-10 06:41 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000859648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-02-24 20:09 - 2018-02-10 06:41 - 000820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-24 20:09 - 2018-02-10 06:41 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppManagementConfiguration.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2018-02-24 20:09 - 2018-02-10 06:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 004498432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-02-24 20:09 - 2018-02-10 06:40 - 003367936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 001234432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 001002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2018-02-24 20:09 - 2018-02-10 06:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2018-02-24 20:09 - 2018-02-10 06:40 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2018-02-24 20:09 - 2018-02-10 06:40 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:40 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 002976256 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 002677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 002490880 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 001669120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2018-02-24 20:09 - 2018-02-10 06:39 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2018-02-24 20:09 - 2018-02-10 06:39 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regsvr32.exe
2018-02-24 20:09 - 2018-02-10 06:38 - 006722560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2018-02-24 20:09 - 2018-02-10 06:38 - 004815360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 003125760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 002184192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-02-24 20:09 - 2018-02-10 06:38 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-02-24 20:09 - 2018-02-10 06:38 - 001968640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-02-24 20:09 - 2018-02-10 06:38 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2018-02-24 20:09 - 2018-02-10 06:38 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-02-24 20:09 - 2018-02-10 06:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-02-24 20:09 - 2018-02-10 06:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 003678720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 003419136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-02-24 20:09 - 2018-02-10 06:37 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 002784256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 002523648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-24 20:09 - 2018-02-10 06:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2018-02-24 20:09 - 2018-02-10 06:37 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 002462208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 001759744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2018-02-24 20:09 - 2018-02-10 06:36 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 005388800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 002814976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-02-24 20:09 - 2018-02-10 06:35 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-02-24 20:09 - 2018-02-10 06:35 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2018-02-24 20:09 - 2018-02-10 06:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2018-02-24 20:09 - 2018-02-10 06:34 - 006532096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2018-02-24 20:09 - 2018-02-10 06:34 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-02-24 20:09 - 2018-02-10 06:34 - 002983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2018-02-24 20:09 - 2018-02-10 06:34 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-24 20:09 - 2018-02-10 06:34 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-02-24 20:09 - 2018-02-10 06:34 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-24 20:09 - 2018-02-10 06:34 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 001936384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2018-02-24 20:09 - 2018-02-10 06:33 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-24 20:09 - 2018-02-10 06:33 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-02-24 20:09 - 2018-02-10 06:33 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-02-24 20:09 - 2018-02-10 06:33 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-02-24 20:09 - 2018-02-10 06:33 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-02-24 20:09 - 2018-02-10 06:32 - 002427904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2018-02-24 20:09 - 2018-02-10 06:32 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2018-02-24 20:09 - 2018-02-10 06:32 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2018-02-24 20:09 - 2018-02-10 06:32 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-02-24 20:09 - 2018-02-10 06:32 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.ProxyStub.dll
2018-02-24 20:09 - 2018-02-10 06:31 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2018-02-24 20:09 - 2018-02-10 06:31 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2018-02-24 20:09 - 2018-02-10 06:31 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2018-02-24 20:09 - 2018-02-10 06:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2018-02-24 20:09 - 2018-02-10 06:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2018-02-24 20:09 - 2018-02-10 04:59 - 000804240 _____ C:\WINDOWS\SysWOW64\locale.nls
2018-02-24 20:09 - 2018-02-10 04:59 - 000804240 _____ C:\WINDOWS\system32\locale.nls
2018-02-24 20:09 - 2018-02-09 05:35 - 001234888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2018-02-24 20:09 - 2018-02-09 05:35 - 001002952 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2018-02-24 20:09 - 2018-02-09 05:35 - 000892872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2018-02-24 20:09 - 2018-02-09 05:35 - 000065992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-24 20:09 - 2018-02-02 05:36 - 003903944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2018-02-24 20:09 - 2018-02-02 05:36 - 000921032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2018-02-24 20:09 - 2018-02-02 05:36 - 000854976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2018-02-24 20:09 - 2018-02-02 05:36 - 000649672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2018-02-24 20:09 - 2018-02-02 05:36 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2018-02-24 20:09 - 2018-01-01 19:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-02-24 20:09 - 2018-01-01 14:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-02-24 20:09 - 2018-01-01 14:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-02-24 20:09 - 2018-01-01 14:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-02-24 20:09 - 2018-01-01 14:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-02-24 20:09 - 2018-01-01 14:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-02-24 20:09 - 2018-01-01 14:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-02-24 20:09 - 2018-01-01 14:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-02-24 20:09 - 2018-01-01 14:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-02-24 20:09 - 2018-01-01 14:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-02-24 20:09 - 2018-01-01 14:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-02-24 20:09 - 2018-01-01 14:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-02-24 20:09 - 2018-01-01 14:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-02-24 20:09 - 2018-01-01 14:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-02-24 20:09 - 2018-01-01 14:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-02-24 20:09 - 2018-01-01 14:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-02-24 20:09 - 2018-01-01 14:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-02-24 20:09 - 2018-01-01 14:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-02-24 20:09 - 2018-01-01 14:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-02-24 20:09 - 2018-01-01 14:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-02-24 20:09 - 2018-01-01 14:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-02-24 20:09 - 2018-01-01 14:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-02-24 20:09 - 2018-01-01 14:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-02-24 20:09 - 2018-01-01 14:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-02-24 20:09 - 2018-01-01 14:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-02-24 20:09 - 2018-01-01 14:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-02-24 20:09 - 2018-01-01 14:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-02-24 20:09 - 2018-01-01 14:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-02-24 20:09 - 2018-01-01 14:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-02-24 20:09 - 2018-01-01 14:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-02-24 20:09 - 2018-01-01 14:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-02-24 20:09 - 2018-01-01 14:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-02-24 20:09 - 2018-01-01 14:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-02-24 20:09 - 2018-01-01 14:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-02-24 20:09 - 2018-01-01 14:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-02-24 20:09 - 2018-01-01 13:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-02-24 20:09 - 2018-01-01 13:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-02-24 20:09 - 2018-01-01 13:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-02-24 20:09 - 2018-01-01 13:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-02-24 20:09 - 2018-01-01 13:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-02-24 20:09 - 2018-01-01 13:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-02-24 20:09 - 2018-01-01 13:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-02-24 20:09 - 2018-01-01 13:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-02-24 20:09 - 2018-01-01 13:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-02-24 20:09 - 2018-01-01 13:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-02-24 20:09 - 2018-01-01 13:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-02-24 20:09 - 2018-01-01 13:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-02-24 20:09 - 2018-01-01 13:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-02-24 20:09 - 2018-01-01 13:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-02-24 20:09 - 2018-01-01 13:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-02-24 20:09 - 2018-01-01 13:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-02-24 20:09 - 2018-01-01 13:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-02-24 20:09 - 2018-01-01 13:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-02-24 20:09 - 2018-01-01 13:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2018-02-24 20:09 - 2018-01-01 13:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-02-24 20:09 - 2018-01-01 13:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-02-24 20:09 - 2018-01-01 13:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-02-24 20:09 - 2018-01-01 13:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-02-24 20:09 - 2018-01-01 13:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-02-24 20:09 - 2018-01-01 13:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-02-24 20:09 - 2018-01-01 13:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-02-24 20:09 - 2018-01-01 13:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-02-24 20:09 - 2018-01-01 13:21 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-02-24 20:09 - 2018-01-01 13:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-02-24 20:09 - 2018-01-01 13:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-02-24 20:09 - 2018-01-01 13:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-02-24 20:09 - 2018-01-01 13:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-02-24 20:09 - 2018-01-01 13:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-02-24 20:09 - 2018-01-01 13:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-02-24 20:09 - 2018-01-01 13:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-02-24 20:09 - 2018-01-01 13:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-02-24 20:09 - 2018-01-01 13:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-02-24 20:09 - 2018-01-01 13:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-02-24 20:09 - 2018-01-01 13:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-02-24 20:09 - 2018-01-01 13:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-02-24 20:09 - 2018-01-01 13:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-02-24 20:09 - 2018-01-01 13:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-02-24 20:09 - 2018-01-01 13:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-02-24 20:09 - 2018-01-01 13:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-02-24 20:09 - 2018-01-01 13:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-02-24 20:09 - 2018-01-01 13:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-02-24 20:09 - 2018-01-01 13:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-02-24 20:09 - 2018-01-01 13:11 - 001955328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-02-24 20:09 - 2018-01-01 13:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-02-24 20:09 - 2018-01-01 13:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-02-24 20:09 - 2018-01-01 13:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-02-24 20:09 - 2018-01-01 13:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-02-24 20:09 - 2018-01-01 13:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-02-24 20:09 - 2018-01-01 13:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-02-24 20:09 - 2018-01-01 13:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-02-24 20:09 - 2018-01-01 13:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-02-24 20:09 - 2018-01-01 13:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-02-24 20:09 - 2018-01-01 13:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-02-24 20:09 - 2018-01-01 13:08 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-02-24 20:09 - 2018-01-01 13:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-02-24 20:09 - 2018-01-01 13:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-02-24 20:09 - 2018-01-01 13:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-02-24 19:55 - 2018-03-02 13:51 - 000000758 _____ C:\Users\Administrator 1\Desktop\Kpuc.lnk
2018-02-24 19:53 - 2018-02-24 19:53 - 000000000 ____D C:\ProgramData\USOShared
2018-02-24 19:52 - 2018-02-24 19:52 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-02-24 19:51 - 2018-02-24 19:51 - 000000000 ___HD C:\Users\Administrator 1\MicrosoftEdgeBackups
2018-02-24 19:50 - 2018-03-06 18:28 - 000000000 ___RD C:\Users\Administrator 1\3D Objects
2018-02-24 19:50 - 2018-02-24 19:50 - 000000020 ___SH C:\Users\Administrator 1\ntuser.ini
2018-02-24 19:49 - 2018-03-11 13:37 - 002219070 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-24 19:48 - 2018-03-11 13:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-24 19:48 - 2018-02-24 19:48 - 000001888 _____ C:\WINDOWS\System32\Tasks\Launch BitComet
2018-02-24 19:48 - 2018-02-24 19:48 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-2054842250-3291440368-2934754424-1001
2018-02-24 19:47 - 2018-02-24 19:48 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-02-24 19:47 - 2018-02-24 19:48 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-02-24 19:47 - 2018-02-24 19:47 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-02-24 19:44 - 2018-02-24 19:44 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2018-02-24 19:43 - 2018-03-05 13:23 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Comms
2018-02-24 19:43 - 2018-02-24 19:43 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-02-24 19:42 - 2018-02-24 09:59 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\MicrosoftEdge
2018-02-24 19:39 - 2018-02-25 19:55 - 000002425 _____ C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-02-24 19:39 - 2018-02-25 19:55 - 000000000 ___RD C:\Users\Administrator 1\OneDrive
2018-02-24 19:39 - 2018-02-24 20:21 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Packages
2018-02-24 19:38 - 2018-03-11 13:32 - 000000000 ____D C:\Users\Administrator 1
2018-02-24 19:38 - 2017-09-29 15:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-02-24 19:37 - 2018-01-03 09:32 - 000144832 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-02-24 19:36 - 2018-03-11 13:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-02-24 19:36 - 2018-03-11 11:29 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Adobe
2018-02-24 19:36 - 2018-03-06 18:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-02-24 19:36 - 2018-02-26 20:35 - 000222000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-24 19:36 - 2018-02-24 19:50 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\TileDataLayer
2018-02-24 19:36 - 2018-02-24 19:36 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\VirtualStore
2018-02-24 19:36 - 2018-02-24 19:36 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Publishers
2018-02-24 19:36 - 2018-02-24 19:36 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\ConnectedDevicesPlatform
2018-02-24 19:35 - 2018-02-24 19:35 - 000000000 ____D C:\WINDOWS\CSC
2018-02-24 19:29 - 2018-02-24 19:29 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2018-02-24 18:04 - 2018-02-24 18:04 - 000001383 _____ C:\Users\Administrator 1\Desktop\cstrike.lnk
2018-02-24 16:45 - 2018-02-24 18:08 - 871262472 _____ C:\Users\Administrator 1\Downloads\_Oceanofgames.com_GT (1).zip
2018-02-24 16:01 - 2018-02-24 19:34 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-02-24 16:00 - 2018-02-24 16:02 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-02-24 15:58 - 2018-02-24 15:58 - 000000000 ____D C:\WINDOWS\containers
2018-02-24 15:57 - 2018-02-24 15:57 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-02-24 15:57 - 2018-02-24 15:57 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2018-02-24 15:56 - 2018-02-24 15:56 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2018-02-24 15:56 - 2018-02-24 15:56 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2018-02-24 15:56 - 2018-02-24 15:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2018-02-24 15:56 - 2018-02-24 15:56 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterShim.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2018-02-24 15:56 - 2018-02-24 15:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2018-02-24 15:55 - 2018-02-24 15:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2018-02-24 15:55 - 2018-02-24 15:55 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2018-02-24 15:55 - 2018-02-24 15:55 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2018-02-24 15:41 - 2018-02-24 15:41 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-02-24 13:54 - 2018-03-10 20:23 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\CC
2018-02-24 13:50 - 2018-02-24 13:50 - 000000016 _____ C:\ProgramData\mntemp
2018-02-24 13:50 - 2018-02-24 13:50 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Netease
2018-02-24 13:48 - 2018-01-16 12:18 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2018-02-24 13:48 - 2018-01-16 12:18 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2018-02-24 13:38 - 2018-02-24 13:38 - 000000000 ____D C:\Program Files\rempl
2018-02-24 13:38 - 2018-02-24 11:40 - 000548000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-02-24 13:36 - 2018-02-24 13:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-02-24 13:36 - 2018-02-24 13:36 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-24 13:36 - 2018-02-24 13:36 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-02-24 13:36 - 2018-01-09 16:44 - 000108584 _____ (Microsoft Corporation) C:\WINDOWS\system32\osrss.dll
2018-02-24 12:03 - 2018-02-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2018-02-24 12:03 - 2018-02-24 12:03 - 000001205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2018-02-24 12:01 - 2018-02-24 12:08 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\BSplayer
2018-02-24 12:01 - 2018-02-24 12:01 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\BSplayer Pro
2018-02-24 12:01 - 2018-02-24 12:01 - 000000000 ____D C:\Program Files (x86)\Webteh
2018-02-24 12:00 - 2018-03-04 15:34 - 000000000 ___DC C:\WINDOWS\Panther
2018-02-24 11:52 - 2018-02-24 11:52 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\WinRAR
2018-02-24 11:51 - 2018-02-24 19:44 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-02-24 11:51 - 2018-02-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-02-24 11:51 - 2018-02-24 11:51 - 000000000 ____D C:\Program Files\WinRAR
2018-02-24 10:58 - 2018-02-24 10:58 - 000001118 _____ C:\Users\Administrator 1\Desktop\Minecraft.lnk
2018-02-24 10:57 - 2018-03-11 10:55 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\.minecraft
2018-02-24 10:57 - 2018-02-24 10:57 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\java
2018-02-24 10:42 - 2018-02-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet (64-bit)
2018-02-24 10:42 - 2018-02-24 10:42 - 000000853 _____ C:\Users\Public\Desktop\BitComet.lnk
2018-02-24 10:41 - 2018-03-11 13:29 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\BitComet
2018-02-24 10:41 - 2018-02-24 10:42 - 000000000 ____D C:\Program Files\BitComet
2018-02-24 10:25 - 2018-03-11 13:55 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Google
2018-02-24 10:25 - 2018-03-11 13:46 - 000000000 ____D C:\Program Files (x86)\Google
2018-02-24 10:22 - 2018-02-24 19:44 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-02-24 10:22 - 2018-02-24 10:22 - 000000207 _____ C:\Users\Administrator 1\Desktop\Counter-Strike.url
2018-02-24 10:14 - 2018-02-24 10:14 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\Steam
2018-02-24 10:14 - 2018-02-24 10:14 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\CEF
2018-02-24 10:11 - 2018-02-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-02-24 10:11 - 2018-02-24 10:12 - 000000000 ____D C:\ProgramData\Oracle
2018-02-24 10:11 - 2018-02-24 10:11 - 000097344 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-02-24 10:11 - 2018-02-24 10:11 - 000000000 ____D C:\Users\Administrator 1\AppData\Roaming\Sun
2018-02-24 10:11 - 2018-02-24 10:11 - 000000000 ____D C:\Users\Administrator 1\AppData\LocalLow\Sun
2018-02-24 10:11 - 2018-02-24 10:11 - 000000000 ____D C:\Program Files (x86)\Java
2018-02-24 10:08 - 2018-02-24 10:08 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2018-02-24 10:03 - 2018-02-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-02-24 09:39 - 2018-02-24 09:39 - 000000000 ____D C:\Program Files\DIFX
2018-02-24 09:38 - 2016-07-26 09:48 - 000543184 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\e1d65x64.sys
2018-02-24 09:38 - 2014-04-18 22:17 - 000125728 _____ (Intel Corporation) C:\WINDOWS\system32\NicCo4.dll
2018-02-24 09:29 - 2018-03-10 18:46 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\ElevatedDiagnostics
2018-02-24 09:28 - 2018-02-24 09:28 - 000000000 ____D C:\Users\Administrator 1\AppData\Local\PeerDistRepub

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-11 14:09 - 2018-01-19 15:31 - 000015872 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2018-03-11 14:09 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-03-11 14:08 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-03-11 13:43 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-11 13:42 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-11 13:20 - 2017-03-18 23:03 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-03-11 11:45 - 2017-09-29 10:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-03-10 09:21 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-10 09:21 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-09 13:28 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-07 15:17 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-03-06 18:25 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-06 18:25 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-06 18:19 - 2017-09-29 15:41 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-03-06 18:19 - 2017-09-29 15:41 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-03-04 15:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-03-01 13:52 - 2017-09-29 15:46 - 000000000 ___RD C:\Program Files\Windows Defender
2018-02-25 09:41 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\appcompat
2018-02-24 21:51 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-02-24 21:51 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-02-24 21:50 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-02-24 21:50 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-02-24 21:50 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-02-24 21:50 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-02-24 21:50 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-02-24 21:49 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Provisioning
2018-02-24 21:49 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-02-24 21:49 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-02-24 21:07 - 2017-09-29 15:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-24 20:07 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-02-24 19:49 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\USOPrivate
2018-02-24 19:48 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-02-24 19:48 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Registration
2018-02-24 19:48 - 2017-09-29 10:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-02-24 19:46 - 2017-09-29 15:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-02-24 19:40 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-02-24 19:37 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-02-24 19:35 - 2017-09-29 15:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-02-24 19:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\spool
2018-02-24 19:34 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-02-24 19:33 - 2017-09-29 15:49 - 000000000 ____D C:\WINDOWS\Setup
2018-02-24 15:58 - 2017-09-30 16:37 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\si-LK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\am-ET
2018-02-24 15:58 - 2017-09-30 16:36 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-02-24 15:58 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-02-24 15:58 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-02-24 15:58 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-02-24 15:58 - 2017-09-29 15:46 - 000000000 ____D C:\PerfLogs

==================== Files in the root of some directories =======

1624-02-24 06:22 - 1624-02-24 06:22 - 000059904 ____N (Microsoft Corporation) C:\Users\Administrator 1\XoNezueoQ.exe
1624-02-24 06:22 - 1624-02-24 06:22 - 000059904 ____N (Microsoft Corporation) C:\Users\Administrator 1\AppData\Roaming\ZtUgOmaosEy.exe
2018-03-03 14:05 - 2018-03-10 18:07 - 000007597 _____ () C:\Users\Administrator 1\AppData\Local\Resmon.ResmonCfg
2018-03-11 13:20 - 2018-03-11 13:20 - 000000003 _____ () C:\Users\Administrator 1\AppData\Local\wbem.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-07 15:15

==================== End of FRST.txt ============================

Addition.txt

Линк към този отговор
Сподели в други сайтове

Прикачи и логовете на Malwarebytes и Eset.

Линк към този отговор
Сподели в други сайтове

Ето ги двата log-а на ESET, първоначалното сканиране и пълното, пуснато от мен (pc + оперативна памет + c + d + сектор за начално стартиране), заедно с логовете на Malwarebytes. Карантините са ми празни- изтрих файловете в тях.

ESET:

https://ndox.abv.bg/download?id=4c645b07e3

- https://ndox.abv.bg/download?id=e582f35b85

Malwarebytes:

https://ndox.abv.bg/download?id=db27897a89

https://ndox.abv.bg/download?id=4de3f447ca

https://ndox.abv.bg/download?id=9613218302

https://ndox.abv.bg/download?id=158684df6c

https://ndox.abv.bg/download?id=2aca95a0f1

https://ndox.abv.bg/download?id=8e9b8fd1c7

- https://ndox.abv.bg/download?id=1a22348cdd 

Линк към този отговор
Сподели в други сайтове

Здравейте,

Изтеглете edit-text.giffixlist.txt и го запазете на в папката, където сте свалили FRST64.exe (на десктопа).

Стартирайте FRST64.exe и натиснете бутона Fix веднъж!

След като приключи, ако ви поиска рестарт - съгласете се. След рестарта публикувайте лог файла - fixlog.txt, който ще се създаде след работата на програмата на десктопа.
 
Внимание: Скрипта е създаден за текущата система. Да не се ползва за други системи с подобни проблеми!

Пишете дали се е премахнал първоначалния проблем. Направете и нова проверка с FRST и прикачете новите лог файлове.

Поздрави!


Линк към този отговор
Сподели в други сайтове

Здравейте.

Ето нужните файлове:

https://ndox.abv.bg/download?id=607fa566d1

https://ndox.abv.bg/download?id=3782450630

https://ndox.abv.bg/download?id=c8c44a2407

Проблемът с Edge Browser не е решен.

https://imgur.com/eZfdWp5

Линк към този отговор
Сподели в други сайтове

А проблема с Windows Defender решен ли е вече?

А иначе само с Edge ли не иска да отваря страници или и с другите браузъри?

Линк към този отговор
Сподели в други сайтове

Google Chrome и Internet Explorer си отварят всичко нормално. В момента деинсталирам eset, за да пробвам windows defender.

Редакция: Благодаря ви, Windows Defender работи нормално. :)

Що се отнася до Edge - ще ползвам Google Chrome занапред.

Желая ви лека вечер и да продължавате да помагате и на други с подобни проблеми. Поздрави! :) 

Линк към този отговор
Сподели в други сайтове

Момент, не сме приключили, но в момента гледам новините. Пробвайте да възстановите настройките на Edge по подразбиране:

http://www.thewindowsclub.com/reset-microsoft-edge-browser-to-default-settings-in-windows-10

https://www.howtogeek.com/237527/how-to-reset-microsoft-edge-in-windows-10/

Линк към този отговор
Сподели в други сайтове
Линк към този отговор
Сподели в други сайтове

Според информация в интернет може проблема да се корени в доста неща при Edge. DNS услугата и Hosts файла, дали има отметка пред Automatically detect settings, Open Sites в Egde и т.н.

Нека да пробваме да възстановим HOSTS файла по подразбиране:

Изтеглете edit-text.giffixlist.txt и го запазете на в папката, където сте свалили FRST64.exe (на десктопа).

Стартирайте FRST64.exe и натиснете бутона Fix веднъж!

След като приключи, ако ви поиска рестарт - съгласете се. След рестарта публикувайте лог файла - fixlog.txt, който ще се създаде след работата на програмата на десктопа.
 
Внимание: Скрипта е създаден за текущата система. Да не се ползва за други системи с подобни проблеми!

 

Ако проблема остане си добавете отново DNS адресите в настройките на мрежовата карта само че добавете и втория, защото бяхте добавили само 8.8.8.8, а трябва за втори да е зададен 8.8.4.4

https://tunecomp.net/wp-content/uploads/2016/01/8.8.8.8-pc-windows10-setup-04.png

Също така през настройките на Internet Explorer пробвайте със зададена настройка Automatically Detect Settings (и без нея) дали има промяна в поведение на Edge.

https://cdn.windowsreport.com/wp-content/uploads/2017/10/windows-could-not-automatically-detect-networks-proxy-settings-intcpl-2.png

Някои споменават, че изключването на следната опция през Edge решава проблема: (изключете за тества, ако е включена Open Sites in apps).

https://www.tenforums.com/tutorials/75455-turn-off-open-sites-apps-microsoft-edge.html

Пишете дали има промяна.

Поздрави!

Линк към този отговор
Сподели в други сайтове
Spoiler

Пробвай с пълно преинсталиране на Edge:
http://www.intowindows.com/how-to-reinstall-microsoft-edge-in-windows-10/

 

Линк към този отговор
Сподели в други сайтове

То като цяло този браузър е все още недовършен по мое мнение, но може би сте изтрили нещо, което не трябва при самопочистването.

Искам да видя рапортите от Malwarebytes по следния начин: (инструкциите са до версия 3.2.2, в 3.4.4.интерфейса е леко променен):

  • Стартирайте отново Malwarebytes Anti-Malware.
  • Отидете то табът Reports и отворете лог файла с името Scan Report.

X0ha4sd.png

  • Натиснете бутона Export и след това =>  "Copy to Clipboard"

fE9qzai.png

  • Сега вече поставете съдържанието на лог файла с клавишната комбинация Ctrl + V и го публикувайте в следващия си коментар.

По памет лог файла от Eset Online Scanner-a се пазеше в папката %temp%, а ние вече я почистихме, а вие деинсталирахте и самата програма. Още не съм разгледал предоставените от вас логове на есет, защото бяха в XML формат и не ми вършат много работа, но пак ще им хвърля един поглед ако успея да ги изтегля.

А иначе:

  • Изтеглете и стартирайте 6sv1DN9.jpgAdwCleaner.exe
  • Натиснете бутона Scan.
  • AdwCleaner ще започне да проверява компютъра.
  • След като проверката приключи натиснете бутона Clean.
  • Програмата ще затвори всички излишни процеси и след почистването ще иска да рестартира машината. Съгласете се.
  • Ще се появи автоматично лог файл с името (AdwCleaner[S0].txt и AdwCleaner[С0].txt) в C:\Adwcleaner
  • Публикувайте съдържанието на  AdwCleaner[С0].txt в следващия си коментар.

Поздрави!

Линк към този отговор
Сподели в други сайтове

Пуснах Malwarebytes [3.4.4] Threat Scan, който откри 4 заплахи.

https://imgur.com/a4nkLuJ === (в момента са в карантината)

Прикачил съм log файла от сканирането, след малко ще направя същото сканиране с версия 3.2.2 и ще ви покажа резултатите. 

mbytes344.txt

Линк към този отговор
Сподели в други сайтове

Искам да видя и старите SCAN рапорти, не само последния. Т.е. без да правите нова проверка по същия описан начин запазете рапортите и от старите проверки и ги качете. Не е необходимо да сканирате и със старата версия, нея я споменах просто за да кажа, че има изменения в интерфейса и начина за запазване на лог файловете може да не е съвсем същия като на показаните от мен снимки в стъпките.

А иначе ако в Edge въведете само //216.58.206.195

и натиснете Enter отваря ли се страницата на Google? Ако да, значи проблема все пак е в DNS услугата.

Линк към този отговор
Сподели в други сайтове
преди 1 час, B-boy/StyLe/ написа:

Искам да видя и старите SCAN рапорти, не само последния. Т.е. без да правите нова проверка по същия описан начин запазете рапортите и от старите проверки и ги качете. Не е необходимо да сканирате и със старата версия, нея я споменах просто за да кажа, че има изменения в интерфейса и начина за запазване на лог файловете може да не е съвсем същия като на показаните от мен снимки в стъпките.

А иначе ако в Edge въведете само //216.58.206.195

и натиснете Enter отваря ли се страницата на Google? Ако да, значи проблема все пак е в DNS услугата.

Когато напиша //216.58.206.195 в Edge не отваря Google (при Google Chrome се получава), но изписва www.google.com/https://imgur.com/b1ujqDE + Код на грешка: INET_E_RESOURCE_NOT_FOUND ] .

В момента , в карантината на Malwarebytes са файловете от Report №13.

Reports [1-14] :

1 . 

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на сканиране: 11.03.18 г.
Час на сканиране: 13:24
Файл на регистъра: b395df04-251e-11e8-94ff-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: DESKTOP-BQT0R28\Administrator 1

-Резюме на сканирането-
Тип сканиране: Threat Scan
Резултат: Завършено
Сканирани обекти: 300320
Открити заплахи: 335
Заплахи под карантина: 335
Изтекло време: 3 мин, 32 сек

-Опции за сканиране-
Памет: Разрешено
Стартиране: Разрешено
Файлова система: Разрешено
Архиви: Разрешено
руткитове: Забранено
Евристика: Разрешено
PUP: Открий
PUM: Открий

-Детайли за сканирането-
Процес: 9
PUP.Optional.Amonetize, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\00032188\msiql.exe, Под карантина, [6], [340209],1.0.4298
PUP.Optional.Amonetize, C:\Users\Administrator 1\AppData\Local\Temp\00032188\myscreenpro.exe, Под карантина, [6], [340209],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\ROAMING\X2PRE4HJVJK\LKIJAWZ2I0J.EXE, Под карантина, [1263], [447062],1.0.4298
PUP.Optional.YeaDesktop, C:\PROGRAM FILES (X86)\YEADESKTOP\YEADESKTOP.EXE, Под карантина, [1467], [391397],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\Setup.exe, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.Tuto4PC, C:\PROGRAM FILES (X86)\YWAYRZ5DHWB\8QRNM646L4FVJ2P.EXE, Под карантина, [60], [314799],1.0.4298
Adware.Eszjuxuan, C:\PROGRAMDATA\DREAMSCREEN\DREAMCOMPRESS.SCR, Под карантина, [155], [448581],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\2N7XV8AP31\2N7XV8AP3.EXE, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\07OONJEYGV\07OONJEYG.EXE, Под карантина, [0], [392686],1.0.4298

Модул: 9
PUP.Optional.Amonetize, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\00032188\msiql.exe, Под карантина, [6], [340209],1.0.4298
PUP.Optional.Amonetize, C:\Users\Administrator 1\AppData\Local\Temp\00032188\myscreenpro.exe, Под карантина, [6], [340209],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\ROAMING\X2PRE4HJVJK\LKIJAWZ2I0J.EXE, Под карантина, [1263], [447062],1.0.4298
PUP.Optional.YeaDesktop, C:\PROGRAM FILES (X86)\YEADESKTOP\YEADESKTOP.EXE, Под карантина, [1467], [391397],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\Setup.exe, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.Tuto4PC, C:\PROGRAM FILES (X86)\YWAYRZ5DHWB\8QRNM646L4FVJ2P.EXE, Под карантина, [60], [314799],1.0.4298
Adware.Eszjuxuan, C:\PROGRAMDATA\DREAMSCREEN\DREAMCOMPRESS.SCR, Под карантина, [155], [448581],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\2N7XV8AP31\2N7XV8AP3.EXE, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\07OONJEYGV\07OONJEYG.EXE, Под карантина, [0], [392686],1.0.4298

Ключ на регистъра: 76
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\FASTDATAX TASK, Под карантина, [1187], [407191],1.0.4298
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{91402358-3E0A-4266-81A1-6F4A9AB1B140}, Под карантина, [1187], [407191],1.0.4298
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{91402358-3E0A-4266-81A1-6F4A9AB1B140}, Под карантина, [1187], [407191],1.0.4298
Adware.FastDataX.EncJob, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FastDataX_is1, Под карантина, [1187], [407194],1.0.4298
PUP.Optional.Tuto4PC, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\wewewe, Под карантина, [60], [339689],1.0.4298
Adware.Tuto4PC, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\BIGTIME, Под карантина, [355], [412877],1.0.4298
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\prilock, Под карантина, [17], [498186],1.0.4298
Adware.Tuto4PC, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\EWMON, Под карантина, [355], [412878],1.0.4298
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\dahjService, Под карантина, [17], [459290],1.0.4298
Adware.FastDataX, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\FastDataX, Под карантина, [8037], [484533],1.0.4298
PUP.Optional.YeaDesktop, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\YeaDesktop, Под карантина, [1467], [391400],1.0.4298
PUP.Optional.YeaDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\YeaDesktop_RASAPI32, Под карантина, [1467], [409418],1.0.4298
PUP.Optional.YeaDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\YeaDesktop_RASMANCS, Под карантина, [1467], [409418],1.0.4298
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\APreSam, Под карантина, [355], [451260],1.0.4298
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForShutT, Под карантина, [355], [451257],1.0.4298
Adware.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\11598763487076930564, Под карантина, [1657], [424293],1.0.4298
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\NSaveA, Под карантина, [355], [451259],1.0.4298
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrAmNP, Под карантина, [355], [451258],1.0.4298
PUP.Optional.NeoBar.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\E3605470-291B-44EB-8648-745EE356599A, Под карантина, [1304], [396225],1.0.4298
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrIncub, Под карантина, [355], [451256],1.0.4298
PUP.Optional.YeaDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\YeaDesktop, Под карантина, [1467], [391396],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\dIxshjfnsDsrepSSqPt2, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C4AD631F-6E49-4755-B1D1-501E8AAED2E1}, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{C4AD631F-6E49-4755-B1D1-501E8AAED2E1}, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\dIxshjfnsDsrepSSqPt2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4AD631F-6E49-4755-B1D1-501E8AAED2E1}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C4AD631F-6E49-4755-B1D1-501E8AAED2E1}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\dTRRfHQjsHOvbdt2, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{DD0E15DF-0B47-417A-A07B-A2FD299A108F}, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{DD0E15DF-0B47-417A-A07B-A2FD299A108F}, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\dTRRfHQjsHOvbdt2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD0E15DF-0B47-417A-A07B-A2FD299A108F}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DD0E15DF-0B47-417A-A07B-A2FD299A108F}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\qFbxfDUevnccZZ, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4F245DEE-7300-4AFC-9E2A-A353FA637789}, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{4F245DEE-7300-4AFC-9E2A-A353FA637789}, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\qFbxfDUevnccZZ, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F245DEE-7300-4AFC-9E2A-A353FA637789}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4F245DEE-7300-4AFC-9E2A-A353FA637789}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WlbBJSMcknvngxNxC2, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{50316C0B-4D76-4DDA-96FD-04E60A7C1E37}, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{50316C0B-4D76-4DDA-96FD-04E60A7C1E37}, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WlbBJSMcknvngxNxC2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50316C0B-4D76-4DDA-96FD-04E60A7C1E37}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{50316C0B-4D76-4DDA-96FD-04E60A7C1E37}, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}\InprocServer32, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}\InprocServer32, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\TYPELIB\{4C81C924-C542-4EDB-AF7B-081D7B374013}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\INTERFACE\{04C86D67-7A4D-459E-8195-06E854B29482}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\INTERFACE\{F38FE51F-3A03-4218-9522-848D2FCCDD19}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{04C86D67-7A4D-459E-8195-06E854B29482}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F38FE51F-3A03-4218-9522-848D2FCCDD19}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{04C86D67-7A4D-459E-8195-06E854B29482}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F38FE51F-3A03-4218-9522-848D2FCCDD19}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{4C81C924-C542-4EDB-AF7B-081D7B374013}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{4C81C924-C542-4EDB-AF7B-081D7B374013}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}\InprocServer32, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\TYPELIB\{079E0027-6B91-4147-9B20-68EE134E0171}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\INTERFACE\{EB438FB2-0FDA-4DEC-A7B3-5439EF85308C}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EB438FB2-0FDA-4DEC-A7B3-5439EF85308C}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EB438FB2-0FDA-4DEC-A7B3-5439EF85308C}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{079E0027-6B91-4147-9B20-68EE134E0171}, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{079E0027-6B91-4147-9B20-68EE134E0171}, Под карантина, [175], [498454],1.0.4298
Trojan.Wdfload.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\uEON Password, Под карантина, [4072], [498711],1.0.4298
Trojan.Wdfload.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0E5A1523-85F3-4BF3-A69A-2C995CF3056F}, Под карантина, [4072], [498711],1.0.4298
Trojan.Wdfload.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{0E5A1523-85F3-4BF3-A69A-2C995CF3056F}, Под карантина, [4072], [498711],1.0.4298
Trojan.Wdfload.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\uEON Password, Под карантина, [4072], [-1],0.0.0
Trojan.Wdfload.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E5A1523-85F3-4BF3-A69A-2C995CF3056F}, Под карантина, [4072], [-1],0.0.0
Trojan.Wdfload.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{0E5A1523-85F3-4BF3-A69A-2C995CF3056F}, Под карантина, [4072], [-1],0.0.0
Adware.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DreamCompress, Под карантина, [211], [435957],1.0.4298

Стойност на регистъра: 15
PUP.Optional.Amonetize, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|msiql, Под карантина, [6], [340209],1.0.4298
Adware.Tuto4PC, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\BIGTIME|PARTNER, Под карантина, [355], [412877],1.0.4298
Adware.Tuto4PC, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\EWMON|PARTNER, Под карантина, [355], [412878],1.0.4298
Adware.Tuto4PC.Generic, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|QOSZV5IFSS9OPZG, Под карантина, [1263], [392931],1.0.4298
Adware.Tuto4PC.Generic, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|3101735, Под карантина, [1263], [447062],1.0.4298
Adware.Tuto4PC.Generic, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|OPYL8W1G99L4UUW, Под карантина, [1263], [392931],1.0.4298
Adware.Tuto4PC.Generic, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|4824923, Под карантина, [1263], [447062],1.0.4298
PUP.Optional.YeaDesktop, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|YEADESKTOP, Под карантина, [1467], [391397],1.0.4298
PUP.Optional.YeaDesktop.ClnShrt, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|YEADESKTOP.EXE, Под карантина, [1311], [396226],1.0.4298
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{91402358-3E0A-4266-81A1-6F4A9AB1B140}|PATH, Под карантина, [1187], [407189],1.0.4298
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|OMEWPRODUCT_RQG5J, Под карантина, [60], [314799],1.0.4298
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\dahjService|IMAGEPATH, Под карантина, [17], [459303],1.0.4298
Generic.Malware/Suspicious, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|OPYL8W1G99L4UUW, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|QOSZV5IFSS9OPZG, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, HKU\S-1-5-21-2054842250-3291440368-2934754424-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|N1TQM1YDO6T7B55, Под карантина, [0], [392686],1.0.4298

Данни на регистъра: 5
Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Сменен, [1657], [-1],0.0.0
Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Сменен, [1657], [-1],0.0.0
Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{a326f77b-de8f-45ae-8bb6-a7b69897c43d}|NameServer, Сменен, [1657], [-1],0.0.0
Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{a326f77b-de8f-45ae-8bb6-a7b69897c43d}|DhcpNameServer, Сменен, [1657], [-1],0.0.0
Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{a7c65fd3-ca06-4f8f-8438-e57df76fada1}|NameServer, Сменен, [1657], [-1],0.0.0

Поток данни: 0
(Не бяха открити зловредни елементи)

Папка: 81
PUP.Optional.Amonetize, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\00032188, Под карантина, [6], [340209],1.0.4298
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX, Под карантина, [1187], [407194],1.0.4298
Adware.Tuto4PC, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\YZ1G5T4DEZ, Под карантина, [355], [487472],1.0.4298
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE, Под карантина, [8366], [443706],1.0.4298
Trojan.Agent, C:\PROGRAMDATA\dahjService, Под карантина, [17], [459290],1.0.4298
PUP.Optional.YeaDesktop, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\YEADESKTOP, Под карантина, [1467], [391395],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\common, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\PROGRAM FILES (X86)\YEADESKTOP, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\4ed1ae52-4415-1, Под карантина, [7850], [407181],1.0.4298
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\4ed1ae52-4697-0, Под карантина, [7850], [407181],1.0.4298
RiskWare.ChinAd, C:\PROGRAMDATA\CUPCHECK, Под карантина, [8509], [451546],1.0.4298
Adware.FastDataX.EncJob, C:\Users\Administrator 1\AppData\Local\FastDataX\log\installer, Под карантина, [1187], [474798],1.0.4298
Adware.FastDataX.EncJob, C:\Users\Administrator 1\AppData\Local\FastDataX\log, Под карантина, [1187], [474798],1.0.4298
Adware.FastDataX.EncJob, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\FASTDATAX, Под карантина, [1187], [474798],1.0.4298
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\PIDIVTAYSJOWC, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\LFFOUJFJU, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\JZVQTPDSXBLU2, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\MAUZXDPKZRVZTXZYUNR, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\es_419, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en_US, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en_GB, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt_BR, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt_PT, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\zh_CN, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\zh_TW, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fil, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\be, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\bg, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\bn, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ca, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\cs, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\da, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\de, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\el, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\es, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\et, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fa, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fi, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fr, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\gu, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\he, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hr, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hu, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\id, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\it, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ja, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\kn, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ko, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\lt, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\lv, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\mk, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ml, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\mr, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ms, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\nl, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\no, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pl, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hi, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ro, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ru, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sk, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sl, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sq, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sr, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sv, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sw, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ta, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\te, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\th, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\tr, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\uk, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\vi, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\am, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ar, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\files, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\PROGRAM FILES (X86)\JWYYYJKJRIE, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\PROGRAM FILES (X86)\YPLCMHJCUOUN, Под карантина, [175], [498455],1.0.4298

Файл: 140
Adware.FastDataX.EncJob, C:\WINDOWS\SYSTEM32\TASKS\FASTDATAX TASK, Под карантина, [1187], [407191],1.0.4298
PUP.Optional.Amonetize, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\00032188\msiql.exe, Под карантина, [6], [340209],1.0.4298
PUP.Optional.Amonetize, C:\Users\Administrator 1\AppData\Local\Temp\00032188\myscreenpro.exe, Под карантина, [6], [340209],1.0.4298
PUP.Optional.YeaDesktop, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\YEAPUSERINFO.INI, Под карантина, [1467], [391398],1.0.4298
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\4ed1ae52-4415-1\BITA9D9.tmp, Под карантина, [13380], [257931],1.0.4298
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\4ed1ae52-4697-0\BITAA95.tmp, Под карантина, [13380], [257931],1.0.4298
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX\UNINS000.DAT, Под карантина, [1187], [407194],1.0.4298
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\bwpah.dll, Под карантина, [1187], [407194],1.0.4298
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\unins000.exe, Под карантина, [1187], [407194],1.0.4298
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\unins000.msg, Под карантина, [1187], [407194],1.0.4298
Adware.Tuto4PC, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\YZ1G5T4DEZ\up.exe.config, Под карантина, [355], [487472],1.0.4298
Adware.Tuto4PC, C:\Users\Administrator 1\AppData\Local\Temp\YZ1G5T4DEZ\OneTwo.exe, Под карантина, [355], [487472],1.0.4298
Adware.Tuto4PC, C:\Users\Administrator 1\AppData\Local\Temp\YZ1G5T4DEZ\OneTwo.exe.config, Под карантина, [355], [487472],1.0.4298
Adware.Tuto4PC, C:\Users\Administrator 1\AppData\Local\Temp\YZ1G5T4DEZ\SecondL.exe, Под карантина, [355], [487472],1.0.4298
Adware.Tuto4PC, C:\Users\Administrator 1\AppData\Local\Temp\YZ1G5T4DEZ\SecondL.exe.config, Под карантина, [355], [487472],1.0.4298
Adware.Tuto4PC, C:\Users\Administrator 1\AppData\Local\Temp\YZ1G5T4DEZ\up.exe, Под карантина, [355], [487472],1.0.4298
Trojan.Agent, C:\WINDOWS\SYSTEM32\DRIVERS\PRILOCK.SYS, Под карантина, [17], [498186],1.0.4298
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE\CONF.DB, Под карантина, [8366], [443706],1.0.4298
Trojan.Agent, C:\PROGRAMDATA\dahjService\dahjService.exe, Под карантина, [17], [459290],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\ROAMING\X2PRE4HJVJK\LKIJAWZ2I0J.EXE, Под карантина, [1263], [447062],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\ROAMING\SWUWJQISEOK\TDRUHALQXD2.EXE, Под карантина, [1263], [447062],1.0.4298
PUP.Optional.YeaDesktop, C:\PROGRAM FILES (X86)\YEADESKTOP\YEADESKTOP.EXE, Под карантина, [1467], [391397],1.0.4298
PUP.Optional.YeaDesktop, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YeaDesktop\Uninstall YeaDesktop.lnk, Под карантина, [1467], [391395],1.0.4298
PUP.Optional.YeaDesktop, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YeaDesktop\YeaDesktop.lnk, Под карантина, [1467], [391395],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\common\apphoverbk.png, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\common\BkgSelectedHover.png, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\common\BkgSelectedNormal.png, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\common\BkgSelectedPressed.png, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\BearUnInstall.exe, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\config.xml, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\HelpTool.dll, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\Setup.exe, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\unins000.dat, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.YeaDesktop, C:\Program Files (x86)\YeaDesktop\unins000.exe, Под карантина, [1467], [391396],1.0.4298
PUP.Optional.Tuto4PC, C:\PROGRAM FILES (X86)\YWAYRZ5DHWB\8QRNM646L4FVJ2P.EXE, Под карантина, [60], [314799],1.0.4298
RiskWare.ChinAd, C:\ProgramData\CupCheck\CpuCheck.exe, Под карантина, [8509], [451546],1.0.4298
Adware.FastDataX.EncJob, C:\Users\Administrator 1\AppData\Local\FastDataX\log\installer\11-02-2018(13-19).log, Под карантина, [1187], [474798],1.0.4298
Adware.Neoreklami.TskLnk, C:\Program Files (x86)\pidIvTaYsJowC\kOApPBB.dll, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\dIxshjfnsDsrepSSqPt2, Под карантина, [258], [498450],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\dIxshjfnsDsrepSSqPt2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, C:\Program Files (x86)\LfFoujfjU\kyIEAx.dll, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\dTRRfHQjsHOvbdt2, Под карантина, [258], [498451],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\dTRRfHQjsHOvbdt2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, C:\Program Files (x86)\jzVqtpDsXbLU2\qkhyDImEvAfxM.dll, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\qFbxfDUevnccZZ, Под карантина, [258], [498452],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\qFbxfDUevnccZZ, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami.TskLnk, C:\Program Files (x86)\mAUzXDPkZrvZtXzyunR\clXkEtu.dll, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\WlbBJSMcknvngxNxC2, Под карантина, [258], [498453],1.0.4298
Adware.Neoreklami.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\WlbBJSMcknvngxNxC2, Под карантина, [258], [-1],0.0.0
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\files\background.js, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\files\foreground.js, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\files\main.css, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\files\proxy.js, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hi\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\am\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ar\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\be\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\bg\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\bn\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ca\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\cs\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\da\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\de\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\el\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en_GB\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\en_US\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\es\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\es_419\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\et\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fa\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fi\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fil\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\fr\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\gu\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\he\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hr\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\hu\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\id\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\it\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ja\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\kn\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ko\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\lt\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\lv\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\mk\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ml\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\mr\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ms\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\nl\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\no\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pl\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt_BR\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\pt_PT\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ro\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ru\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sk\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sl\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sq\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sr\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sv\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\sw\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\ta\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\te\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\th\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\tr\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\uk\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\vi\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\zh_CN\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\_locales\zh_TW\messages.json, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\background.html, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\files\Kernel.js, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\icon16.ico, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\j5SsOv.dll, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\k9QhpR62.dll, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\qBSaRBqybB.exe, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\JwYYyjKjrIE\t9FMiDgU.dll, Под карантина, [175], [498454],1.0.4298
Adware.Neoreklami, C:\Program Files (x86)\yplCmHJcuoUn\rbEokudukf.exe, Изтриване при рестартиране, [175], [498455],1.0.4298
Adware.Eszjuxuan, C:\PROGRAMDATA\DREAMSCREEN\DREAMCOMPRESS.SCR, Под карантина, [155], [448581],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\2N7XV8AP31\2N7XV8AP3.EXE, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES\07OONJEYGV\07OONJEYG.EXE, Под карантина, [0], [392686],1.0.4298
Generic.Malware/Suspicious, C:\PROGRAM FILES (X86)\YWAYRZ5DHWB\0GE69.EXE, Под карантина, [0], [392686],1.0.4298
Trojan.Wdfload.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\uEON Password, Под карантина, [4072], [498711],1.0.4298
Trojan.Wdfload.TskLnk, C:\PROGRAM FILES\UEON PASSWORD\UEON PASSWORD.DLL, Под карантина, [4072], [498711],1.0.4298
Trojan.Wdfload.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\uEON Password, Под карантина, [4072], [-1],0.0.0
Adware.Agent, C:\PROGRAMDATA\DREAMCOMPRESS\UNINSTALL.EXE, Под карантина, [211], [435957],1.0.4298
Adware.Agent, C:\PROGRAMDATA\DREAMCOMPRESS\DREAMCOMPRESS.EXE, Под карантина, [211], [435958],1.0.4298
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\FOUR\705584.EXE, Под карантина, [355], [497704],1.0.4298
Adware.Tuto4PC, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-KR29O.TMP\P0PYUI.EXE, Под карантина, [355], [497704],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-AHP2R.TMP\BOOSTER.EXE, Под карантина, [1263], [489336],1.0.4298
Adware.Adposhel.TskLnk, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-UO9PT.TMP\IOPZMQL.DLL, Под карантина, [356], [496084],1.0.4298
Adware.FastDataX, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\DATA.EXE, Под карантина, [8037], [463466],1.0.4298
Adware.Adposhel, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\ONESYSTEMCARE.EXE, Под карантина, [165], [495894],1.0.4298
Adware.Tuto4PC, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\SETUPAB.EXE, Под карантина, [355], [499474],1.0.4298
PUP.Optional.YeaDesktop, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\YEAPLAYER.EXE, Под карантина, [1467], [391393],1.0.4298
Adware.Adposhel, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-HNPRA.TMP\BWPAH.DLL, Под карантина, [165], [425937],1.0.4298
Adware.Adposhel.TskLnk, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-50B23.TMP\IOPZMQL.DLL, Под карантина, [356], [496084],1.0.4298
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\IS-AHP2R.TMP\EPLAYERMOVEMENT.EXE, Под карантина, [1263], [414802],1.0.4298
Adware.Neoreklami, C:\USERS\ADMINISTRATOR 1\APPDATA\LOCAL\TEMP\HHUEIQPII.EXE, Под карантина, [175], [499449],1.0.4298

Физически сектор: 0
(Не бяха открити зловредни елементи)


(end)

2.

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на събитие за защита: 11.03.18 г.
Час на събитие за защита: 13:24
Файл на регистъра: c2da7f9c-251e-11e8-a165-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: System

-Детайли за блокирани уеб сайтове-
Зловреден уеб сайт: 1
, , Блокирано, [-1], [-1],0.0.0

-Данни от уеб сайта-
Категория: PUP
Домейн: laserveradedomaina.com
IP адрес: 188.165.209.131
Порт: [50628]
Тип: Изходящо
Файл: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

(end)

3. 

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на събитие за защита: 11.03.18 г.
Час на събитие за защита: 13:24
Файл на регистъра: c2dc0740-251e-11e8-9e8b-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: System

-Детайли за блокирани уеб сайтове-
Зловреден уеб сайт: 1
, , Блокирано, [-1], [-1],0.0.0

-Данни от уеб сайта-
Категория: Непосочено
Домейн: laserveradedomaina.com
IP адрес: 188.165.209.131
Порт: [50628]
Тип: Изходящо
Файл: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

(end)

4. 

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на събитие за защита: 11.03.18 г.
Час на събитие за защита: 13:24
Файл на регистъра: c2dd4092-251e-11e8-8785-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: System

-Детайли за блокирани уеб сайтове-
Зловреден уеб сайт: 1
, , Блокирано, [-1], [-1],0.0.0

-Данни от уеб сайта-
Категория: Непосочено
Домейн: laserveradedomaina.com
IP адрес: 188.165.209.131
Порт: [50629]
Тип: Изходящо
Файл: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

(end)

5.

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на събитие за защита: 11.03.18 г.
Час на събитие за защита: 13:25
Файл на регистъра: d670befe-251e-11e8-951a-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: System

-Детайли за блокиран злонамерен софтуер-
Файл: 1
Adware.Adposhel, C:\PROGRA~2\FASTDA~1\FASTDA~1.EXE, Под карантина, [165], [425937],1.0.4298


(end)

6. 

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на събитие за защита: 11.03.18 г.
Час на събитие за защита: 13:27
Файл на регистъра: 2e6c3d7c-251f-11e8-ab3f-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4298
Лиценз: Пробен период

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: System

-Детайли за блокиран злонамерен софтуер-
Файл: 1
Adware.Neoreklami, C:\Program Files (x86)\yplCmHJcuoUn\rbEokudukf.exe, Под карантина, [175], [499449],1.0.4298


(end)

7. + 8. + 9. + 10. + 11. +12. reports = clear

13. 

Malwarebytes
www.malwarebytes.com

-Детайли за регистъра-
Дата на сканиране: 12.03.18 г.
Час на сканиране: 15:12
Файл на регистъра: fd4aaade-25f6-11e8-8f29-7085c268a63f.json
Администратор: Да

-Информация за софтуера-
Версия: 3.4.4.2398
Версия на компонентите: 1.0.322
Актуализирай версията на пакета: 1.0.4314
Лиценз: Free

-Системна информация-
OS: Windows 10 (Build 16299.251)
CPU: x64
Файлова система: NTFS
Потребител: DESKTOP-BQT0R28\Administrator 1

-Резюме на сканирането-
Тип сканиране: Threat Scan
Резултат: Завършено
Сканирани обекти: 290313
Открити заплахи: 4
Заплахи под карантина: 4
Изтекло време: 8 мин, 25 сек

-Опции за сканиране-
Памет: Разрешено
Стартиране: Разрешено
Файлова система: Разрешено
Архиви: Разрешено
руткитове: Разрешено
Евристика: Разрешено
PUP: Открий
PUM: Открий

-Детайли за сканирането-
Процес: 0
(Не бяха открити зловредни елементи)

Модул: 0
(Не бяха открити зловредни елементи)

Ключ на регистъра: 0
(Не бяха открити зловредни елементи)

Стойност на регистъра: 0
(Не бяха открити зловредни елементи)

Данни на регистъра: 0
(Не бяха открити зловредни елементи)

Поток данни: 0
(Не бяха открити зловредни елементи)

Папка: 2
PUP.Optional.OneSystemCare, C:\Users\Administrator 1\AppData\Roaming\OneSystemCare\log, Под карантина, [437], [492738],1.0.4314
PUP.Optional.OneSystemCare, C:\USERS\ADMINISTRATOR 1\APPDATA\ROAMING\ONESYSTEMCARE, Под карантина, [437], [492738],1.0.4314

Файл: 2
PUP.Optional.OneSystemCare, C:\Users\Administrator 1\AppData\Roaming\OneSystemCare\log\20180311i-1320.log, Под карантина, [437], [492738],1.0.4314
PUP.Optional.OneSystemCare, C:\Users\Administrator 1\AppData\Roaming\OneSystemCare\log\20180311i-1321.log, Под карантина, [437], [492738],1.0.4314

Физически сектор: 0
(Не бяха открити зловредни елементи)


(end)

14. clear

esetScan12-03-2018.txt

esetscan12-03-2018-2.txt

AdwCleaner[C0].txt

Линк към този отговор
Сподели в други сайтове

Гледам, че Malwarebytes е премахнала зараза, която е бърникала точно в DNS-a - Adware.DNSUnlocker.

Но също виждам, че и MBAM блокира изходящите заявки през Edge

Цитат

 

-Детайли за блокирани уеб сайтове-
Зловреден уеб сайт: 1
, , Блокирано, [-1], [-1],0.0.0

-Данни от уеб сайта-
Категория: Непосочено
Домейн: laserveradedomaina.com
IP адрес: 188.165.209.131
Порт: [50629]
Тип: Изходящо
Файл: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

 

Явно ползвате пробната (пълна версия) със защита в реално време. Временно деинсталирайте Malwarebytes и след това почистете след нея с този инструмент:

https://support.malwarebytes.com/external-link.jspa?url=https%3A%2F%2Fdownloads.malwarebytes.com%2Ffile%2Fmb_clean

След това рестартирайте и вижте дали проблема продължава.

Линк към този отговор
Сподели в други сайтове

Деинсталирах Malwarebytes от контролния панел, поиска ми рестарт и се съгласих. След това изтеглих посочения от вас инструмент и след работата с него отново ми бе поискан рестарт, които приех. Резултат: Browser-а все още не работи. Въпреки това, аз съм доволен от резултатите и нямам против проблема да се маркира като "решен".  :)

mb-clean-results.txt

Линк към този отговор
Сподели в други сайтове

Много странно, че само в този браузър има проблем. Нека да погледна 2-3 неща за последно.

 

СТЪПКА 1

 

icon1337954655.png

  • Изтеглете MiniToolBox.exe и го запазете на десктопа (или в друга папка по ваш избор).
  • Стартирайте инструмента с десен бутон на мишката и Run as administrator.
  • Сложете всички отметки и натиснете Go.
  • Архивирайте лог файла Result.txt и го качете на dox.bg

 

СТЪПКА 2

 

icon1337952077.png

След това изтеглете Farbar Service Scanner и я стартирайте като администратор (Run as administrator).

  • Сложете всички отметки и натиснете бутона "Scan".
  • Ще се създаде лог файл с името (FSS.txt) в папката откъдето стартирате инструмента.
  • Архивирайте лог файла и го качете на dox.bg.

 

Поздрави!

Линк към този отговор
Сподели в други сайтове

Пробвахте ли нещата и от линка по Лични Съобщения?

Иначе в логовете не видях нищо нередно. Не знам защо Edge не иска да работи...явно е доста недовършен, защото има стотици подобни решения из нета и при всеки работи различно решение.

Пробвайте да деинсталирате Eset и след това почистете кеша с CCleaner (видях, че ги имате и двете инсталирани).

Ако искате ще маркирам случая като решен, защото основния проблем го оправихме, а за Edge си пуснете нова тема в раздела за Операционни Системи.

Може би ако искате да го ползвате като крайна мярка е да се направи Refresh или Reset на Windows-a.

Поздрави!

Линк към този отговор
Сподели в други сайтове

Здравейте,

Ако сте още наблизо можем да опитаме още нещо относно Edge. Попитах чуждестранните колеги за съвет и те се отзоваха (в частност колежката Picasso).

Изтеглете edit-text.giffixlist.txt и го запазете на в папката, където сте свалили FRST64.exe (на десктопа).

Стартирайте FRST64.exe и натиснете бутона Fix веднъж!

След като приключи, ако ви поиска рестарт - съгласете се. След рестарта публикувайте лог файла - fixlog.txt, който ще се създаде след работата на програмата на десктопа.
 
Внимание: Скрипта е създаден за текущата система. Да не се ползва за други системи с подобни проблеми!

Скрипта няма да реши проблема, но ще даде насока за евентуалното му решаване.

Поздрави!

Линк към този отговор
Сподели в други сайтове

Наистина съм изтрил нещо, което не трябва. :D
Както и да е, в момента съм много доволен от работата си с Chrome, няма други проблеми на ОС, поне за сега.

Fixlog.txt

Линк към този отговор
Сподели в други сайтове

Да направим така:

Изтеглете следния файл:

regfix.zip

и го запазете на десктопа. Разархивирайте съдържанието му в папка regfix

В търсачката на Windows потърсете powershell.exe и го стартирайте с десен бутон Run as administrator

Копирайте командата и натиснете Enter

cd c:\users\"ADMINISTRATOR 1"\desktop\regfix

След това копирайте тази команда и натиснете Enter

set-executionpolicy unrestricted

Изберете A и натиснете Enter

Копирайте командата и натиснете Enter

".\FixTcpipACL.ps1"

Рестартирайте системата и пишете дали Edge вече работи.

Линк към този отговор
Сподели в други сайтове

Добавете отговор

Можете да публикувате отговор сега и да се регистрирате по-късно. Ако имате регистрация, влезте в профила си за да публикувате от него.
Бележка: Вашата публикация изисква одобрение от модератор, преди да стане видима за всички.

Гост
Напишете отговор в тази тема...

×   Вмъкнахте текст, който съдържа форматиране.   Премахни форматирането на текста

  Разрешени са само 75 емотикони.

×   Съдържанието от линка беше вградено автоматично.   Премахни съдържанието и покажи само линк

×   Съдържанието, което сте написали преди беше възстановено..   Изтрий всичко

×   You cannot paste images directly. Upload or insert images from URL.

  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Горещи теми в момента

  • Подобни теми

    • от Rustty1
      Здравейте, компютърът ми засича, windows defender-a ми постоянно пищи, дори и да премахна файла, след няколко минутки пак излиза че има проблем, също така, от време на време от браузъра ми изкачат реклами (автоматично се отваря нов tab[имам адблокър в браузъра])
      Най-често дефендера пищи, защото е намерил
      "Trojan:Script/Wacatac.C!ml"
      Също така ми изкачат рандом "питания" от системата дали да позволя на някакъв файл да се използва с администраторски права
      Благодаря предварително
      FRST.txt Addition.txt
      Сега забелязох, че почти всички файлове са криптирани и ми искат пари, за да ги декриптират. Има ли как да ги върна или направо преинсталация?
    • от ivchodx
      Здравейте,
      снощи пуснах тема в "Сигурност и антивирусна защита", където ми препоръчаха да пиша тук.
      Копирам всичко написано от предходната тема + някои допълнения.
      Машина:
      Лаптоп ASUS F550V с Windows 10 Education (Платен).
      Симптоми:
           Не мога да ъпдейта Windows-a.

          Windows Defender не работи.

          Troubleshooter-a не върши никаква работа.
        
          Kaspersky не се стартира.
           
          Host Service 64 е постоянно включен и понякога използва доста ресурси.
       *Подробности относно проблемите в предишната ми тема.

      Допълнения:
      Снощи вечер пуснах проверка с RogueKiller. Прикачвам снимка с резултата, както и с резултат от премахването, но Host services 64 вече не се вижда в task manager-a, но все още не мога да ъпдейтна windows.
      sfc /scannow DISM /Online /Cleanup-Image /RestoreHealth Написах следните команди като администратор. Всичко беше поправено или наред.

      Прикачвам резултатите от Farbar Recovery Scan Tool. Направих сканиратено след проверката с RogueKiller.

      Addition.txt FRST.txt
    • от achodemo
      Здравейте .
      Не успявам да премахна (предполагам е) вирус . Проблема е следния : записват се едни файлове на всяка флашка , която се постави в PC-то .
      Файловете ги трия ръчно , форматирам флашката и на момента се записват пак .
      Петте файла плюс папка "RECYCLER", в която се създават други папки с произволни имена и във всяка от тях два файла , които се размножават до безкрайно с произволни имена , през цялото време до като флашката стои включена .
      Имам "Malwarebytes " , при сканиране ми премахна доста вредители , но проблема остава .
      Пробвах и с Avast , при включване флашката веднага пуска аларма за autorun-а , че записва 4-те шорткъта и до там , при сканиране не открива нищо на PC-то .

      Моля за съвет и насока , какво може да бъде това и как, с какво , да го премахна ?!

      Търсих в Google , има информация за такъв проблем , но решение не намерих работещо .
      И като цяло виждам че в таск менажера има прекалено много работещи процеси , които нямам идея какви са , но заемат почти цялата ми RAM . 

      Давам снимки  и логовете най-отдолу :

       


      FRST.txt    Addition.txt     
    • от ivan.ivanov.543
      Здрасти! Предварително се извинявам за опростеното и неграмотно обяснение, не разбирам много от компютри, надявам се да е достатъчно разбираемо.   
       
      Преди няколко дена си изтеглих един учебник в pdf формат от замунда, но беше заключен от към търсене на думи в него, копиране и принтиране, също така беше много голям (270мб) за да го кача в онлайн програмите за откючване на pdf файлове който намерих, затова реших да потърся офлайн такава, която да изтегля и без да се замисля  изтеглих  и инсталирах първата програма която намерих в гугъл (понежене в замунда не можах да намеря такава) и тя се оказа вирус. След като я инсталирах, започна автоматично да изтегля и инсталира някакви програми. 
       
      Спрях интернета, деинсталирах програмите който бяха се инсталирали (вкючително и първата програма - вируса) и пробвах да пусна windows defender, но пишеше нещо от сорта на "програмата е блокирана от групата" . Пуснах пак интернета за да потъся как в този случай да пусна дефендъра и в момента в който отворих хрома, автоматично се отвори и затвори нов раздел в браузъра и пак започнаха да се теглят и да се инсталират програми. Спрях отново интернета, деинсталирах пак програмите и от допълнителните системни настройки пуснах възстановяване на системата.
       
      След като възстановяването мина, забелязах, че повечето ми файлове завършват на .qewe. и не може да се отворят и като им сменям формата в такъв какъвто си бяха(pdf, jped или mp4) ми изписва "невалиден файл"Потърсих в ютюб "How to remove .qewe virus " цъкнах на един от туториалите с повече гледания и следвах стъпките - натиснах windows key+r, написах msconfig, влязох в boot, после цъкнах на сейфти мод с нетуърк, натиснах ок и после рестартиране, лаптопа се рестартира и влезе в безопасен режим, после влязох в C:/ не помня къде точно, последната директории бяха drivesr и ect или нещо такова и отворих един фаил с notepad, май се казваше host, изтрих последните 2 ред, май бяха някакъв Ip адрес - нз, след това влязох в хром и изтеглих malwarebytes, пуснах я, намери 118 файла, натиснах да ги сложи под карантина и след като програмата си свърши работата, натиснах пак win.key+r, msconfig и махнах тикчето от сейфти буут-а, рестартирах лаптопа и си помислих, че всичко вече ще си е нормално. Когато влизах в хром вече автоматично не се теглеха и инсталираха различни програми, но повечето файлове си останаха .qewe и win.def. не се отваряше.
       
      Потърсих пак в тубата как да оправя дефендъра, намерих туториал, следвах стъпките (win.key+r, regedit, влязох някъде и изтрих един файл) и дефендъра тръгна, пуснах го да сканира - не намери нищо. Потърсих из ютюб малко информация за .qewe - каквъ формат е и т.н, и се оказа, че е някакъв вид криптиране и че вирусът който съм инсталирал се казва ransomware и такива вируси се ползват за искане на подкуп. Подкуп никой не ми е искал, но забелязах нещо странно в фейсбук - някой ми е влязъл в фейсбука с ip адрес от щатите, въпреки, че съм с google authenticator, т.е дори да ми зане паролата, му трябва да въведе код от приложението google authenticator което е инсталирано на телефона ми. Някакви страници е правено от фбка ми, реклами са пускани за някви хранителни добавки и най-странното беше, че когато си смених паролата на фейсбука и се опитах пак да се логна в него от компа, (понеже като си я сменях цъкнах да се лог офне от всички устойства) ми влезе в някакъв съвсем различен фейсбук, без профилна снимка и с някфо странно име. Този фб е бил регнат в деня в който инсталирах вируса и беше регистриран с телефонният ми номер и беше админ на тези страници, от които са се пускали рекламите, т.е в този момен имаше 2 фейсбука с регистриран еднакъв основен телефонен номер. Изтрих страниците от този фейсбук, направих имейл в абв от сорта на [email protected] и сложих този имейл за основен, след това си изтрих телефонният номер от този фб акаунт и после изтрих и самият акаунт. След това като се опитах да се логна в фб с тел.си номер вече си влезе в моят си фб. 
       
      За сега всичко изглежда наред, но не съм сигурен дали съм махнал вируса напълно. Лаптопа си бачка както преди с изключение на това, че се включва по бавно и повечето ми файлове са .qewe. Може ли да ми помогнете да разбера дали наистина съм махнал вируса напълно и как да си възстановя файловете? 
       
    • от porata
      Добър ден след като стартирам пц-то може би 10-на минути след това ми излзиа един прозорец като "цмд" 
      Който се казва Таскенг.ехе интересно ми е дали това  не е вирус тъй като ми казаха че може да е троянец 



       
      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-04-2020
      Ran by GAMEPC (13-04-2020 13:05:30)
      Running from C:\Users\GAMEPC\Downloads
      Windows 7 Home Premium Service Pack 1 (X64) (2017-09-08 09:32:01)
      Boot Mode: Normal
      ==========================================================

      ==================== Accounts: =============================
      Administrator (S-1-5-21-2297230751-1021565052-1431566534-500 - Administrator - Disabled)
      GAMEPC (S-1-5-21-2297230751-1021565052-1431566534-1000 - Administrator - Enabled) => C:\Users\GAMEPC
      Guest (S-1-5-21-2297230751-1021565052-1431566534-501 - Limited - Disabled)
      ==================== Security Center ========================
      (If an entry is included in the fixlist, it will be removed.)
      AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      ==================== Installed Programs ======================
      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
      Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
      Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.344 - Adobe)
      Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.344 - Adobe)
      Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
      AIDA64 Extreme v6.10 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.10 - FinalWire Ltd.)
      Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.3 - Electronic Arts, Inc.)
      ATI Catalyst Install Manager (HKLM\...\{DC9C8BC1-72CE-B5FE-EA4F-6D9127E51746}) (Version: 3.0.736.0 - ATI Technologies, Inc.)
      Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
      CpuCoreParking (HKLM-x32\...\{0984C56D-2985-4786-AB62-39AB985E269C}) (Version: 2.1.2.0 - CpuCoreParking)
      DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
      Discord (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
      Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
      Euro Truck Simulator 2 Road to the Black Sea (HKLM-x32\...\Euro Truck Simulator 2 Road to the Black Sea_is1) (Version:  - )
      FiveM (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\CitizenFX_FiveM) (Version:  - The CitizenFX Collective)
      GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.14.5270 - Gretech Corporation)
      Google Chrome (HKLM\...\{DA081EB6-F64C-358C-9BB0-AF1EA8001F34}) (Version: 80.0.3987.163 - Google, Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
      Heroes of Might and Magic III HD Edition (HKLM-x32\...\SGVyb2Vzb2ZNaWdodGFuZE1hZ2ljSUlJSERFZGl0aW9u_is1) (Version: 1 - )
      Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200092}) (Version:  - )
      House Flipper Garden (HKLM-x32\...\House Flipper Garden_is1) (Version:  - )
      Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
      Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
      Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
      Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
      Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
      Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
      Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
      Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
      Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
      Microsoft Office Language Pack 2010 - Bulgarian/български (HKLM-x32\...\Office14.OMUI.bg-bg) (Version: 14.0.4763.1021 - Microsoft Corporation)
      Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
      Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
      Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
      Mozilla Firefox 67.0 (x64 bg) (HKLM\...\Mozilla Firefox 67.0 (x64 bg)) (Version: 67.0 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3 - Mozilla)
      NVIDIA Graphics Driver 442.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.74 - NVIDIA Corporation)
      NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
      NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
      OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.2.1 - OBS Project)
      OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
      Origin (HKLM-x32\...\Origin) (Version: 10.5.67.39484 - Electronic Arts, Inc.)
      PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 200317 - Kakao Corp.)
      PotPlayer-64 bit (HKLM-x32\...\PotPlayer64) (Version: 1.7.8556 - Kakao Corp.)
      qBittorrent 4.2.1 (HKLM-x32\...\qBittorrent) (Version: 4.2.1 - The qBittorrent project)
      Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.18.217 - Rockstar Games)
      Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.8 - Rockstar Games)
      Shutdown8 (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Shutdown8) (Version: 1.08 - Bandisoft.com)
      Spotify (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Spotify) (Version: 1.1.30.658.gf13cde74 - Spotify AB)
      StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      StreamLabels 0.3.1 (only current user) (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\8000d50a-fcb7-5b38-8a3b-a02a0ec79daa) (Version: 0.3.1 - Streamlabs)
      StreamLabels 0.3.8 (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\{8000d50a-fcb7-5b38-8a3b-a02a0ec79daa}) (Version: 0.3.8 - Streamlabs)
      Streamlabs OBS 0.16.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.16.3 - General Workings, Inc.)
      swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
      TeamSpeak 3 Client (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\TeamSpeak 3 Client) (Version: 3.1.8 - TeamSpeak Systems GmbH)
      TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
      Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
      VALORANT (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
      Viber (HKLM-x32\...\{0B3F5AEE-47B2-4A5F-8D02-289B7E0828E6}) (Version: 11.9.1.3 - Viber Media S.a.r.l) Hidden
      Viber (HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\{8b6836ad-bf1d-4591-9f20-735338e295ea}) (Version: 11.9.1.3 - Viber Media S.a.r.l)
      Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
      WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
      WinRAR 5.50 (64-битова версия) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
      ==================== Custom CLSID (Whitelisted): ==============
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\ChromeHTML: ->  <==== ATTENTION
      ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
      ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2020-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
      ==================== Codecs (Whitelisted) ====================
      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
      HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\system32\prodad-codec.dll [607256 2019-10-15] (proDAD GmbH -> proDAD GmbH)
      HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\SysWOW64\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
      HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\SysWOW64\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
      HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\SysWOW64\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
      HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
      HKLM\...\Drivers32: [msacm.lame] => C:\Windows\SysWOW64\lame.ax [245760 2005-08-01] () [File not signed]
      HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
      HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
      HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
      HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
      HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [139264 2004-07-03] () [File not signed]
      HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\SysWOW64\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
      HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
      HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
      HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
      HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
      ==================== Shortcuts & WMI ========================
      (The entries could be listed to be restored or removed.)
      Shortcut: C:\Users\GAMEPC\Desktop\OSC - Пряк път.lnk -> C:\Users\GAMEPC\Desktop\moi neshta\OSC 1.9\OSC.exe (Frawzy) <==== Cyrillic
      ShortcutWithArgument: C:\Users\GAMEPC\Desktop\moi neshta\Tinder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=hejiihbkifllpgdfndalmghiodgkefan
      ShortcutWithArgument: C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Приложения в Chrome\Tinder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=hejiihbkifllpgdfndalmghiodgkefan
      ShortcutWithArgument: C:\Users\GAMEPC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
      ==================== Loaded Modules (Whitelisted) =============
      2017-09-08 12:27 - 2017-09-08 12:27 - 002651136 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wuaueng2.dll
      ==================== Alternate Data Streams (Whitelisted) ========
      (If an entry is included in the fixlist, only the ADS will be removed.)
      AlternateDataStreams: C:\Users\GAMEPC\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
      AlternateDataStreams: C:\Users\GAMEPC\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
      AlternateDataStreams: C:\Users\GAMEPC\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
      AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
      ==================== Safe Mode (Whitelisted) ==================
      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
      ==================== Association (Whitelisted) =================
      ==================== Internet Explorer trusted/restricted ==========
      ==================== Hosts content: =========================
      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
      2009-07-14 05:34 - 2009-06-11 00:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
      ==================== Other Areas ===========================
      (Currently there is no automatic fix for this section.)
      HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
      DNS Servers: 192.168.0.1
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      Windows Firewall is enabled.
      ==================== MSCONFIG/TASK MANAGER disabled items ==
      (If an entry is included in the fixlist, it will be removed.)
      MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
      MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
      MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
      MSCONFIG\startupreg: FACEIT => "C:\Users\GAMEPC\AppData\Local\FACEITApp\update.exe" --processStart "FACEIT.exe"
      MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
      MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
      MSCONFIG\startupreg: Spotify => C:\Users\GAMEPC\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
      MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
      MSCONFIG\startupreg: Viber => "C:\Users\GAMEPC\AppData\Local\Viber\Viber.exe" StartMinimized
      ==================== FirewallRules (Whitelisted) ================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      FirewallRules: [{11074DEE-7B8C-4DC2-AE4C-93DF0A309913}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
      FirewallRules: [{D19357FE-92D5-4C15-865D-6BA1144E3141}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
      FirewallRules: [{21EB0059-8DA7-4F26-8EBC-947F0C4E2AAA}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
      FirewallRules: [{F8BB1871-4D02-4C5E-A222-4D557710B3E1}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
      FirewallRules: [{1EE7FB5D-9E25-4DA9-ACB5-D608ECDBB452}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe No File
      FirewallRules: [{84ACAD4A-CAC3-405E-BED8-CCE7B6F558B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe No File
      FirewallRules: [{5C9FEA0E-0037-4228-8A5E-308AD75AC1DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
      FirewallRules: [{FD05E114-41E1-4EC3-B5A2-BBA593EE39E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
      FirewallRules: [{831352BE-7396-43E6-9657-9ED9D8BAB30D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
      FirewallRules: [{AB5ACC3F-22CB-469F-9EB3-8D69417E7CD5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
      FirewallRules: [{43ADA9C0-2E56-45D1-B73D-9C89040C463D}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
      FirewallRules: [{06129773-C563-4DFF-8D34-BEA82843A4F0}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
      FirewallRules: [TCP Query User{0D1FADB8-FCE1-4E0E-B19A-D5490965A994}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
      FirewallRules: [UDP Query User{F6FECCC1-1C2E-45A5-B7AC-EAF4B88229DF}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
      FirewallRules: [TCP Query User{DEFA441A-0140-4630-9B49-0F0DB88705EC}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
      FirewallRules: [UDP Query User{2F3AD7BE-C36D-4E24-BFFA-EED5BE5D11F4}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
      FirewallRules: [{B5E37EE1-9BE1-4B57-9AD5-EEF981D7F031}] => (Allow) D:\SteamLibrary\steamapps\common\TheLongDark\tld.exe () [File not signed]
      FirewallRules: [{DC6EA5CC-0B14-4DA5-BA55-E772E5860678}] => (Allow) D:\SteamLibrary\steamapps\common\TheLongDark\tld.exe () [File not signed]
      FirewallRules: [{FF76D716-DBA6-437A-A34F-847AF6AB88AD}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
      FirewallRules: [{13A0D233-1007-4376-A4B4-1DA27C101ECB}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
      FirewallRules: [TCP Query User{86D55748-40A6-4288-AEF7-2C0B25BDF778}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe
      FirewallRules: [UDP Query User{D8AE6DDF-C0F2-475C-AB9C-B84C11DDC8AB}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe
      FirewallRules: [TCP Query User{695C8135-FF2C-4E94-9566-E526643684CA}C:\program files (x86)\common files\oracle\java\javapath_target_116381722\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_116381722\java.exe
      FirewallRules: [UDP Query User{3091889E-265D-4648-88DF-CEE54431325D}C:\program files (x86)\common files\oracle\java\javapath_target_116381722\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_116381722\java.exe
      FirewallRules: [{DB2F74E8-C7EB-44B3-81D7-12B84175E2EA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
      FirewallRules: [{E44676E1-030C-4238-B65F-434792B61DE5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
      FirewallRules: [TCP Query User{0E86F5BD-F2B3-4EF9-8B0C-48823DA809CB}D:\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe No File
      FirewallRules: [UDP Query User{0C5E839A-52EC-40D4-969E-24F12ED8D2D0}D:\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe No File
      FirewallRules: [TCP Query User{8796E73D-79C0-4D0B-AF34-FB3AF9BCC9BA}D:\steamlibrary\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\warface\bin32release\game.exe No File
      FirewallRules: [UDP Query User{EFB29360-AB3A-4A44-9CB4-EF91CEBDB39C}D:\steamlibrary\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\warface\bin32release\game.exe No File
      FirewallRules: [TCP Query User{91266298-136D-4BB3-8C13-A850A76C9BF1}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [UDP Query User{E3EAEE44-6095-4A5E-BE2F-F3E3F8349E0A}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [{2D541380-97BF-4291-BDBE-2F2228CAEA60}] => (Allow) D:\SteamLibrary\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      FirewallRules: [{127D37C8-619F-462E-BE1A-E32131065FF4}] => (Allow) D:\SteamLibrary\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      FirewallRules: [TCP Query User{3DE0592A-8D12-447D-939D-BCA439AFF137}C:\users\gamepc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gamepc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
      FirewallRules: [UDP Query User{33216198-C2C2-482B-9DC9-2D0D13DBB4FA}C:\users\gamepc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gamepc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
      FirewallRules: [TCP Query User{270B0322-3799-457B-960A-455318931953}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
      FirewallRules: [UDP Query User{A13AA196-1978-4C67-902B-2460B54A5BBF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
      FirewallRules: [{59D96386-6E3E-4356-8348-CF3CFA65A81B}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
      FirewallRules: [{FFA55DD9-7016-4EC4-A808-1A467A45E95C}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
      FirewallRules: [TCP Query User{DC649560-4400-4885-84A1-B96EE04BD03C}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
      FirewallRules: [UDP Query User{962C91EA-9380-4D1D-8A2F-E951089E3F37}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
      FirewallRules: [TCP Query User{DA0687C4-1D0D-4E01-B34C-68E8FF09FF9F}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
      FirewallRules: [UDP Query User{0C271F5D-81B6-4DA7-A0B8-50362178C932}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
      FirewallRules: [TCP Query User{5EFBA878-9A61-49AC-9416-CAFD7167CF8E}D:\steamlibrary\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) D:\steamlibrary\steamapps\common\smite\binaries\win64\smite.exe No File
      FirewallRules: [UDP Query User{C837A044-1793-46A0-A9B2-FFC280606631}D:\steamlibrary\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) D:\steamlibrary\steamapps\common\smite\binaries\win64\smite.exe No File
      FirewallRules: [TCP Query User{6C87ADBA-41D8-49FB-A494-F0A177B7F2E5}D:\12323\icarus\appdata\bin64\launcher.exe] => (Allow) D:\12323\icarus\appdata\bin64\launcher.exe No File
      FirewallRules: [UDP Query User{D3766998-33A3-4AAC-836F-4BC92BA34D50}D:\12323\icarus\appdata\bin64\launcher.exe] => (Allow) D:\12323\icarus\appdata\bin64\launcher.exe No File
      FirewallRules: [TCP Query User{5540B6FC-35DB-4545-AF53-B4FE05B85DD6}D:\steamlibrary\steamapps\common\bless online\binaries\win64\bless.exe] => (Allow) D:\steamlibrary\steamapps\common\bless online\binaries\win64\bless.exe No File
      FirewallRules: [UDP Query User{ED42665E-2CA2-4092-A15B-69F686B8F831}D:\steamlibrary\steamapps\common\bless online\binaries\win64\bless.exe] => (Allow) D:\steamlibrary\steamapps\common\bless online\binaries\win64\bless.exe No File
      FirewallRules: [{A6CE7A48-587B-440C-A6B7-9B3AB8F758E0}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [{CD3B56C1-242C-4706-81ED-FF29362608F3}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [TCP Query User{9A6D9654-27A6-4122-9C9C-4D7727258BAA}C:\users\gamepc\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\gamepc\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
      FirewallRules: [UDP Query User{E49D6701-B325-4215-8711-030A5EC46C9B}C:\users\gamepc\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\gamepc\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
      FirewallRules: [{279065A7-F5E9-4060-BA27-39476EE213D2}] => (Allow) C:\Users\GAMEPC\Downloads\bin\BlackDesert32.exe No File
      FirewallRules: [{B218AD4A-5B74-40DE-AB02-A3681FCE9C1C}] => (Allow) C:\Users\GAMEPC\Downloads\bin64\BlackDesert64.exe No File
      FirewallRules: [{10F99049-3DA4-4E89-A086-C023E8CD82B2}] => (Allow) C:\Users\GAMEPC\Downloads\BlackDesert_Launcher.exe No File
      FirewallRules: [{3FD78764-41FE-4680-9342-001EA21ECF27}] => (Allow) C:\Users\GAMEPC\Downloads\BlackDesert_Downloader.exe No File
      FirewallRules: [{CD2DAD40-C60E-41F0-ABBF-63FED12CD684}] => (Allow) D:\SteamLibrary\steamapps\common\Albion Online\launcher\AlbionLauncher.exe No File
      FirewallRules: [{9BAD4B07-A517-4574-ABA6-922FE4DA36F4}] => (Allow) D:\SteamLibrary\steamapps\common\Albion Online\launcher\AlbionLauncher.exe No File
      FirewallRules: [TCP Query User{757DFE1C-9664-41C4-B600-E39F75F3E007}D:\fortnait\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\fortnait\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
      FirewallRules: [UDP Query User{00AC97A7-683C-4F74-9AF6-EBFD84CB000D}D:\fortnait\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\fortnait\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
      FirewallRules: [TCP Query User{391AE70C-4E68-4DE8-A05A-D56058FAEBFA}D:\fortnait\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnait\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
      FirewallRules: [UDP Query User{61C858A3-948F-407A-A7BF-2712693C1649}D:\fortnait\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnait\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
      FirewallRules: [TCP Query User{CBB94106-0926-4293-AA94-864143E7ACDC}D:\city\city car driving\bin\win32\starter.exe] => (Allow) D:\city\city car driving\bin\win32\starter.exe No File
      FirewallRules: [UDP Query User{1602653C-F8D6-481F-B4DE-483B83E4A081}D:\city\city car driving\bin\win32\starter.exe] => (Allow) D:\city\city car driving\bin\win32\starter.exe No File
      FirewallRules: [{D70481FE-EDB4-4F66-A879-015B84C54F1C}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
      FirewallRules: [{0255AAE2-A93D-49F6-84EA-91CF71112821}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
      FirewallRules: [{3EEC0786-9E2E-4EAC-9CB1-97F68AE8DBDA}] => (Allow) D:\SteamLibrary\steamapps\common\TrackMania Nations Forever\TmForever.exe () [File not signed]
      FirewallRules: [{F07A3467-6DA2-4A61-BFA9-75DFE2760BAA}] => (Allow) D:\SteamLibrary\steamapps\common\TrackMania Nations Forever\TmForever.exe () [File not signed]
      FirewallRules: [{7BCD6AF7-E264-49EC-B3DF-0B903C656894}] => (Allow) D:\SteamLibrary\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [File not signed]
      FirewallRules: [{9796C8A1-0246-4D08-94F7-97B3A81204AF}] => (Allow) D:\SteamLibrary\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [File not signed]
      FirewallRules: [TCP Query User{4194E6A1-B90A-4C01-AAC1-A150648BD511}D:\1.6\hl.exe] => (Allow) D:\1.6\hl.exe No File
      FirewallRules: [UDP Query User{39B944DB-8264-4416-BBBA-052EEC50F7FC}D:\1.6\hl.exe] => (Allow) D:\1.6\hl.exe No File
      FirewallRules: [TCP Query User{857D0C4A-0661-4E7D-B23A-735FF8ADABA1}D:\steamlibrary\steamapps\common\warface\warface\bin64release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\warface\bin64release\game.exe No File
      FirewallRules: [UDP Query User{29AE9F40-6F4A-4698-8241-A75FE2382548}D:\steamlibrary\steamapps\common\warface\warface\bin64release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\warface\bin64release\game.exe No File
      FirewallRules: [TCP Query User{92B59CE8-E0C7-43A9-9D55-2AEDA2AA9FA5}D:\steamlibrary\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe No File
      FirewallRules: [UDP Query User{8AEEF23D-67B8-4B6C-9DA0-D61F44EFC129}D:\steamlibrary\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe No File
      FirewallRules: [{A383D054-F8C2-45B5-A517-E63819807BB6}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [{FD87341A-3B7F-44E8-B09F-ADFBDF1B247D}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
      FirewallRules: [{2C2C2027-2BB8-4A51-9A9C-ED9A4BBCB358}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe No File
      FirewallRules: [{9B1767CE-81DE-4826-8906-9DEFCC351FAB}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe No File
      FirewallRules: [{E2FEE995-77A6-4556-A200-30CB17D4ABA6}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe No File
      FirewallRules: [{DFB2A3C2-EA05-4944-B38A-7A85B48E8A1F}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe No File
      FirewallRules: [TCP Query User{5A72CD9B-BF9D-4B23-A72B-26D40F24F859}D:\pubg\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubg\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe No File
      FirewallRules: [UDP Query User{8312C3A6-76BE-4C56-A5A6-DE950D9F08F1}D:\pubg\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubg\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe No File
      FirewallRules: [TCP Query User{F64B2B06-1EDF-4393-8640-332BC5898996}D:\apex\apex\r5apex.exe] => (Allow) D:\apex\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
      FirewallRules: [UDP Query User{E2BBA317-E554-46F4-9705-DB7E4991BF19}D:\apex\apex\r5apex.exe] => (Allow) D:\apex\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
      FirewallRules: [TCP Query User{06645CA2-731E-4100-8BFC-CF2887EC9BD4}C:\users\gamepc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\gamepc\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
      FirewallRules: [UDP Query User{68EFF667-1BA0-46F4-B7E4-B8AC10475E9D}C:\users\gamepc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\gamepc\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
      FirewallRules: [{B94666B2-3213-45DC-9A55-A01D147CA93D}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
      FirewallRules: [{35AD171F-75C6-469B-A634-4E9ABEFB99C0}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
      FirewallRules: [TCP Query User{8333A1F9-D09D-4985-B9CD-10A78C408300}C:\users\gamepc\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\gamepc\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
      FirewallRules: [UDP Query User{D9E8A289-BA55-45AE-A241-45085DACBF2D}C:\users\gamepc\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\gamepc\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
      FirewallRules: [{F60269A0-9AA8-46D8-98B9-0A888500723C}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
      FirewallRules: [{C584D871-7182-4224-96CC-26C664539C6B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
      FirewallRules: [TCP Query User{0E05C3B9-C433-4C3A-8C01-FF69520BF241}C:\users\gamepc\appdata\local\layerth-ethereal-dota2\app-2.5.9\ethereal - dota 2.exe] => (Allow) C:\users\gamepc\appdata\local\layerth-ethereal-dota2\app-2.5.9\ethereal - dota 2.exe No File
      FirewallRules: [UDP Query User{76E5872D-7EB0-40F2-9AD9-61CD16A593A8}C:\users\gamepc\appdata\local\layerth-ethereal-dota2\app-2.5.9\ethereal - dota 2.exe] => (Allow) C:\users\gamepc\appdata\local\layerth-ethereal-dota2\app-2.5.9\ethereal - dota 2.exe No File
      FirewallRules: [TCP Query User{20420812-2158-4116-BD8E-FE273007CA43}C:\users\gamepc\downloads\fivem.exe] => (Allow) C:\users\gamepc\downloads\fivem.exe (cfx-collective) [File not signed]
      FirewallRules: [UDP Query User{1C53FDAE-2CE7-44AD-8F95-828A28E4D6B1}C:\users\gamepc\downloads\fivem.exe] => (Allow) C:\users\gamepc\downloads\fivem.exe (cfx-collective) [File not signed]
      FirewallRules: [TCP Query User{0DE874C5-C399-4C71-A2FB-7D012892D73B}C:\users\gamepc\downloads\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\gamepc\downloads\cache\subprocess\fivem_gtaprocess.exe No File
      FirewallRules: [UDP Query User{201BA7D9-6E59-4592-89FE-45240B104987}C:\users\gamepc\downloads\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\gamepc\downloads\cache\subprocess\fivem_gtaprocess.exe No File
      FirewallRules: [TCP Query User{42114D4D-52E5-4B29-A4B1-5EA3A87CE648}D:\warzone\wasda\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\wasda\call of duty modern warfare\modernwarfare.exe No File
      FirewallRules: [UDP Query User{ADC3D6A5-74A9-43BE-9C8E-0EA092058F7B}D:\warzone\wasda\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\wasda\call of duty modern warfare\modernwarfare.exe No File
      FirewallRules: [{5C7D63B1-F70B-4ED6-A325-B196C2FEBB19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
      FirewallRules: [{0ECBF459-D321-4FFE-A103-D92F19E70819}] => (Allow) D:\apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      FirewallRules: [{41EE669E-05F2-472E-BD87-338219AB5C30}] => (Allow) D:\apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      ==================== Restore Points =========================
      07-04-2020 04:20:29 Планирана контролна точка
      08-04-2020 21:01:42 Installed DirectX
      08-04-2020 21:03:15 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
      12-04-2020 03:12:38 Installed DirectX
      12-04-2020 03:14:16 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
      ==================== Faulty Device Manager Devices ============
      Name: Realtek RTL8139/810x Family Fast Ethernet NIC
      Description: Realtek RTL8139/810x Family Fast Ethernet NIC
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: Realtek Semiconductor Corp.
      Service: RTL8023x64
      Problem: : This device is disabled. (Code 22)
      Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

      ==================== Event log errors: ========================
      Application errors:
      ==================
      Error: (04/13/2020 12:43:23 PM) (Source: SetupARService) (EventID: 0) (User: )
      Description: Service cannot be started. System.NullReferenceException: Object reference not set to an instance of an object.
         at SetupAfterRebootService.SetupARService.OnStart(String[] args)
         at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
      Error: (04/13/2020 12:42:03 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Име на приложение с грешки: FreemakeUtilsService.exe, версия: 1.0.0.0, времево клеймо: 0x5e454538
      Име на модул с грешки: KERNELBASE.dll, версия: 6.1.7601.24408, времево клеймо: 0x5c92f101
      Код на изключение: 0xe0434352
      Отместване на грешка: 0x0000c5af
      ИД на процес на грешка: 0x5a4
      Начален час на приложението с грешки: 0x01d61177bc69c281
      Път на приложението с грешки: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
      Път на модула с грешки: C:\Windows\syswow64\KERNELBASE.dll
      ИД на доклад: 078618cf-7d6b-11ea-a16d-94de809321cd
      Error: (04/13/2020 12:41:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
      Description: Application: FreemakeUtilsService.exe
      Framework Version: v4.0.30319
      Description: The process was terminated due to an unhandled exception.
      Exception Info: System.IO.FileNotFoundException
         at FreemakeUtilsService.Program.Main(System.String[])
      Error: (04/12/2020 01:52:27 PM) (Source: SetupARService) (EventID: 0) (User: )
      Description: Service cannot be started. System.NullReferenceException: Object reference not set to an instance of an object.
         at SetupAfterRebootService.SetupARService.OnStart(String[] args)
         at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
      Error: (04/12/2020 01:51:13 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Име на приложение с грешки: FreemakeUtilsService.exe, версия: 1.0.0.0, времево клеймо: 0x5e454538
      Име на модул с грешки: KERNELBASE.dll, версия: 6.1.7601.24408, времево клеймо: 0x5c92f101
      Код на изключение: 0xe0434352
      Отместване на грешка: 0x0000c5af
      ИД на процес на грешка: 0x5a0
      Начален час на приложението с грешки: 0x01d610b83a55eadf
      Път на приложението с грешки: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
      Път на модула с грешки: C:\Windows\syswow64\KERNELBASE.dll
      ИД на доклад: 8671c75e-7cab-11ea-97de-94de809321cd
      Error: (04/12/2020 01:50:55 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
      Description: Application: FreemakeUtilsService.exe
      Framework Version: v4.0.30319
      Description: The process was terminated due to an unhandled exception.
      Exception Info: System.IO.FileNotFoundException
         at FreemakeUtilsService.Program.Main(System.String[])
      Error: (04/09/2020 09:03:40 AM) (Source: SetupARService) (EventID: 0) (User: )
      Description: Service cannot be started. System.NullReferenceException: Object reference not set to an instance of an object.
         at SetupAfterRebootService.SetupARService.OnStart(String[] args)
         at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
      Error: (04/09/2020 09:02:22 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Име на приложение с грешки: FreemakeUtilsService.exe, версия: 1.0.0.0, времево клеймо: 0x5e454538
      Име на модул с грешки: KERNELBASE.dll, версия: 6.1.7601.24408, времево клеймо: 0x5c92f101
      Код на изключение: 0xe0434352
      Отместване на грешка: 0x0000c5af
      ИД на процес на грешка: 0x5ac
      Начален час на приложението с грешки: 0x01d60e346165c638
      Път на приложението с грешки: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
      Път на модула с грешки: C:\Windows\syswow64\KERNELBASE.dll
      ИД на доклад: ad3e8ed0-7a27-11ea-99ea-94de809321cd

      System errors:
      =============
      Error: (04/13/2020 12:43:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
      Description: Неуспешно зареждане на следния драйвер, който се активира с включване на компютъра или стартиране на системата: 
      cdrom
      Error: (04/13/2020 12:42:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Услуга Origin Web Helper Service не може да бъде стартирана поради следната грешка: 
      Услугата не отговори навреме на искане за стартиране или управление.
      Error: (04/13/2020 12:42:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Изтекъл период на изчакване (30000 милисекунди) при изчакване на услуга Origin Web Helper Service да се свърже.
      Error: (04/13/2020 12:42:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Услуга Freemake Improver не може да бъде стартирана поради следната грешка: 
      Услугата не отговори навреме на искане за стартиране или управление.
      Error: (04/13/2020 12:42:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Изтекъл период на изчакване (30000 милисекунди) при изчакване на услуга Freemake Improver да се свърже.
      Error: (04/12/2020 01:52:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
      Description: Неуспешно зареждане на следния драйвер, който се активира с включване на компютъра или стартиране на системата: 
      cdrom
      Error: (04/12/2020 01:51:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Услуга Origin Web Helper Service не може да бъде стартирана поради следната грешка: 
      Услугата не отговори навреме на искане за стартиране или управление.
      Error: (04/12/2020 01:51:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Изтекъл период на изчакване (30000 милисекунди) при изчакване на услуга Origin Web Helper Service да се свърже.

      CodeIntegrity:
      ===================================
      Date: 2019-06-09 17:12:15.330
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-53D9481D\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 17:12:15.275
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-53D9481D\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 16:10:34.363
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-53D9481D\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 16:10:34.318
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-53D9481D\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 05:58:19.154
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-6F3B2470\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 05:58:19.101
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-6F3B2470\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 05:31:45.759
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-6F3B2470\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      Date: 2019-06-09 05:31:45.707
      Description: 
      Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\GAMEPC\AppData\Local\Temp\ASC-6F3B2470\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
      ==================== Memory info =========================== 
      BIOS: Award Software International, Inc. F4b 04/26/2013
      Motherboard: Gigabyte Technology Co., Ltd. GA-78LMT-S2P
      Processor: AMD FX-8320E Eight-Core Processor 
      Percentage of memory in use: 30%
      Total physical RAM: 16381.54 MB
      Available physical RAM: 11368.57 MB
      Total Virtual: 32761.22 MB
      Available Virtual: 26564.91 MB
      ==================== Drives ================================
      Drive 😄 () (Fixed) (Total:150 GB) (Free:33.1 GB) NTFS
      Drive d: () (Fixed) (Total:781.41 GB) (Free:352.36 GB) NTFS
      \\?\Volume{2f050b3f-9477-11e7-8c98-806e6f6e6963}\ (Резервирана за системата) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
      ==================== MBR & Partition Table ====================
      ==========================================================
      Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0C59AE75)
      Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=781.4 GB) - (Type=05)
      ==================== End of Addition.txt =======================





       
      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-04-2020
      Ran by GAMEPC (administrator) on GAMEPC-PC (Gigabyte Technology Co., Ltd. GA-78LMT-S2P) (13-04-2020 13:04:14)
      Running from C:\Users\GAMEPC\Downloads
      Loaded Profiles: GAMEPC (Available Profiles: GAMEPC)
      Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Български (България)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
      ==================== Processes (Whitelisted) =================
      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
      (Discord Inc. -> Discord Inc.) C:\Users\GAMEPC\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
      (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
      (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
      (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
      (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
      (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
      ==================== Registry (Whitelisted) ===================
      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
      HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
      HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Run: [Spotify] => C:\Users\GAMEPC\AppData\Roaming\Spotify\Spotify.exe [22932200 2020-04-09] (Spotify AB -> Spotify Ltd)
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Run: [GAMEPC] => explorer.exe hxxp://dinoraptzor.org <==== ATTENTION
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Run: [FACEIT] => "C:\Users\GAMEPC\AppData\Local\FACEITApp\update.exe" --processStart "FACEIT.exe"
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Run: [gtarcade] => "C:\Users\GAMEPC\AppData\Local\Gtarcade\app\gtarcade.exe"   /auto_start=1 
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\Run: [Discord] => C:\Users\GAMEPC\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\MountPoints2: {2d2c5be0-94b8-11e7-8704-048d38748987} - E:\setup.exe
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\...\MountPoints2: {609d2171-c4d2-11e7-a1c0-048d38748987} - E:\Lenovo_Suite.exe
      HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.163\Installer\chrmstp.exe [2020-04-08] (Google LLC -> Google LLC)
      Startup: C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration Heroes of Might & Magic 5 - Tribes of the East.LNK [2019-05-20]
      ShortcutTarget: Registration Heroes of Might & Magic 5 - Tribes of the East.LNK -> D:\heroes 3\Heroes of Might and Magic V - Tribes of the East\registration\RegistrationReminder.exe (No File)
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
      ==================== Scheduled Tasks (Whitelisted) ============
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      Task: {29CD2B59-F360-4EA0-8046-E993FB989355} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-11] (Adobe Inc. -> Adobe)
      Task: {31987656-F768-4D69-96DF-7AD4AB429034} - System32\Tasks\update-S-1-5-21-2297230751-1021565052-1431566534-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
      Task: {3DAD135E-7AD5-4D57-B3E2-9E7F6AD9E01C} - System32\Tasks\{76A40252-E785-4407-9A98-34E12F6F05C9} => C:\Windows\system32\pcalua.exe -a "c:\program files (x86)\hi-rez studios\HiRezGamesDiagAndSupport.exe" -c uninstall=0
      Task: {5A3FE129-72EA-42EB-BA09-CBF91559E528} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
      Task: {64503CA0-D96B-485A-A2ED-32E1ADEC5130} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-09-08] (Google Inc -> Google Inc.)
      Task: {A19D33FF-7FBC-4D6F-B122-FFBC2947D956} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-11] (Adobe Inc. -> Adobe)
      Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
      Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
      Task: {C84BADD3-E09D-4A90-9F80-FC6F9C4BF9D6} - System32\Tasks\GAMEPC => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v GAMEPC /t REG_SZ /d "explorer.exe hxxp://dinoraptzor.org" <==== ATTENTION
      Task: {F67C982E-B27B-4B4D-B6F1-B5474BEA2341} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-11] (Adobe Inc. -> Adobe)
      Task: {FB761E82-2ABF-4B7D-A0A8-3F00F3533DD3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-09-08] (Google Inc -> Google Inc.)
      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
      Task: C:\Windows\Tasks\update-S-1-5-21-2297230751-1021565052-1431566534-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
      Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
      ==================== Internet (Whitelisted) ====================
      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
      Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
      Tcpip\..\Interfaces\{BFE47783-CFC6-4DEE-8858-A9889FC23A55}: [DhcpNameServer] 192.168.0.1
      Tcpip\..\Interfaces\{F8E6BFBF-08DD-4CEC-8468-25670AF9DFE4}: [DhcpNameServer] 94.72.140.1
      Internet Explorer:
      ==================
      HKU\S-1-5-21-2297230751-1021565052-1431566534-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
      BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      FireFox:
      ========
      FF DefaultProfile: mrpwyf7s.default
      FF ProfilePath: C:\Users\GAMEPC\AppData\Roaming\Mozilla\Firefox\Profiles\mrpwyf7s.default [2020-03-02]
      FF user.js: detected! => C:\Users\GAMEPC\AppData\Roaming\Mozilla\Firefox\Profiles\mrpwyf7s.default\user.js [2019-01-02]
      FF Homepage: Mozilla\Firefox\Profiles\mrpwyf7s.default -> google.bg
      FF Notifications: Mozilla\Firefox\Profiles\mrpwyf7s.default -> hxxps://www.instagram.com
      FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\GAMEPC\AppData\Roaming\Mozilla\Firefox\Profiles\mrpwyf7s.default\Extensions\hotfix-upda[email protected] [2020-01-04]
      FF Extension: (uBlock Origin) - C:\Users\GAMEPC\AppData\Roaming\Mozilla\Firefox\Profiles\mrpwyf7s.default\Extensions\[email protected] [2019-01-31]
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> )
      FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
      FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> )
      FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) [File not signed]
      FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-20] (Oracle America, Inc. -> Oracle Corporation)
      FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
      Chrome: 
      =======
      CHR DefaultProfile: Default
      CHR Profile: C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default [2020-04-13]
      CHR Notifications: Default -> hxxps://csgofast.com; hxxps://forum.dmg-inc.com; hxxps://ghost-recon.ubisoft.com; hxxps://tinder.com; hxxps://www.emag.bg
      CHR StartupUrls: Default -> "hxxp://google.bg/"
      CHR DefaultSearchURL: Default -> hxxps://tinder.com/static/android-chrome-192x192.png
      CHR Extension: (Презентации) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
      CHR Extension: (Документи) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
      CHR Extension: (Google Диск) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
      CHR Extension: (YouTube) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-08]
      CHR Extension: (Таблици) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
      CHR Extension: (Google Документи офлайн) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-10]
      CHR Extension: (Tinder) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hejiihbkifllpgdfndalmghiodgkefan [2019-04-05]
      CHR Extension: (Hoxx VPN Proxy) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbcojefnccbanplpoffopkoepjmhgdgh [2020-03-17]
      CHR Extension: (Плащания в уеб магазина на Chrome) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
      CHR Extension: (Gmail) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
      CHR Extension: (Chrome Media Router) - C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-03]
      CHR Profile: C:\Users\GAMEPC\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-17]
      Opera: 
      =======
      OPR Extension: (uBlock Origin) - C:\Users\GAMEPC\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2020-01-04]
      ==================== Services (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2019-11-20] (BattlEye Innovations e.K. -> )
      S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
      S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2020-02-13] (Mixbyte Inc -> Freemake)
      S3 mracsvc; C:\Windows\System32\mracsvc.exe [18534552 2019-08-24] (Mail.Ru LLC -> LLC Mail.Ru)
      S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8019808 2018-03-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
      S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495792 2020-04-12] (Electronic Arts, Inc. -> Electronic Arts)
      S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3447608 2020-04-12] (Electronic Arts, Inc. -> Electronic Arts)
      S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1688720 2020-03-05] (Rockstar Games, Inc. -> Rockstar Games)
      S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2017-09-08] (Realtek Semiconductor.) [File not signed]
      S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
      S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2017-06-20] (Microsoft Windows -> Microsoft Corporation)
      R2 wuauserv; C:\Windows\system32\wuaueng2.dll [2651136 2017-09-08] (Microsoft Corporation) [File not signed]
      S3 FACEITService; C:/Program Files/FACEIT AC/FACEITService.exe [X]
      R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
      S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe" [X]
      ===================== Drivers (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2017-09-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
      R0 amdsata; C:\Windows\System32\DRIVERS\amdsata.sys [67128 2009-04-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
      R0 amdxata; C:\Windows\System32\drivers\amdxata.sys [28216 2009-04-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
      R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [16440 2009-05-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
      R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-09-11] (Disc Soft Ltd -> Disc Soft Ltd)
      R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-09-11] (Disc Soft Ltd -> Disc Soft Ltd)
      R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-09-08] (Martin Malik - REALiX -> REALiX(tm))
      R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2017-09-08] (Qualcomm Atheros -> Qualcomm Atheros Co., Ltd.)
      S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [17770920 2019-08-24] (Mail.Ru LLC -> LLC Mail.Ru)
      S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
      S3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [61656 2017-09-08] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
      R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [34872 2009-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
      S3 VOICEMOD_Driver; C:\Windows\System32\drivers\vmdrv.sys [27648 2019-07-02] (Windows (R) Win 7 DDK provider) [File not signed]
      S3 CLMirrorDriver; system32\DRIVERS\CLMirrorDriver.sys [X]
      S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
      S4 nvvhci; system32\DRIVERS\nvvhci.sys [X]
      S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
      ==================== NetSvcs (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ==================== One month (created) ===================
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2020-04-13 13:04 - 2020-04-13 13:05 - 000018493 _____ C:\Users\GAMEPC\Downloads\FRST.txt
      2020-04-13 13:03 - 2020-04-13 13:04 - 000000000 ____D C:\FRST
      2020-04-13 13:02 - 2020-04-13 13:03 - 002281984 _____ (Farbar) C:\Users\GAMEPC\Downloads\FRST64.exe
      2020-04-13 13:02 - 2020-04-13 13:02 - 002281984 _____ (Farbar) C:\Users\GAMEPC\Downloads\Непотвърдено 720436.crdownload
      2020-04-12 15:52 - 2020-04-12 15:54 - 021108919 _____ C:\Users\GAMEPC\Downloads\IMG_0571.mov
      2020-04-11 14:13 - 2020-04-11 14:13 - 000013913 _____ C:\Users\GAMEPC\Downloads\Richard.Hammond's.Big.Longest.Railway.Tunnel.2020.1080i.HDTV.x264.torrent
      2020-04-11 14:13 - 2020-04-11 14:13 - 000013724 _____ C:\Users\GAMEPC\Downloads\Richard.Hammond's.Big.Super.Stadium.2020.1080i.HDTV.x264.torrent
      2020-04-11 14:07 - 2020-04-11 14:07 - 000020396 _____ C:\Users\GAMEPC\Downloads\Richard.Hammond's.Big.Tallest.Building.On.Earth.2020.720p.HDTV.x264.torrent
      2020-04-11 14:07 - 2020-04-11 14:07 - 000013420 _____ C:\Users\GAMEPC\Downloads\Richard.Hammond's.Big.Mega.Ship.2020.1080i.HDTV.x264.torrent
      2020-04-10 13:56 - 2020-04-10 13:56 - 000011541 _____ C:\Users\GAMEPC\Downloads\Busty.Coeds.vs.Lusty.Cheerleaders.2011.HDRip.720p.x264.mp4.torrent
      2020-04-09 13:58 - 2020-04-09 14:13 - 169566096 _____ C:\Users\GAMEPC\Downloads\twerk.AVI
      2020-04-09 13:58 - 2020-04-09 14:06 - 058040907 _____ C:\Users\GAMEPC\Downloads\MOV01556.mpeg
      2020-04-07 15:07 - 2020-04-07 15:07 - 000001655 _____ C:\Users\Public\Desktop\VALORANT.lnk
      2020-04-07 15:07 - 2020-04-07 15:07 - 000001655 _____ C:\ProgramData\Desktop\VALORANT.lnk
      2020-04-07 15:07 - 2020-04-07 15:07 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
      2020-04-07 15:07 - 2020-04-07 15:07 - 000000000 ____D C:\Riot Games
      2020-04-07 15:07 - 2020-04-07 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
      2020-04-07 15:06 - 2020-04-07 15:07 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\Riot Games
      2020-04-07 15:06 - 2020-04-07 15:07 - 000000000 ____D C:\ProgramData\Riot Games
      2020-04-07 15:05 - 2020-04-07 15:06 - 068288168 _____ (Riot Games, Inc.) C:\Users\GAMEPC\Downloads\Install VALORANT.exe
      2020-04-06 20:12 - 2020-04-06 20:12 - 000016557 _____ C:\Users\GAMEPC\Downloads\Now.You.See.Me.2013.EXTENDED.480p.BDRip.x265.AC3.BGaudio-REFLUX.torrent
      2020-04-06 20:08 - 2020-04-06 20:08 - 000011672 _____ C:\Users\GAMEPC\Downloads\The.Lone.Ranger.2013.BDRip.x264.BGAUDiO-SLSS.torrent
      2020-04-06 20:05 - 2020-04-06 20:05 - 000014150 _____ C:\Users\GAMEPC\Downloads\Jack.the.Giant.Slayer.2013.576p.BDRip.x265.DUAL-REFLUX.torrent
      2020-04-05 02:03 - 2020-04-05 02:03 - 000151200 _____ C:\Users\GAMEPC\Downloads\The.Penguins.of.Madagascar.2008.DVDRip.XviD.BGAUDIO-nikio96.torrent
      2020-04-04 15:32 - 2020-04-04 15:32 - 000173894 _____ C:\Users\GAMEPC\Downloads\Hawaii.Five-0.S01.720p.WEB-DL.BG.ENG.H.264-smsliverpool.torrent
      2020-04-04 14:41 - 2020-04-04 14:41 - 000053564 _____ C:\Users\GAMEPC\Downloads\Arrival__2016.(subs.sab.bz).rar
      2020-04-04 14:41 - 2020-04-04 14:41 - 000011894 _____ C:\Users\GAMEPC\Downloads\Arrival.2016.576p.BDRIP.x264.AAC-GOD.torrent
      2020-04-02 01:56 - 2020-04-02 01:56 - 000014519 _____ C:\Users\GAMEPC\Downloads\National.Treasure.2004.BRRip.XviD.BGAUDiO-ZmN.torrent
      2020-04-01 02:07 - 2020-04-01 02:07 - 000055713 _____ C:\Users\GAMEPC\Downloads\Meet The Fockers [DVDRip][2004][BGAudio][BugzBunny].avi.torrent
      2020-03-31 23:21 - 2020-03-31 23:21 - 000089245 _____ C:\Users\GAMEPC\Downloads\Addams.Family.Values.1993.1080p.BluRay.x264-SlzD.torrent
      2020-03-31 23:21 - 2020-03-31 23:21 - 000026602 _____ C:\Users\GAMEPC\Downloads\addams.family.values.1993.bluray.bg(subsunacs.net).rar
      2020-03-31 23:19 - 2020-03-31 23:19 - 000026083 _____ C:\Users\GAMEPC\Downloads\the_addams_family(subsunacs.net).zip
      2020-03-31 23:19 - 2020-03-31 23:19 - 000015432 _____ C:\Users\GAMEPC\Downloads\The.Addams.Family.1991.HDTVRip.XviD.AC3-KiNGS.torrent
      2020-03-30 23:36 - 2020-03-31 00:08 - 000000000 ____D C:\Users\GAMEPC\Documents\Assassin's Creed Syndicate
      2020-03-30 23:36 - 2020-03-30 23:36 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\uplay
      2020-03-30 21:17 - 2020-03-30 21:17 - 000058328 _____ C:\Users\GAMEPC\Downloads\Assassin's Creed Syndicate - Gold Edition + v1.5 + All DLCs [FitGirl Repack].torrent
      2020-03-30 20:08 - 2020-03-30 20:08 - 001024240 _____ C:\Users\GAMEPC\Downloads\filmora-idco_setup_full1901.exe
      2020-03-30 20:07 - 2020-03-30 20:07 - 001153264 _____ C:\Users\GAMEPC\Downloads\filmorapro_setup_full4895.exe
      2020-03-30 20:03 - 2020-03-30 20:03 - 000000000 ____D C:\Users\GAMEPC\Documents\New Folder(2)
      2020-03-30 20:03 - 2020-03-30 20:03 - 000000000 ____D C:\Users\GAMEPC\Documents\New Folder(1)
      2020-03-30 20:02 - 2020-03-30 20:02 - 000000000 ____D C:\Users\GAMEPC\Documents\New Folder
      2020-03-30 19:35 - 2020-03-30 19:37 - 135856128 _____ C:\Users\GAMEPC\Downloads\blender-2.82a-windows64.msi
      2020-03-28 04:34 - 2020-03-28 04:35 - 018548431 _____ C:\Users\GAMEPC\Downloads\voicemod crack .rar
      2020-03-28 04:22 - 2020-03-28 04:22 - 023272680 _____ (Voicemod S.L. ) C:\Users\GAMEPC\Downloads\VoicemodSetup.exe
      2020-03-28 04:22 - 2019-07-02 17:50 - 000027648 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmdrv.sys
      2020-03-26 16:39 - 2020-03-26 16:39 - 000021708 _____ C:\Users\GAMEPC\Downloads\the_hunt(subsunacs.net).7z
      2020-03-26 16:38 - 2020-03-26 16:38 - 000038078 _____ C:\Users\GAMEPC\Downloads\The.Hunt.2020.1080p.AMZN.WEBRip.DDP5.1.x264-NTG.torrent
      2020-03-25 22:47 - 2019-01-01 00:02 - 006045924 _____ C:\Users\GAMEPC\Desktop\meepoof_legacy_nonQcast.exe
      2020-03-25 22:45 - 2020-03-25 22:45 - 005896438 _____ C:\Users\GAMEPC\Downloads\meepoofv1_legacy_nonQcast.zip
      2020-03-25 02:45 - 2020-03-25 02:45 - 000002971 _____ C:\Users\GAMEPC\Downloads\Unacknowledged.2017.1080p.WEB.x265.AAC-Dr3adLoX.torrent
      2020-03-25 02:42 - 2020-03-25 02:42 - 000013592 _____ C:\Users\GAMEPC\Downloads\Most.Evil.Egocentric.Killers.1080i.HDTV.x264.torrent
      2020-03-24 19:05 - 2020-03-24 19:05 - 000002374 _____ C:\Users\GAMEPC\Desktop\StreamLabels.lnk
      2020-03-24 19:04 - 2020-03-24 19:05 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\streamlabels-updater
      2020-03-23 15:18 - 2020-03-23 15:18 - 000045449 _____ C:\Users\GAMEPC\Downloads\The_Invisible_Man.(subs.sab.bz).zip
      2020-03-23 15:18 - 2020-03-23 15:18 - 000039071 _____ C:\Users\GAMEPC\Downloads\The.Invisible.Man.2020.1080p.WEB-DL.H264.AC3-EVO.torrent
      2020-03-23 15:14 - 2020-03-23 15:14 - 000012215 _____ C:\Users\GAMEPC\Downloads\Toy.Story.4.2019.BRRip.x265.AC3.BGAUDiO-SiSO.torrent
      2020-03-22 14:43 - 2020-03-22 14:43 - 000315856 _____ C:\Users\GAMEPC\Downloads\SHUTDOWN8-SETUP.EXE
      2020-03-22 14:43 - 2020-03-22 14:43 - 000001043 _____ C:\Users\GAMEPC\Desktop\Shutdown8.lnk
      2020-03-22 14:43 - 2020-03-22 14:43 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\Shutdown8
      2020-03-22 14:42 - 2020-03-22 14:42 - 000566784 _____ C:\Users\GAMEPC\Downloads\ShutDown.exe
      2020-03-22 14:32 - 2020-03-16 16:07 - 039835432 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
      2020-03-22 14:32 - 2020-03-16 16:07 - 022106560 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
      2020-03-22 14:32 - 2020-03-16 16:07 - 018416616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
      2020-03-22 14:32 - 2020-03-16 16:06 - 004257984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 001729440 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
      2020-03-22 14:32 - 2020-03-16 13:10 - 001729440 _____ C:\Windows\system32\vulkaninfo.exe
      2020-03-22 14:32 - 2020-03-16 13:10 - 001329576 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
      2020-03-22 14:32 - 2020-03-16 13:10 - 001329576 _____ C:\Windows\SysWOW64\vulkaninfo.exe
      2020-03-22 14:32 - 2020-03-16 13:10 - 001079208 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 001079208 _____ C:\Windows\system32\vulkan-1.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 000937920 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 000937920 _____ C:\Windows\SysWOW64\vulkan-1.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 000440040 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
      2020-03-22 14:32 - 2020-03-16 13:10 - 000343784 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 127357328 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 040314976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 029930728 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 027555560 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 025239952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 011834784 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 010161040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
      2020-03-22 14:32 - 2020-03-16 13:09 - 000420240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 029545584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 022880352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
      2020-03-22 14:32 - 2020-03-16 13:08 - 017464208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 015029992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 004988136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 004447648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 002068368 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001720208 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444274.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001560808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001482984 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444274.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001476536 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001363176 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001139832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 001057696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000625776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000539880 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000517232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000422328 _____ C:\Windows\system32\nvofapi64.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000373360 _____ C:\Windows\SysWOW64\nvofapi.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000182368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000164464 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000158304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
      2020-03-22 14:32 - 2020-03-16 13:08 - 000143288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
      2020-03-22 14:32 - 2020-03-16 13:07 - 040502176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
      2020-03-22 14:32 - 2020-03-16 13:07 - 035371424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
      2020-03-22 14:32 - 2020-03-16 13:07 - 000518560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
      2020-03-22 14:28 - 2020-03-22 14:29 - 554302392 _____ (NVIDIA Corporation) C:\Users\GAMEPC\Downloads\442.74-desktop-win8-win7-64bit-international-whql.exe
      2020-03-21 05:08 - 2020-03-21 05:08 - 000021014 _____ C:\Users\GAMEPC\Downloads\Scooby Doo Mystery Incorporated Season 2 DVDRip BG Audio - SPYRO.torrent
      2020-03-20 16:09 - 2020-03-20 16:09 - 000077329 _____ C:\Users\GAMEPC\Downloads\_Yavka.net_The.Outsider.S01E01.WEBRip.x264-ION10.zip
      2020-03-20 16:09 - 2020-03-20 16:09 - 000041769 _____ C:\Users\GAMEPC\Downloads\The.Outsider.2020.S01E01.WEB.H264-XLF.torrent
      2020-03-20 15:11 - 2020-03-20 15:11 - 000056630 _____ C:\Users\GAMEPC\Downloads\Secret.Window.2004.DVDrip.XviD.Brutus-WORKZ.torrent
      2020-03-20 15:08 - 2020-03-20 15:08 - 000025691 _____ C:\Users\GAMEPC\Downloads\1408.2007.Director_s.Cut.720p.HDDVD.x264_CtrlHD.(subs.sab.bz).rar
      2020-03-20 15:07 - 2020-03-20 15:07 - 000014658 _____ C:\Users\GAMEPC\Downloads\1408.2007.BRRip.XViD.AC3 -playXD.torrent
      2020-03-20 15:03 - 2020-03-20 15:03 - 000014435 _____ C:\Users\GAMEPC\Downloads\Daybreakers.2009.BDRip.x264.AAC.BGAUDiO-SiSO.torrent
      2020-03-20 14:59 - 2020-03-20 14:59 - 000056731 _____ C:\Users\GAMEPC\Downloads\Dreamcatcher.DVDrip.AC3.torrent
      2020-03-19 14:12 - 2020-03-19 14:22 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\ShootersPool
      2020-03-19 14:12 - 2020-03-19 14:12 - 000000000 ____D C:\Users\GAMEPC\Documents\ShootersPool
      2020-03-19 14:12 - 2020-03-19 14:12 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\ShootersPool
      2020-03-19 13:39 - 2020-03-19 13:57 - 1545182216 _____ C:\Users\GAMEPC\Downloads\ShootersPool-1.8.2c_Setup.exe
      2020-03-17 16:31 - 2020-03-17 16:31 - 000033204 _____ C:\Users\GAMEPC\Downloads\swtros_2019_web_unacs_team(subsunacs.net).rar
      2020-03-17 16:30 - 2020-03-17 16:30 - 000027541 _____ C:\Users\GAMEPC\Downloads\Star.Wars.Episode.IX.The.Rise.of.Skywalker.2020.HDRip.AC3.x264-CMRG.torrent
      2020-03-15 14:48 - 2020-03-15 14:48 - 000013669 _____ C:\Users\GAMEPC\Downloads\Richard.Hammond's.Big.Austria's.Mega.Dam.2020.1080i.HDTV.x264.torrent
      2020-03-15 00:26 - 2020-03-15 00:30 - 068914501 _____ C:\Users\GAMEPC\Downloads\FullSizeRender.mov
      2020-03-14 19:01 - 2020-03-14 19:08 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\CitizenFX
      2020-03-14 18:50 - 2020-04-09 18:17 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\FiveM
      2020-03-14 18:50 - 2020-03-14 18:50 - 008885192 _____ (cfx-collective) C:\Users\GAMEPC\Downloads\FiveM.exe
      2020-03-14 18:50 - 2020-03-14 18:50 - 000002024 _____ C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk
      2020-03-14 18:50 - 2020-03-14 18:50 - 000002016 _____ C:\Users\GAMEPC\Desktop\FiveM Singleplayer.lnk
      2020-03-14 18:50 - 2020-03-14 18:50 - 000002016 _____ C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
      2020-03-14 18:50 - 2020-03-14 18:50 - 000002008 _____ C:\Users\GAMEPC\Desktop\FiveM.lnk
      ==================== One month (modified) ==================
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2020-04-13 12:56 - 2017-09-23 18:42 - 000000000 ____D C:\Program Files (x86)\Steam
      2020-04-13 12:51 - 2009-07-14 07:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2020-04-13 12:51 - 2009-07-14 07:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2020-04-13 12:49 - 2019-03-14 23:38 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\Spotify
      2020-04-13 12:44 - 2017-09-09 22:09 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\discord
      2020-04-13 12:42 - 2019-03-14 23:37 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\Spotify
      2020-04-13 12:42 - 2017-09-08 14:03 - 000000000 ____D C:\ProgramData\NVIDIA
      2020-04-13 12:41 - 2009-07-14 08:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2020-04-13 03:59 - 2019-07-31 00:33 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\obs-studio
      2020-04-13 03:38 - 2019-08-14 02:36 - 000000390 _____ C:\Windows\Tasks\update-sys.job
      2020-04-13 02:45 - 2019-08-14 02:36 - 000000390 _____ C:\Windows\Tasks\update-S-1-5-21-2297230751-1021565052-1431566534-1000.job
      2020-04-12 03:45 - 2019-12-26 03:14 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\Origin
      2020-04-12 03:12 - 2019-02-11 22:09 - 000000000 ____D C:\ProgramData\Origin
      2020-04-12 03:11 - 2019-12-26 03:16 - 000000000 ____D C:\Program Files (x86)\Origin
      2020-04-12 03:11 - 2019-12-26 03:14 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\Origin
      2020-04-11 17:11 - 2017-09-10 01:33 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\qBittorrent
      2020-04-08 00:03 - 2018-11-16 15:10 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2020-04-08 00:03 - 2018-11-16 15:10 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
      2020-04-08 00:03 - 2017-09-08 13:35 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2020-04-06 03:47 - 2017-09-19 23:12 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\TS3Client
      2020-04-03 11:39 - 2018-01-11 17:53 - 000640612 _____ C:\Windows\system32\perfh002.dat
      2020-04-03 11:39 - 2018-01-11 17:53 - 000114470 _____ C:\Windows\system32\perfc002.dat
      2020-04-03 11:39 - 2009-07-14 08:13 - 001498588 _____ C:\Windows\system32\PerfStringBackup.INI
      2020-04-03 11:39 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\inf
      2020-03-31 00:08 - 2009-07-14 08:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
      2020-03-30 20:00 - 2019-08-08 04:08 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\NVIDIA
      2020-03-28 04:27 - 2017-09-08 15:54 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\CrashDumps
      2020-03-24 19:05 - 2019-10-04 14:40 - 000002382 _____ C:\Users\GAMEPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StreamLabels.lnk
      2020-03-24 19:02 - 2019-07-31 03:15 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\slobs-client
      2020-03-24 19:01 - 2019-07-31 03:14 - 000000000 ____D C:\Program Files\Streamlabs OBS
      2020-03-21 16:32 - 2018-11-03 19:10 - 000000000 ____D C:\Users\GAMEPC\AppData\Local\DigitalEntitlements
      2020-03-21 02:54 - 2017-09-08 13:35 - 000003434 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
      2020-03-21 02:54 - 2017-09-08 13:35 - 000003306 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
      2020-03-20 21:19 - 2017-09-18 19:14 - 000000000 ____D C:\ProgramData\McAfee
      2020-03-20 17:01 - 2017-12-06 19:25 - 000000000 ____D C:\Users\GAMEPC\AppData\Roaming\ViberPC
      2020-03-19 14:12 - 2018-07-27 18:56 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
      2020-03-19 14:12 - 2018-07-27 18:56 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
      2020-03-19 14:12 - 2018-07-27 18:56 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
      2020-03-19 14:12 - 2018-07-27 18:56 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
      2020-03-19 03:22 - 2018-10-18 17:36 - 000000979 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk
      2020-03-19 03:22 - 2018-10-18 17:36 - 000000979 _____ C:\ProgramData\Desktop\PotPlayer 64 bit.lnk
      2020-03-16 16:07 - 2020-03-11 03:56 - 034369720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
      2020-03-16 16:07 - 2017-09-08 14:02 - 004813752 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
      2020-03-16 13:09 - 2017-09-08 14:02 - 000502672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
      2020-03-16 13:08 - 2020-03-11 03:56 - 000469904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
      2020-03-14 01:34 - 2017-09-08 13:21 - 000052925 _____ C:\Windows\system32\nvinfo.pb
      2020-03-14 00:04 - 2017-09-08 14:03 - 005580272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 002631480 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 001759032 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 000660792 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 000447464 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 000121328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
      2020-03-14 00:04 - 2017-09-08 14:03 - 000074552 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
      ==================== Files in the root of some directories ========
      2020-02-19 00:22 - 2020-02-19 00:22 - 000000733 _____ () C:\Users\GAMEPC\AppData\Local\recently-used.xbel
      2018-12-17 21:42 - 2018-12-23 19:48 - 000007597 _____ () C:\Users\GAMEPC\AppData\Local\Resmon.ResmonCfg
      2019-08-14 02:36 - 2019-08-14 02:36 - 000000003 _____ () C:\Users\GAMEPC\AppData\Local\updater.log
      2019-08-14 02:36 - 2019-08-14 02:36 - 000000424 _____ () C:\Users\GAMEPC\AppData\Local\UserProducts.xml
      ==================== SigCheck ============================
      (There is no automatic fix for files that do not pass verification.)

      LastRegBack: 2020-04-07 04:13
      ==================== End of FRST.txt ========================
  • Дарение

×
×
  • Добави ново...

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите Условия за ползване