помогите расшифровать файлы после вируса ishtar

11 ноября, 2016

Получили письмо от партнера с просьбой оплатить счет с ссылкой на дропбокс

скачав естественно получили вирус который зашифровал файлы поставив префикс ishtar

необходимо восстановить файлы ворд эксель ....

Помогите пожалуйста

CollectionLog-2016.11.11-11.54.zip

11 ноября, 2016

Копию письма на почту отправьте.

Скачайте Farbar Recovery Scan Tool

и сохраните на Рабочем столе.

Примечание: необходимо выбрать версию, совместимую с Вашей операционной системой. Если Вы не уверены, какая версия подойдет для Вашей системы, скачайте обе и попробуйте запустить. Только одна из них запустится на Вашей системе.

Запустите программу двойным щелчком. Когда программа запустится, нажмите Yes для соглашения с предупреждением.

Убедитесь, что под окном Optional Scan отмечены "List BCD", "Driver MD5" и "90 Days Files".

Нажмите кнопку Scan.

После окончания сканирования будет создан отчет (FRST.txt) в той же папке, откуда была запущена программа. Пожалуйста, прикрепите отчет в следующем сообщении.

Если программа была запущена в первый раз, будет создан отчет (Addition.txt). Пожалуйста, прикрепите его в следующем сообщении.

Изменено 11 ноября, 2016 пользователем mike 1

11 ноября, 2016

логи

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by Валя (administrator) on VALJA (11-11-2016 13:08:30)
Running from C:\Users\Валя\Desktop
Loaded Profiles: UpdatusUser & Валя (Available Profiles: UpdatusUser & Валя)
Platform: Windows 10 Home Single Language Version 1511 (X64) Language: Русский (Россия)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ESET) C:\Program Files\ESET\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Firebird Project) C:\Program Files\Firebird\bin\fbguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(MDL Forum, mod by Ratiborus) C:\Windows\KMS\bin\KMSSS.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Firebird Project) C:\Program Files\Firebird\bin\fbserver.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(ESET) C:\Program Files\ESET\egui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\full key usb\2F73B0A1-7DFE6B23_Almaz_USB.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mail.Ru) C:\Program Files\Cloud\15060175\Cloud.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Opera Software) C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\41.0.2353.56\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
() C:\Program Files\Lenovo\iMController\AutoUpdate.exe
(Apple Inc.) C:\Program Files\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.570_none_7645b09c266beb53\TiWorker.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3763424 2016-05-03] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2016-02-07] (Logitech, Inc.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5060864 2015-06-16] (Realtek semiconductor)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [iAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [smartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-14] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-12-18] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-12-18] (Lenovo(beijing) Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-28] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-11-12] (IvoSoft)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [bonus.SSR.FR12] => C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1517088 2014-07-14] (ABBYY Production LLC.)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [114880 2015-06-20] (VMware, Inc.)
HKU\S-1-5-21-1195179172-2301030070-928400072-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [shareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [shareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\2F73B0A1-7DFE6B23_Almaz_USB — ярлык.lnk [2016-03-25]
ShortcutTarget: 2F73B0A1-7DFE6B23_Almaz_USB — ярлык.lnk -> C:\full key usb\2F73B0A1-7DFE6B23_Almaz_USB.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\start — ярлык.lnk [2016-03-16]
ShortcutTarget: start — ярлык.lnk -> D:\облако\start.bat ()
Startup: C:\Users\Валя\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cloud Mail.Ru.lnk [2016-07-15]
ShortcutTarget: Cloud Mail.Ru.lnk -> C:\Program Files\Cloud\Cloud.exe (Mail.Ru)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.0 stats.hamrick.com static.hamrick.com www.hamrick.com
Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{2a1e8477-3195-4c1a-a0c0-703794b0fee6}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{61bc1298-90ac-40cf-a58f-c60014e55c01}: [DhcpNameServer] 192.168.1.1 192.168.1.254
Tcpip\..\Interfaces\{c2b05424-e8b0-4ef4-9660-41d50b43fb4f}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=625119&clcid=0x419
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1195179172-2301030070-928400072-1006 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627
SearchScopes: HKU\S-1-5-21-1195179172-2301030070-928400072-1006 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627
SearchScopes: HKU\S-1-5-21-1195179172-2301030070-928400072-1006 -> {CAF01155-91C5-494F-9D2C-605C5F8A3887} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-11-12] (IvoSoft)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)
BHO-x32: IE 4.x-6.x BHO for Download Master -> {9961627E-4059-41B4-8E0E-A7D6B3854ADF} -> C:\Program Files (x86)\Download Master\dmiehlp.dll [2015-06-25] (WestByte)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-11-12] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-01-23] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default [2016-03-26]
CHR Extension: (Google Презентации) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-25]
CHR Extension: (Документы Google) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-25]
CHR Extension: (Диск Google) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-25]
CHR Extension: (YouTube) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-25]
CHR Extension: (Google Таблицы) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-25]
CHR Extension: (Google Документы офлайн) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-25]
CHR Extension: (Платежная система Интернет-магазина Chrome) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-25]
CHR Extension: (Gmail) - C:\Users\Валя\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-25]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [961744 2014-07-13] (ABBYY Production LLC)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-09] ()
R2 ekrn; C:\Program Files\ESET\ekrn.exe [2770312 2016-11-11] (ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2016-05-03] (ELAN Microelectronics Corp.)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\bin\fbguard.exe [114688 2009-02-27] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\bin\fbserver.exe [3947520 2009-02-27] (Firebird Project) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-02-26] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 KMSEmulator; C:\WINDOWS\KMS\bin\KMSSS.exe [297472 2015-01-14] (MDL Forum, mod by Ratiborus) [File not signed]
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-12-18] (Lenovo(beijing) Limited)
S2 Sw7LcSrv; C:\Program Files (x86)\Kct\Swnd7\Sw7LcSrv.EXE [2571264 2014-04-18] (KCT soft) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 vmicvmsession; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12732608 2015-05-31] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-10-25] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7504560 2013-11-19] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [262792 2016-11-11] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [241880 2015-03-10] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-08-17] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [197248 2016-11-11] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [153216 2016-11-11] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [208520 2016-11-11] (ESET)
R1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [61568 2016-11-11] (ESET)
R0 epfwwfp; C:\WINDOWS\System32\DRIVERS\epfwwfp.sys [84616 2016-11-11] (ESET)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [30800 2016-05-03] (ELAN Microelectronic Corp.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
R0 vsock; C:\WINDOWS\System32\drivers\vsock.sys [76480 2015-05-21] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-08-28] (VMware, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

========================== Drivers MD5 =======================

C:\WINDOWS\System32\drivers\1394ohci.sys DF1C3D7E6C7929AD83BE22852B5B08CB
C:\WINDOWS\System32\drivers\3ware.sys 2C5B3035B86770ADD2FE9BFBAF5B35A4
C:\WINDOWS\System32\drivers\ACPI.sys 469441BAE3FF8A16826FC62C51EF5E18
C:\WINDOWS\System32\Drivers\acpiex.sys 7EADED8087C392876521F7EBCE846EF4
C:\WINDOWS\System32\drivers\acpipagr.sys C498887123327CDFD73A05E7A2780920
C:\WINDOWS\System32\drivers\acpipmi.sys C8DBE6EFFCF014CAA010B9BDDAC833EC
C:\WINDOWS\System32\drivers\acpitime.sys 17039DBEB3B7B9ADCDB4B4533AA9771F
C:\WINDOWS\System32\drivers\AcpiVpc.sys AF7A18603B0B82DFA5B420456FAF2201
C:\WINDOWS\System32\drivers\ADP80XX.SYS F7D0CD345D2DA42E7042ABCD73662403
C:\WINDOWS\system32\drivers\afd.sys 70148EFA9A562E7185B75BBE7D376BF7
C:\WINDOWS\System32\drivers\agp440.sys 870F1A2C936F92B5D053DF7EC75B352F
C:\WINDOWS\System32\DRIVERS\ahcache.sys 655491B1173E0F6322F6972A596B93F7
C:\WINDOWS\System32\drivers\amdk8.sys B70F0F2F54B4A4DB6E9C830454752F5A
C:\WINDOWS\System32\drivers\amdppm.sys 35E890482C9728DD5C552B85DA8A5AB2
C:\WINDOWS\System32\drivers\amdsata.sys 5B30BCFE6E02E45D3EE268FF001BC5E0
C:\WINDOWS\System32\drivers\amdsbs.sys F20B30F35A5C7888441B4DCA001ECF8E
C:\WINDOWS\System32\drivers\amdxata.sys AFE838D7576C581D6483529621AB10CC
C:\WINDOWS\System32\drivers\appid.sys EDDB0D726DBECDFC1DBCC6DB464E5A13
C:\WINDOWS\System32\drivers\arcsas.sys E3FE8F610B1CC12BC3B2E6BC43DC97E2
C:\WINDOWS\System32\drivers\asyncmac.sys 5E00748A1AD246CAECBBB7553BED36CC
C:\WINDOWS\System32\drivers\atapi.sys 492B99D2E3D5D7BFD5F0AE1BE7BD37DD
C:\WINDOWS\System32\drivers\bxvbda.sys 6447BA6FA709514B6C803D159B4C7D1E
C:\WINDOWS\System32\drivers\BasicDisplay.sys B4AC08B1D04D0CE085435E5CD0E663C5
C:\WINDOWS\System32\drivers\BasicRender.sys 25B5BB369DEE2BAE4BF459C978FF9035
C:\WINDOWS\system32\drivers\bcbtums.sys 6FED40EC0DB11DF1B2AD08621FBDDED6
C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys 8C4E3D4B68B24AFB5990872B4B88210F
C:\WINDOWS\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810
C:\WINDOWS\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393
C:\Windows\System32\Drivers\Beep.sys 5A88834AEE15D97695FAE0837B73B3E4
C:\WINDOWS\System32\DRIVERS\bowser.sys 00B634714E8B9F6AF9A7A6BCACA87305
C:\WINDOWS\System32\drivers\BthAvrcpTg.sys CAE0272391FE4DBEC2901237FB412EFD
C:\WINDOWS\System32\drivers\bthhfenum.sys 5F2B4B32E986C058525D3BA2A475A16C
C:\WINDOWS\System32\drivers\BthHFHid.sys 5406289E8AE2CB52FC408154E0A64BA7
C:\WINDOWS\System32\drivers\bthmodem.sys A76F20CCCA31895A1DA78A875E50F946
C:\WINDOWS\System32\drivers\BTHport.sys 2442F8CED09E5E4A8F1AA04C5DB22771
C:\WINDOWS\System32\drivers\BTHUSB.sys FA7EE4E3DCF4C1159D4E78147D8F1A7B
C:\WINDOWS\system32\DRIVERS\btwampfl.sys 8B8B304DF17084338326BC4ACC2716C5
C:\WINDOWS\System32\drivers\buttonconverter.sys BF89BDBA5D3A0B4256D3F6FC8D31880D
C:\WINDOWS\System32\drivers\capimg.sys C24C27FDF93B85A4EFCF25F830253AA2
C:\WINDOWS\System32\DRIVERS\cdfs.sys 7F9C7226D743B232907ED2537B8A574F
C:\WINDOWS\System32\drivers\cdrom.sys 82D97776BF982AA143BDC7DFB5054EA8
C:\WINDOWS\System32\drivers\circlass.sys 0505C1D991D0F9D47F3353BB98597C7E
C:\WINDOWS\System32\drivers\CLFS.sys 5D111A294FE3EB1D8E50400ADD5C0B0E
C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys 5C646CAC91E086F7FF53C7F2E857F263
C:\WINDOWS\System32\drivers\CmBatt.sys 95832B049E2833B9F5189823CDF946C7
C:\WINDOWS\System32\Drivers\cng.sys 1F186B561EC82AB3EB4D039FEE0D9012
C:\WINDOWS\System32\DRIVERS\cnghwassist.sys 58D640BC2294C71BDE0953F12D4B432F
C:\WINDOWS\system32\drivers\CHDRT64.sys 579B8A665076612D65107D3C7F80CBF7
C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 14F9883588398A1BDE49C75098C75DE6
C:\WINDOWS\System32\drivers\condrv.sys 02B8E49148DE5E0A2F6FDF28CE94A6AC
C:\WINDOWS\System32\drivers\dam.sys 2619DC483579DB9FE804044C1ADFFD1A
C:\WINDOWS\System32\Drivers\dfsc.sys A4FC5B8A300394F7E219B173E2BF3A46
C:\WINDOWS\System32\drivers\disk.sys 4904B152E4942BF700F2D73228B4D477
C:\WINDOWS\System32\drivers\dmvsc.sys 0197AE4B9790A4E73751CACFAA480126
C:\WINDOWS\System32\drivers\drmkaud.sys 25FA06D3B49D6ADF8E874FFCDCD76B50
C:\WINDOWS\System32\drivers\dxgkrnl.sys B599B817F00A9EC43FFD624AC484A3F9
C:\WINDOWS\System32\DRIVERS\eamonm.sys E75A80FA10A247F1E104ECB813255A45
C:\WINDOWS\System32\drivers\evbda.sys 491275B864B704B54EC08168344E0F38
C:\WINDOWS\System32\DRIVERS\edevmon.sys 3F85A2E0E05048F85BBFC783C9651E79
C:\WINDOWS\System32\DRIVERS\eelam.sys A6E666A2C13782E7D012202351DE0FFB
C:\WINDOWS\system32\DRIVERS\ehdrv.sys 1A4A59712D426D752FB668342A04A0D8
C:\WINDOWS\System32\drivers\EhStorClass.sys CEF108FCE06892CFA5F1B49527D4BF49
C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys 5B1EAAE3001A7A320C106FC3859F4111
C:\WINDOWS\system32\DRIVERS\ekbdflt.sys 68FF4448C05A11D169D47A849E7EF379
C:\WINDOWS\system32\DRIVERS\epfw.sys 59E0BD14BC40B77E9AA0143B1ACD2BB8
C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys 424E123AA389801748E53530B3D23910
C:\WINDOWS\System32\DRIVERS\epfwwfp.sys 553EE9B0426F8AE1321E2CC07374FA19
C:\WINDOWS\System32\drivers\errdev.sys 7A2705148A4BB3CA255F81624338B461
C:\WINDOWS\system32\DRIVERS\ETD.sys 597EBE20CCCC929C7CC8F44714509B2C
C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys DC71F5EFBFAE38BC5CF141C64AA40EB6
C:\Windows\System32\Drivers\exfat.sys DFE8A33FBCF6F38182631A4D6097B92D
C:\Windows\System32\Drivers\fastfat.sys C330883C06E2D4CE4F6982F048265D37
C:\WINDOWS\System32\drivers\fdc.sys 9D299AE86D671488926126A84DF77BFD
C:\WINDOWS\System32\drivers\filecrypt.sys 8F2523C9D8F1448FF2156452AF60FA00
C:\WINDOWS\System32\drivers\fileinfo.sys 92ECCFA58C8195B8EA33ED942469D4E6
C:\WINDOWS\System32\drivers\filetrace.sys 87C51FDD50C17882BA93E28BBABB9847
C:\WINDOWS\System32\drivers\flpydisk.sys E99261DD76D1C9E05AF575939CAE5AC5
C:\WINDOWS\System32\drivers\fltmgr.sys 25D7A58625E1453E40D36825DE74E4F1
C:\WINDOWS\System32\drivers\FsDepends.sys B4175E8BE60B099686FF55CA7D692316
C:\Windows\System32\Drivers\Fs_Rec.sys CC71372CEB811A72F1DC99089C5CBF53
C:\WINDOWS\System32\DRIVERS\fvevol.sys 50DFE05C698E9B0A63D95E3D669A105C
C:\WINDOWS\System32\drivers\gagp30kx.sys B9981A4CB9F728B3312A3885BFAA7204
C:\WINDOWS\System32\drivers\vmgencounter.sys 77555B11B264991DDC26872FFCF1AB97
C:\WINDOWS\System32\drivers\genericusbfn.sys 3DEAA29F7DE0B6436E75277A6FE3E95F
C:\WINDOWS\System32\Drivers\msgpioclx.sys F802FBABF0C4DF1BAA733187B2E476F5
C:\WINDOWS\System32\drivers\gpuenergydrv.sys D011B0ADB15F4815310CE1BF4780B33E
C:\WINDOWS\system32\drivers\hcmon.sys 3F95931AEEA6DEF9FC02C565D2EFC145
C:\WINDOWS\System32\drivers\HDAudBus.sys DB1409A2774DB8AD3611EA28C48CEB66
C:\WINDOWS\System32\drivers\HidBatt.sys 6B8CB114B8E64C0636EB49F7B914D1FC
C:\WINDOWS\System32\drivers\hidbth.sys D1AD197CCDAAC0CB4819DA1D6EB17BAE
C:\WINDOWS\System32\drivers\hidi2c.sys 64909DECCFCC6FB5D9A5BAFDCCB31FEE
C:\WINDOWS\System32\drivers\hidinterrupt.sys F510F7B7BF61DEAAC04E65C3B65E8D59
C:\WINDOWS\System32\drivers\hidir.sys 90F3ED42D423C942BA5EA54E2FFE7AC7
C:\WINDOWS\System32\drivers\hidusb.sys 128DEDDD61915DBA4D451D91D21F0513
C:\WINDOWS\System32\drivers\HpSAMD.sys FF442DCDCE1F6E9FAA9C8AD0CD1D199B
C:\WINDOWS\System32\drivers\HTTP.sys 63C3F74DC398A1C1A77E39DFB9C312CA
C:\WINDOWS\System32\drivers\hwpolicy.sys CBA5E88A0F0475B7F49653BB72150BEF
C:\WINDOWS\System32\drivers\hyperkbd.sys D668FAB4B0397B426EE3D41683B9A1C0
C:\WINDOWS\system32\DRIVERS\HyperVideo.sys 40115A0F8E7FF9E786EBBD1D33D39AD7
C:\WINDOWS\System32\drivers\i8042prt.sys 53FDD9E69189E546DE4740F8C4D8AB2F
C:\WINDOWS\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD
C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys 59A20F5AD9F4AE54098154359519408E
C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F
C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7
C:\WINDOWS\System32\drivers\iaStorA.sys 815499B59D675E42A70894118E7A6422
C:\WINDOWS\System32\drivers\iaStorAV.sys 6B0029A0253098CCE28EACCFDB9E7208
C:\WINDOWS\System32\drivers\iaStorV.sys 9652E1E35A92D8C75710C17A63B15796
C:\WINDOWS\System32\drivers\ibbus.sys FFADF691F7BF727AF5C863454A372723
C:\WINDOWS\system32\DRIVERS\igdkmd64.sys 658287D76E8D77C08AE98989F99B8948
C:\WINDOWS\system32\DRIVERS\IntcDAud.sys E300D1E37B737ED14F7A08CD5604E5D9
C:\WINDOWS\System32\drivers\intelide.sys ECDB27420D3A98424666904525A8562A
C:\WINDOWS\System32\drivers\intelpep.sys 8FF1978643EFD219C5BA49690191D701
C:\WINDOWS\System32\drivers\intelppm.sys B61B60F36E1C8022FA8166ABF0F66B07
C:\WINDOWS\System32\drivers\ioqos.sys CA0D42029AFFC4514D295E1EF823D02D
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 6E3F9D95235DFC9417384080A216F310
C:\WINDOWS\System32\drivers\IPMIDrv.sys 4F527ECB5EAB47D8EAF34A469666C469
C:\WINDOWS\System32\drivers\ipnat.sys 9E5E8F2A1996F23B7E9687846AA81B01
C:\WINDOWS\System32\drivers\irenum.sys C317EB660138BC9CBFE37CCDE56351AE
C:\WINDOWS\System32\drivers\isapnp.sys 531994A6D9399D9B74BE12B5BB58A81E
C:\WINDOWS\System32\drivers\msiscsi.sys 68D5354A4A9692EEC24664C60F47D4A2
C:\WINDOWS\System32\drivers\iwdbus.sys A90C843F4FDD7A07129BA73C6BE13976
C:\WINDOWS\System32\drivers\kbdclass.sys 701D7DB13B0815E7076EF4CB4CE981F8
C:\WINDOWS\System32\drivers\kbdhid.sys 884EBBDDBF5968003B40185BD96FF0E6
C:\WINDOWS\System32\drivers\kdnic.sys 6B3A0C7902811E6372643447E41F7048
C:\WINDOWS\System32\Drivers\ksecdd.sys 38DADD5178E0299A1BB5A805B2136DEC
C:\WINDOWS\System32\Drivers\ksecpkg.sys C2138FE291C8235C3A26CD04EE629163
C:\WINDOWS\system32\drivers\ksthunk.sys E9BB0023D730701BB5D9839B44F5E6B5
C:\WINDOWS\System32\drivers\lltdio.sys EC34EED89C34B27C292166B725AC7A7B
C:\WINDOWS\System32\drivers\lsi_sas.sys 961F28D879D345BFA50AF51285C90F2E
C:\WINDOWS\System32\drivers\lsi_sas2i.sys 6BFB8D1B3407518BE06B6F81F92FA0F5
C:\WINDOWS\System32\drivers\lsi_sas3i.sys BE0E47988D78F731DEC2C0CB03E765CB
C:\WINDOWS\System32\drivers\lsi_sss.sys F99BF02BE9219986817BF094981EEB18
C:\WINDOWS\system32\drivers\luafv.sys 2FCF837196082864F66CFD9CAB256275
C:\WINDOWS\System32\drivers\megasas.sys 2ED29B635F35E31A1C0D3DDB7DD2AD03
C:\WINDOWS\System32\drivers\megasr.sys 22E3CB85870879CBAE13C5095A8B12E3
C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys E0EF6C1399A9B1AAA0B28590411BED04
C:\WINDOWS\System32\drivers\mlx4_bus.sys D41920FBFFF2BBCBBC69A5B383AD022E
C:\WINDOWS\system32\drivers\mmcss.sys 64BD0C87064EA20C2D3DC4199F9C239C
C:\WINDOWS\System32\drivers\modem.sys 8D4B46FA84A3A3702EDADD37FAC6EDBA
C:\WINDOWS\System32\drivers\monitor.sys 78FEC1BDB168370F131BFBFEA0A04E9D
C:\WINDOWS\System32\drivers\mouclass.sys D1CC0833CFBC4222A95CAA5D0C8C78FF
C:\WINDOWS\System32\drivers\mouhid.sys C2E05EC6B80BCF5AE362DA873E1BCE64
C:\WINDOWS\System32\drivers\mountmgr.sys D5B7668A8F6C67C51FA5C6C513396D6C
C:\WINDOWS\System32\drivers\mpsdrv.sys 5FBCB85D127BE21E3A9DAF11A13C00EA
C:\WINDOWS\system32\drivers\mrxdav.sys 4B08308D8A2B21E96D77ABA478CB081E
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys E7D59C52DE0C19C3179114D028EAA4B7
C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys 734D21F5B05D05DA2F85BE7EEF77DD43
C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys 600D5CC9DD2AE16691C71DCD4DAF8F1D
C:\WINDOWS\System32\drivers\bridge.sys A4411C522D41707D5BCA817A5BB9E30B
C:\Windows\System32\Drivers\Msfs.sys D123343DDB02E372B02BF2C4293F835F
C:\WINDOWS\System32\drivers\msgpiowin32.sys B3358F380BA3F29F56BE0F7734C24D5F
C:\WINDOWS\System32\drivers\mshidkmdf.sys B2044D5D125F249680508EC0B2AAEFAC
C:\WINDOWS\System32\drivers\mshidumdf.sys 36ABE7FC80BED4FE44754AE5CFB51432
C:\WINDOWS\System32\drivers\msisadrv.sys 59307FEAFC9E72EEEC56B7FD7D294F4C
C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys E9457EDFEBC774199F907395C6D09CA2
C:\WINDOWS\System32\drivers\mslldp.sys C85D79735641D27C5821C35ECDDC2334
C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys EF75184B64356850D0F04D049C253526
C:\WINDOWS\system32\DRIVERS\MSPQM.sys 543933D166C618E7588EA77707EC1683
C:\Windows\System32\Drivers\MsRPC.sys 182711E9DDF70121A20EBB61B2DFB9E8
C:\WINDOWS\System32\drivers\mssmbios.sys E887FFDD6734C496407E9219225CB6FF
C:\WINDOWS\system32\DRIVERS\MSTEE.sys 83A2AB75951000D681FABDB80C07AEFC
C:\WINDOWS\System32\drivers\MTConfig.sys D65DB6F9285AF96151C937ABF027AEA8
C:\WINDOWS\System32\Drivers\mup.sys 74CADDF07A773FD9B5D840FD014A0430
C:\WINDOWS\System32\drivers\mvumis.sys 218705233D02776AE4D19CC37D985C1B
C:\WINDOWS\System32\DRIVERS\nwifi.sys 549DFD8240CF20BFBD88AD9D89325DBF
C:\WINDOWS\System32\drivers\ndfltr.sys B57CE307DA101C739885B7CC0678077F
C:\WINDOWS\System32\drivers\ndis.sys E582DA849A58524E645545FB68B6625D
C:\WINDOWS\System32\drivers\ndiscap.sys 202260E7CDD731A32AF62ABD1ABEE008
C:\WINDOWS\System32\drivers\NdisImPlatform.sys A1D473D0CF10561F29B58EA7C5412A92
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1A0AE283B8DE6BB76412A0F8213D45AC
C:\WINDOWS\System32\drivers\ndisuio.sys A74EE2D2C0BFF5EC3A6185791868C4CA
C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 32A9BD1342640D48AD85C8B3E812B984
C:\WINDOWS\System32\drivers\ndiswan.sys C0D4E47FE99B415DC1C95E386E8A4D3A
C:\WINDOWS\System32\DRIVERS\ndiswan.sys C0D4E47FE99B415DC1C95E386E8A4D3A
C:\WINDOWS\System32\DRIVERS\NDProxy.sys 50AEF8EF0064A91ABB08D858D039C9DE
C:\WINDOWS\System32\drivers\Ndu.sys 883A36E2FF7FA3E1281CB575579FE3AF
C:\WINDOWS\System32\drivers\netaapl64.sys EE00C544C025958AF50C7B199F3C8595
C:\WINDOWS\System32\drivers\netbios.sys 026618ECF6C4BEBDCB7885D42EC0DBE4
C:\WINDOWS\System32\DRIVERS\netbt.sys C03E926B0E7D66D68994067231DC3246
C:\WINDOWS\System32\drivers\netvsc.sys 2BB62723C835F75F0C7C9E6A736881FB
C:\Windows\System32\Drivers\Npfs.sys 465DC580170CD844206D7E3EF1DBF2A1
C:\WINDOWS\System32\drivers\npsvctrig.sys 29395C214D2CD4C81F73166AB988A797
C:\WINDOWS\System32\drivers\nsiproxy.sys 2871225495F832A8C8A7DD1A17EDB3DC
C:\Windows\System32\Drivers\NTFS.sys 19BD8A88AAC580592668B070AC0727D9
C:\Windows\System32\Drivers\Null.sys 6DBD703320484C37CEA9E4E2D266A8CE
C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys DF0BB2C179476D312B7BC0056CEC50A6
C:\WINDOWS\System32\drivers\nvraid.sys 604D27CC38CC23493F218D0BB834B3FF
C:\WINDOWS\System32\drivers\nvstor.sys 8B50D897657AB4A15FD9E251BBF7D107
C:\WINDOWS\System32\drivers\nv_agp.sys 31F990B2B6B91E9D7A667405CE12FCB1
C:\WINDOWS\System32\drivers\parport.sys 7D0FC96264C0F8F2C1321E33E8EB646C
C:\WINDOWS\System32\drivers\partmgr.sys D330D74B5F99309B5CCA30AE41C57CDE
C:\WINDOWS\System32\drivers\pci.sys 3F89E96BDA0A24A3D2DBB7CE1E625589
C:\WINDOWS\System32\drivers\pciide.sys 2B4D98DF0CA57FB9536DBC80D2449D1F
C:\WINDOWS\System32\drivers\pcmcia.sys F4D5793BF2E58AF15C6CF2FEEF9E73EB
C:\WINDOWS\System32\drivers\pcw.sys 22A53744CEEADFFFD33BA010FAD95229
C:\WINDOWS\System32\drivers\pdc.sys 34DDBE73E42A4EDED7BEFF66F270C1A4
C:\WINDOWS\System32\drivers\peauth.sys E2F8376F9731D12A009C522036C6073A
C:\WINDOWS\System32\drivers\percsas2i.sys 1398A85E59698067CBBE1D66A9C13ADF
C:\WINDOWS\System32\drivers\percsas3i.sys 35F7C7AD709D909D618D9EDF987FC3ED
C:\WINDOWS\System32\drivers\raspptp.sys 5BA6B9AD03B81546BA64E488C4EF9D17
C:\WINDOWS\System32\drivers\processr.sys 21AECFF3EB5748CBE12538A2500EFDE5
C:\WINDOWS\System32\drivers\pacer.sys 596FB6C5A72F34B7566930985E543806
C:\WINDOWS\system32\drivers\qwavedrv.sys CFBA9C976CBF6796E5DC39EF59984021
C:\WINDOWS\System32\DRIVERS\rasacd.sys 7B2AD8C55217B514C14281AB97B4E21D
C:\WINDOWS\System32\drivers\AgileVpn.sys E15A9CE1E2E7D1C8DF97A4FC1FFE6289
C:\WINDOWS\System32\drivers\rasl2tp.sys E3C82823B22463BC38AA4F8ADA852624
C:\WINDOWS\System32\drivers\raspppoe.sys 3369023EB5790A75BA7DABA14B75D922
C:\WINDOWS\System32\drivers\rassstp.sys 1E32A8CD65C4AD0A827CFEB13034DA29
C:\WINDOWS\System32\DRIVERS\rdbss.sys 39B52DF786378EA1F72BE193D483941F
C:\WINDOWS\System32\drivers\rdpbus.sys D0221C13960E274CC539D72D5A842ED0
C:\WINDOWS\System32\drivers\rdpdr.sys 1DC2CC74B51E4DC4CD5A20C1021E4010
C:\WINDOWS\System32\drivers\rdpvideominiport.sys 177DF954D0DEC0465A380C75F6E7F65F
C:\WINDOWS\System32\drivers\rdyboost.sys 5D1680871054D2B0B8A971BC8AB3B837
C:\Windows\System32\Drivers\ReFSv1.sys 341E6830DA70F65730300DAB4CB0B490
C:\WINDOWS\System32\drivers\rspndr.sys 0AC5FCDC29ED97ECDEF1276425EE2059
C:\WINDOWS\System32\drivers\rt640x64.sys FA00B16D06217288AFD700223DA131BA
C:\WINDOWS\system32\Drivers\RtsUer.sys 87CCF37EC2858FCF7689F8FC0B72F39A
C:\WINDOWS\system32\DRIVERS\rtsuvc.sys 14F73F34745B8EEF780181910B3BF41F
C:\WINDOWS\System32\drivers\vms3cap.sys 044890BB0D6CF1E23C1087234D320509
C:\WINDOWS\System32\drivers\sbp2port.sys 530F797129776AA7E81994783A97E2AD
C:\WINDOWS\System32\DRIVERS\scfilter.sys EB02C33399FA1D1637E17320134CCBEB
C:\WINDOWS\System32\drivers\sdbus.sys B32F13993145E815D7280C6F55B9523B
C:\WINDOWS\System32\drivers\sdstor.sys DE6D7DC78D956928F59F7415A0F41E13
C:\WINDOWS\System32\drivers\SerCx.sys 67585C295FF2D221679E376B68893B35
C:\WINDOWS\System32\drivers\SerCx2.sys B8C4852CBCAAC1374C08EC7445443824
C:\WINDOWS\System32\drivers\serenum.sys D3A103944A8FCD78FD48B2B19092790C
C:\WINDOWS\System32\drivers\serial.sys 249A563C48DFD9E42A37587653E003BB
C:\WINDOWS\System32\drivers\sermouse.sys 0F5B43074AE731D2C6F061241C9D84A6
C:\WINDOWS\System32\drivers\sfloppy.sys D9FE59276BD56A9643C32D5FACE2F251
C:\WINDOWS\System32\drivers\SiSRaid2.sys ABBE803FE0BDAE0E5BE74DDEFBE62F23
C:\WINDOWS\System32\drivers\sisraid4.sys 6043DF55CFE3C7ACF477645FA64DEA98
C:\WINDOWS\System32\drivers\spaceport.sys 1A6CB30F0EFC1632E6F1B852CA892583
C:\WINDOWS\System32\drivers\SpbCx.sys E1C158F6C00359278727A2CEE5D2ED71
C:\WINDOWS\System32\DRIVERS\srv.sys B5C5436E7DEA7048822809D16B6E861D
C:\WINDOWS\System32\DRIVERS\srv2.sys ACCFA2FAAF77F5F9D72D3496B36057A8
C:\WINDOWS\System32\DRIVERS\srvnet.sys FEABA2601AD0D819760F84D1A3ECE5AF
C:\WINDOWS\System32\drivers\stexstor.sys CCDA497C880AD16D87EDFAEFCFB2EDF5
C:\WINDOWS\System32\drivers\storahci.sys BF8EA6FC3358C2F69678E3E94F764F84
C:\WINDOWS\System32\drivers\vmstorfl.sys 32FF460DA8C1F370F5C08B7654899B73
C:\WINDOWS\System32\drivers\stornvme.sys CC21DB3EF619B9480FE31A4EFE92CBEB
C:\WINDOWS\System32\drivers\storqosflt.sys 390B8A75768E2689586539C224520895
C:\WINDOWS\System32\drivers\storufs.sys 770A92D9D3A0BF61C97C3AFCB36847D9
C:\WINDOWS\System32\drivers\storvsc.sys 736A2418E3E7F3DB3CF6EB0A55D1D581
C:\WINDOWS\System32\drivers\swenum.sys BD98B0225BCD49E8A62F4F8EE1D1F613
C:\WINDOWS\System32\drivers\Synth3dVsc.sys CAE4B27B469C583131EA5AAE622F5D76
C:\WINDOWS\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\WINDOWS\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\WINDOWS\System32\drivers\tcpipreg.sys 17F37EC9042D84561C550620643D9A85
C:\WINDOWS\system32\DRIVERS\tdx.sys 91D3F2A6253EF83EFBD7903028F58C4D
C:\WINDOWS\System32\drivers\terminpt.sys E730D0EB1B84EBC98423FC8D285EDBC0
C:\WINDOWS\System32\drivers\tpm.sys 87B9ABB965F7AF987D52791F0DD1663D
C:\WINDOWS\System32\drivers\TsUsbFlt.sys 48E828C66AB016E48F2CB4DD585315FD
C:\WINDOWS\System32\drivers\TsUsbGD.sys 267C76EE60736EA5A1811A53FA02AABE
C:\WINDOWS\System32\drivers\tunnel.sys 8CE72F094B822AD5EE9C3A3AFC0C16B6
C:\WINDOWS\System32\drivers\uagp35.sys 42C546414F80BD6C0137FC3A106F8A69
C:\WINDOWS\System32\drivers\uaspstor.sys 1686DBC81748B096232B15F16C302985
C:\WINDOWS\System32\Drivers\UcmCx.sys 82D3B1F4D80057826AA649D78147DE36
C:\WINDOWS\System32\drivers\UcmUcsi.sys 1C95F7CE37D9EFB90EBE987A9712356C
C:\WINDOWS\System32\drivers\ucx01000.sys AED081772091C98173905E2DF28C223B
C:\WINDOWS\System32\drivers\udecx.sys DCA34A111C29E4578DF2B8CEA3C7CDBD
C:\WINDOWS\System32\DRIVERS\udfs.sys 718A956AE00CE086F381044AB66CC29C
C:\WINDOWS\System32\drivers\UEFI.sys BA760F8E66428BA9FF1E8BFBC6248136
C:\WINDOWS\System32\drivers\ufx01000.sys 05DD22294A4F3F89E52351C7721E6D2C
C:\WINDOWS\System32\drivers\UfxChipidea.sys 2B1DABA97DDF5365FC66EE7DEDD86A13
C:\WINDOWS\System32\drivers\ufxsynopsys.sys 0B1013A5204A6B9EEB38F4EE1E430CE6
C:\WINDOWS\System32\drivers\uliagpkx.sys 6DE78C04BF32ECA7AF3064F53687C9A5
C:\WINDOWS\System32\drivers\umbus.sys 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4
C:\WINDOWS\System32\drivers\umpass.sys 11680607944A719EF20E0E740785712A
C:\WINDOWS\System32\drivers\urschipidea.sys 2410A0C20D21A25E6C01979FA886BE90
C:\WINDOWS\System32\drivers\urscx01000.sys 6E59CE43B6BA5AA1ADCF36A4DBBB92BB
C:\WINDOWS\System32\drivers\urssynopsys.sys E8A59FA109A22FC07E44BDFCC9727DBD
C:\WINDOWS\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473
C:\WINDOWS\System32\drivers\usbccgp.sys D8A44550ECE102B6443F5D54DCE7DAB3
C:\WINDOWS\System32\drivers\usbcir.sys 66B3D22DAB5312FF238ABF5C6D9F8FAB
C:\WINDOWS\System32\drivers\usbehci.sys 3E4F20DB902D2E2914F3FF3DB9772200
C:\WINDOWS\System32\drivers\usbhub.sys 41F7F00D76904416EF1F9EFA1A4C37A2
C:\WINDOWS\System32\drivers\UsbHub3.sys E7463CE8579A0418A98BE9BE42C647D7
C:\WINDOWS\System32\drivers\usbohci.sys DAB35CCA86F5FBE77D870A40089BC4A1
C:\WINDOWS\System32\drivers\usbprint.sys 21162F65C7756AAECAEBED9E67D0A5FE
C:\WINDOWS\system32\DRIVERS\usbscan.sys D67B6A4A6FB99D29444C2DBA2B636799
C:\WINDOWS\System32\drivers\usbser.sys 4AAD6547953D373A1EB5B2DF583D868B
C:\WINDOWS\System32\drivers\USBSTOR.SYS 8949F77132A4F8F3BA17C6727099F002
C:\WINDOWS\System32\drivers\usbuhci.sys 8B3E458A8851F9A3B2109B1680EE1159
C:\WINDOWS\System32\drivers\USBXHCI.SYS 9E9D58F5E1702955B2F4D62996F80E8E
C:\WINDOWS\System32\drivers\vdrvroot.sys E1BE37312785A71862516F66B3FD24CE
C:\WINDOWS\System32\drivers\VerifierExt.sys E42C0F2850735FF9D908B9DB581E6314
C:\WINDOWS\System32\drivers\vhdmp.sys 5E6B235E7A64C3F7CBE456368E9B5368
C:\WINDOWS\System32\drivers\vhf.sys D0C9632C350F46786643A069251BC249
C:\WINDOWS\System32\drivers\vmbus.sys E886CB75DA2B6EB35469EF10135624C7
C:\WINDOWS\System32\drivers\VMBusHID.sys 46D2EC27820EC0F798F85821E53C2942
C:\WINDOWS\System32\drivers\vmci.sys BE8E5E5D53ACF71D4E8E686B68C99B04
C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys A3412EC3FF7A5AC2CA3A3951476BFA9C
C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys F76AD463DBE8D30CB715A09DF9FF2BE9
C:\WINDOWS\system32\drivers\vmnetuserif.sys B564A598B9B31E9358B2D6C9BC96D710
C:\WINDOWS\System32\drivers\vmusb.sys 69741000F15F2F0CE85E5EE0DD3EB78A
C:\WINDOWS\system32\drivers\vmx86.sys 8FCCBE30DC217C244CE38DD7F9B673C3
C:\WINDOWS\System32\drivers\volmgr.sys B9265F47E7A354BAAA0AF5CBA3F8F7CE
C:\WINDOWS\System32\drivers\volmgrx.sys BEE9C8B72AB752B794F69C2B9B3678AA
C:\WINDOWS\System32\drivers\volsnap.sys E1F91A727A04C9F8199D04FF3BBBF63C
C:\WINDOWS\System32\drivers\vpci.sys F7B1B1101271E31F43CC76E890704F51
C:\WINDOWS\System32\drivers\vsmraid.sys D48ED0A08BD2FD25A833E6AC99623091
C:\WINDOWS\System32\drivers\vsock.sys 1C7DC94FDCABD06D24C3A532DC33FB34
C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys C279CC22288F277A14620EB949F0E1B9
C:\WINDOWS\System32\drivers\vstxraid.sys 6990D4AFDF545669D4E6C232F26DE1FB
C:\WINDOWS\System32\drivers\vwifibus.sys 1EE11F0508C58EF081F4176E66D6970B
C:\WINDOWS\System32\drivers\vwififlt.sys 938E4EF58E42D252B742B0E243011B90
C:\WINDOWS\System32\drivers\vwifimp.sys 3BE5AAC930447FD18D4A8255A2FEC95C
C:\WINDOWS\System32\drivers\wacompen.sys 00C27B64C758C111E5D78A70DE6CA2B6
C:\WINDOWS\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\WINDOWS\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\WINDOWS\system32\drivers\WdBoot.sys 069D3D6E20AD753B34FCE856F0436869
C:\WINDOWS\System32\drivers\Wdf01000.sys 6CC727E94CD84E9720FDCDA8089CABCC
C:\WINDOWS\system32\drivers\WdFilter.sys E3E97151A1D1E87BB2D5371F66C5F169
C:\WINDOWS\System32\DRIVERS\wdiwifi.sys 2BC2E99623119521EEF7910A11D0FDE0
C:\WINDOWS\System32\Drivers\WdNisDrv.sys 07B043160399AF4009054E2EA3464BF4
C:\WINDOWS\System32\drivers\wfplwfs.sys C11272713719922DE5711094333BD166
C:\WINDOWS\System32\drivers\wimmount.sys EF536C54AB9281FDC4E83B07279FCFC4
C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys D8966A76408107224C6013993135DD78
C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys 8B102A7B6CE326FD4208CC7C2D183343
C:\WINDOWS\System32\drivers\winmad.sys 4A53441C1C4D2878BEF27E381138BB2D
C:\WINDOWS\System32\drivers\WinUSB.SYS 260907CE034FE327AC99BDA4153AB22F
C:\WINDOWS\System32\drivers\winverbs.sys 40A3E8D729F458B2C9A8BD9380FF83D5
C:\WINDOWS\System32\drivers\wmiacpi.sys 8F010BF65238F3F822D22BA12831796E
C:\Windows\System32\Drivers\Wof.sys 2A9650FCC696DB28E45EA8B33B99B8E6
C:\WINDOWS\System32\DRIVERS\wpcfltr.sys 22C52D7EE7C7D0E02C8EFD8CAE8E3A71
C:\WINDOWS\System32\drivers\WpdUpFltr.sys 1C08E424CBDD5065BB7266F8C048C1B1
C:\WINDOWS\system32\drivers\ws2ifsl.sys 638B43D39A3D0B47024555CF1095E6F1
C:\WINDOWS\system32\DRIVERS\wsvd.sys 72B4E9DF6456C43C42A1419B09486045
C:\WINDOWS\System32\drivers\WudfPf.sys A928F25CB62232F413EE655352856E10
C:\WINDOWS\System32\drivers\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\WINDOWS\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\WINDOWS\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\WINDOWS\System32\drivers\xboxgip.sys F279536122B83FD0D8E158AA753E1B7C
C:\WINDOWS\System32\drivers\xinputhid.sys DA0807D87A62D076C29C4E30F1E84F46

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-11 13:08 - 2016-11-11 13:10 - 00047451 _____ C:\Users\Валя\Desktop\FRST.txt
2016-11-11 13:06 - 2016-11-11 13:08 - 00000000 ____D C:\FRST
2016-11-11 13:06 - 2016-11-11 13:06 - 02410496 _____ (Farbar) C:\Users\Валя\Desktop\FRST64.exe
2016-11-11 12:09 - 2016-11-11 12:09 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 12:09 - 2016-11-11 12:09 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 11:21 - 2016-11-11 11:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-11 11:13 - 2016-11-11 11:14 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-11 11:10 - 2016-11-02 16:32 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-11 11:10 - 2016-11-02 16:31 - 00546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-11 11:10 - 2016-10-25 12:34 - 00454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-11 11:10 - 2016-10-25 11:32 - 01862000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-11-11 11:10 - 2016-10-25 11:32 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-11 11:10 - 2016-10-25 11:32 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-11 11:10 - 2016-10-25 11:32 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-11-11 11:10 - 2016-10-25 11:28 - 01083648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-11-11 11:10 - 2016-10-25 11:05 - 00712032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-11 11:10 - 2016-10-25 10:45 - 00032096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-11 11:10 - 2016-10-25 10:39 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-11 11:10 - 2016-10-25 10:37 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-11 11:10 - 2016-10-25 10:31 - 01824272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-11 11:10 - 2016-10-25 10:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-11 11:10 - 2016-10-25 10:30 - 02938920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-11 11:10 - 2016-10-25 10:30 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-11-11 11:10 - 2016-10-25 10:29 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-11 11:10 - 2016-10-25 10:27 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-11 11:10 - 2016-10-25 10:27 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-11 11:10 - 2016-10-25 10:27 - 00256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-11 11:10 - 2016-10-25 10:26 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-11-11 11:10 - 2016-10-25 10:26 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-11 11:10 - 2016-10-25 10:26 - 01355344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-11-11 11:10 - 2016-10-25 10:26 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-11-11 11:10 - 2016-10-25 10:26 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-11 11:10 - 2016-10-25 10:22 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-11 11:10 - 2016-10-25 10:22 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-11-11 11:10 - 2016-10-25 10:19 - 00295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-11 11:10 - 2016-10-25 10:18 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-11 11:10 - 2016-10-25 10:12 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-11-11 11:10 - 2016-10-25 09:56 - 02195640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-11 11:10 - 2016-10-25 09:56 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2016-11-11 11:10 - 2016-10-25 09:54 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-11 11:10 - 2016-10-25 09:54 - 00273760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-11 11:10 - 2016-10-25 09:53 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-11 11:10 - 2016-10-25 09:27 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-11 11:10 - 2016-10-25 09:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-11 11:10 - 2016-10-25 09:21 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-11 11:10 - 2016-10-25 09:18 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-11 11:10 - 2016-10-25 09:09 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-11 11:10 - 2016-10-25 09:08 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-11 11:10 - 2016-10-25 09:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-11 11:10 - 2016-10-25 09:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-11 11:10 - 2016-10-25 09:03 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2016-11-11 11:10 - 2016-10-25 09:01 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2016-11-11 11:10 - 2016-10-25 09:00 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-11 11:10 - 2016-10-25 09:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-11 11:10 - 2016-10-25 08:59 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-11-11 11:10 - 2016-10-25 08:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-11-11 11:10 - 2016-10-25 08:51 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2016-11-11 11:10 - 2016-10-25 08:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2016-11-11 11:10 - 2016-10-25 08:50 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2016-11-11 11:10 - 2016-10-25 08:50 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-11 11:10 - 2016-10-25 08:50 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-11 11:10 - 2016-10-25 08:49 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-11 11:10 - 2016-10-25 08:48 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-11 11:10 - 2016-10-25 08:48 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-11 11:10 - 2016-10-25 08:45 - 00564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2016-11-11 11:10 - 2016-10-25 08:45 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-11 11:10 - 2016-10-25 08:45 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2016-11-11 11:10 - 2016-10-25 08:44 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-11 11:10 - 2016-10-25 08:43 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2016-11-11 11:10 - 2016-10-25 08:42 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-11 11:10 - 2016-10-25 08:41 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-11-11 11:10 - 2016-10-25 08:41 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-11-11 11:10 - 2016-10-25 08:40 - 01336832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2016-11-11 11:10 - 2016-10-25 08:39 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-11 11:10 - 2016-10-25 08:39 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2016-11-11 11:10 - 2016-10-25 08:37 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2016-11-11 11:10 - 2016-10-25 08:37 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2016-11-11 11:10 - 2016-10-25 08:37 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-11-11 11:10 - 2016-10-25 08:37 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2016-11-11 11:10 - 2016-10-25 08:36 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-11-11 11:10 - 2016-10-25 08:35 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-11-11 11:10 - 2016-10-25 08:35 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-11 11:10 - 2016-10-25 08:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-11 11:10 - 2016-10-25 08:33 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-11-11 11:10 - 2016-10-25 08:33 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-11 11:10 - 2016-10-25 08:32 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-11-11 11:10 - 2016-10-25 08:32 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2016-11-11 11:10 - 2016-10-25 08:31 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-11-11 11:10 - 2016-10-25 08:30 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-11 11:10 - 2016-10-25 08:29 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-11-11 11:10 - 2016-10-25 08:29 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-11-11 11:10 - 2016-10-25 08:29 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-11-11 11:10 - 2016-10-25 08:28 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-11 11:10 - 2016-10-25 08:28 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-11 11:10 - 2016-10-25 08:28 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-11 11:10 - 2016-10-25 08:28 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-11 11:10 - 2016-10-25 08:27 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-11-11 11:10 - 2016-10-25 08:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-11-11 11:10 - 2016-10-25 08:26 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-11-11 11:10 - 2016-10-25 08:25 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-11 11:10 - 2016-10-25 08:25 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2016-11-11 11:10 - 2016-10-25 08:25 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-11 11:10 - 2016-10-25 08:25 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-11-11 11:10 - 2016-10-25 08:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-11 11:10 - 2016-10-25 08:23 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-11 11:10 - 2016-10-25 08:23 - 00964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-11 11:10 - 2016-10-25 08:22 - 01562624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-11-11 11:10 - 2016-10-25 08:21 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-11 11:10 - 2016-10-25 08:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-11-11 11:10 - 2016-10-25 08:17 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-11 11:10 - 2016-10-25 08:14 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-11 11:10 - 2016-10-25 08:11 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-11 11:10 - 2016-10-25 08:11 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-11-11 11:10 - 2016-10-25 08:09 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-11-11 11:10 - 2016-10-25 08:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-11 11:10 - 2016-10-25 08:07 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-11 11:10 - 2016-10-25 08:04 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-11 11:10 - 2016-10-25 08:03 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-11 11:10 - 2016-10-25 08:01 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2016-11-11 11:10 - 2016-10-25 08:00 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-11 11:10 - 2016-10-25 08:00 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-11 11:10 - 2016-10-25 08:00 - 02555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-11 11:10 - 2016-10-25 08:00 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-11 11:10 - 2016-10-25 08:00 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-11-11 11:10 - 2016-10-25 07:59 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-11 11:10 - 2016-10-25 07:59 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2016-11-11 11:10 - 2016-10-25 07:58 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-11 11:10 - 2016-10-25 07:57 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-11-11 11:10 - 2016-10-25 07:56 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-11 11:10 - 2016-10-25 07:55 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-11 11:10 - 2016-10-25 07:55 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2016-11-11 11:10 - 2016-10-25 07:54 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-11 11:10 - 2016-10-25 07:53 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-11 11:10 - 2016-10-25 07:47 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-11-11 11:10 - 2016-10-25 07:46 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-11 11:10 - 2016-10-25 07:43 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-11 11:10 - 2016-10-25 07:41 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-11 11:10 - 2016-10-25 07:40 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-11 11:10 - 2016-10-25 07:38 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-11 11:10 - 2016-10-25 07:37 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-11-11 11:10 - 2016-10-25 07:36 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-11 11:10 - 2016-10-25 07:35 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-11 11:10 - 2016-10-25 07:35 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-11-11 11:10 - 2016-10-25 07:34 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-11 11:10 - 2016-10-25 07:34 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-11 11:10 - 2016-10-25 07:34 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-11 11:10 - 2016-10-25 07:32 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-11 11:10 - 2016-10-25 07:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-11-11 11:10 - 2016-10-25 07:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-11 11:10 - 2016-10-25 07:27 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-11 11:10 - 2016-10-25 07:23 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-11-11 11:10 - 2016-10-25 07:21 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-11 11:10 - 2016-10-05 08:45 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-11-11 11:10 - 2016-10-05 07:32 - 00538744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-11 11:10 - 2016-10-05 07:19 - 00717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-11-11 11:10 - 2016-10-05 06:40 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-11-11 11:10 - 2016-10-05 06:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-11-11 11:10 - 2016-10-05 06:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-11 11:10 - 2016-10-05 06:24 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-11 11:10 - 2016-10-05 06:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-11 11:10 - 2016-10-05 06:15 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-11 11:10 - 2016-10-05 06:13 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-11-11 11:10 - 2016-10-05 06:09 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-11 11:10 - 2016-10-05 06:05 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-11 11:10 - 2016-10-05 05:54 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-11 11:10 - 2016-10-05 05:40 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-11 11:10 - 2016-09-07 08:39 - 00620176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-11-11 11:10 - 2016-09-07 08:39 - 00601744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-11 11:10 - 2016-09-07 08:39 - 00328520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2016-11-11 11:10 - 2016-09-07 08:39 - 00277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-11 11:10 - 2016-09-07 08:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-11-11 11:10 - 2016-09-07 08:33 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 01118200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00511312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-11-11 11:10 - 2016-09-07 08:24 - 00355672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-11-11 11:10 - 2016-09-07 08:22 - 01085728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2016-11-11 11:10 - 2016-09-07 08:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-11 11:10 - 2016-09-07 08:13 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-11 11:10 - 2016-09-07 08:08 - 00116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-11 11:10 - 2016-09-07 08:07 - 01951848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-11-11 11:10 - 2016-09-07 07:52 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-11-11 11:10 - 2016-09-07 07:45 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-11 11:10 - 2016-09-07 07:43 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2016-11-11 11:10 - 2016-09-07 07:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-11 11:10 - 2016-09-07 07:39 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2016-11-11 11:10 - 2016-09-07 07:39 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2016-11-11 11:10 - 2016-09-07 07:39 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Cortana.ProxyStub.dll
2016-11-11 11:10 - 2016-09-07 07:38 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2016-11-11 11:10 - 2016-09-07 07:38 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2016-11-11 11:10 - 2016-09-07 07:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-11-11 11:10 - 2016-09-07 07:37 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2016-11-11 11:10 - 2016-09-07 07:37 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2016-11-11 11:10 - 2016-09-07 07:37 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2016-11-11 11:10 - 2016-09-07 07:37 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-11-11 11:10 - 2016-09-07 07:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2016-11-11 11:10 - 2016-09-07 07:36 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2016-11-11 11:10 - 2016-09-07 07:36 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwcfg.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-11 11:10 - 2016-09-07 07:35 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-11 11:10 - 2016-09-07 07:34 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-11 11:10 - 2016-09-07 07:34 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2016-11-11 11:10 - 2016-09-07 07:34 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2016-11-11 11:10 - 2016-09-07 07:33 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2016-11-11 11:10 - 2016-09-07 07:33 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-11-11 11:10 - 2016-09-07 07:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2016-11-11 11:10 - 2016-09-07 07:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-11 11:10 - 2016-09-07 07:32 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-11-11 11:10 - 2016-09-07 07:32 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-11 11:10 - 2016-09-07 07:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-11 11:10 - 2016-09-07 07:31 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2016-11-11 11:10 - 2016-09-07 07:31 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-11-11 11:10 - 2016-09-07 07:31 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2016-11-11 11:10 - 2016-09-07 07:31 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-11 11:10 - 2016-09-07 07:31 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2016-11-11 11:10 - 2016-09-07 07:31 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-11 11:10 - 2016-09-07 07:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-11 11:10 - 2016-09-07 07:30 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-11 11:10 - 2016-09-07 07:30 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-11 11:10 - 2016-09-07 07:30 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2016-11-11 11:10 - 2016-09-07 07:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc_ssp.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2016-11-11 11:10 - 2016-09-07 07:28 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-11 11:10 - 2016-09-07 07:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-11 11:10 - 2016-09-07 07:27 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-11 11:10 - 2016-09-07 07:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 01537536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2016-11-11 11:10 - 2016-09-07 07:26 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-11-11 11:10 - 2016-09-07 07:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-11 11:10 - 2016-09-07 07:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-11-11 11:10 - 2016-09-07 07:24 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-11 11:10 - 2016-09-07 07:23 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2016-11-11 11:10 - 2016-09-07 07:22 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-11 11:10 - 2016-09-07 07:22 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-11-11 11:10 - 2016-09-07 07:21 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-11 11:10 - 2016-09-07 07:21 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2016-11-11 11:10 - 2016-09-07 07:19 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2016-11-11 11:10 - 2016-09-07 07:19 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-11-11 11:10 - 2016-09-07 07:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-11-11 11:10 - 2016-09-07 07:16 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-11-11 11:10 - 2016-09-07 07:16 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2016-11-11 11:10 - 2016-09-07 07:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2016-11-11 11:10 - 2016-09-07 07:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-11 11:10 - 2016-09-07 07:15 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2016-11-11 11:10 - 2016-09-07 07:14 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-11 11:10 - 2016-09-07 07:13 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-11-11 11:10 - 2016-09-07 07:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-11 11:10 - 2016-09-07 07:12 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-11-11 11:10 - 2016-09-07 07:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2016-11-11 11:10 - 2016-09-07 07:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-11 11:10 - 2016-09-07 07:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2016-11-11 11:10 - 2016-09-07 07:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2016-11-11 11:10 - 2016-08-03 13:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-11 11:10 - 2016-08-03 12:29 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-11 11:10 - 2016-08-03 12:29 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-11 11:10 - 2016-08-03 08:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-11 11:10 - 2016-08-03 08:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-11-11 11:10 - 2016-08-03 07:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-11-11 11:10 - 2016-08-03 07:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-11-11 11:10 - 2016-08-03 07:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-11 11:10 - 2016-08-03 07:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-11-11 11:10 - 2016-08-03 07:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-11 11:10 - 2016-08-03 07:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-11-11 11:10 - 2016-08-03 07:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-11-11 11:10 - 2016-08-03 07:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-11 11:10 - 2016-06-18 07:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-11 11:09 - 2016-11-02 15:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-11 11:09 - 2016-10-25 12:24 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-11-11 11:09 - 2016-10-25 12:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-11 11:09 - 2016-10-25 11:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-11 11:09 - 2016-10-25 11:48 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-11-11 11:09 - 2016-10-25 11:48 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-11-11 11:09 - 2016-10-25 11:48 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-11-11 11:09 - 2016-10-25 11:48 - 00847648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-11 11:09 - 2016-10-25 11:42 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-11-11 11:09 - 2016-10-25 11:39 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-11-11 11:09 - 2016-10-25 11:38 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-11 11:09 - 2016-10-25 11:37 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-11-11 11:09 - 2016-10-25 11:37 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-11 11:09 - 2016-10-25 11:35 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-11 11:09 - 2016-10-25 11:30 - 00360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-11 11:09 - 2016-10-25 10:40 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-11 11:09 - 2016-10-25 10:30 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-11 11:09 - 2016-10-25 10:26 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-11-11 11:09 - 2016-10-25 10:14 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-11 11:09 - 2016-10-25 10:12 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2016-11-11 11:09 - 2016-10-25 10:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2016-11-11 11:09 - 2016-10-25 10:06 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-11 11:09 - 2016-10-25 10:06 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2016-11-11 11:09 - 2016-10-25 09:59 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-11 11:09 - 2016-10-25 09:52 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-11 11:09 - 2016-10-25 09:51 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-11 11:09 - 2016-10-25 09:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-11 11:09 - 2016-10-25 09:49 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-11-11 11:09 - 2016-10-25 09:49 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-11-11 11:09 - 2016-10-25 09:48 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2016-11-11 11:09 - 2016-10-25 09:43 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-11-11 11:09 - 2016-10-25 09:39 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-11-11 11:09 - 2016-10-25 09:38 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-11 11:09 - 2016-10-25 09:38 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-11-11 11:09 - 2016-10-25 09:38 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-11-11 11:09 - 2016-10-25 09:37 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-11-11 11:09 - 2016-10-25 09:37 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-11-11 11:09 - 2016-10-25 09:33 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-11-11 11:09 - 2016-10-25 09:32 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-11-11 11:09 - 2016-10-25 09:28 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-11-11 11:09 - 2016-10-25 09:27 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2016-11-11 11:09 - 2016-10-25 09:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-11 11:09 - 2016-10-25 09:23 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-11 11:09 - 2016-10-25 09:22 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-11-11 11:09 - 2016-10-25 09:12 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-11-11 11:09 - 2016-10-25 09:05 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-11-11 11:09 - 2016-10-25 09:05 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-11-11 11:09 - 2016-10-25 09:03 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-11 11:09 - 2016-10-25 09:00 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2016-11-11 11:09 - 2016-10-25 08:56 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2016-11-11 11:09 - 2016-10-25 08:53 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-11 11:09 - 2016-10-25 08:49 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-11-11 11:09 - 2016-10-25 08:45 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-11-11 11:09 - 2016-10-25 08:45 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-11-11 11:09 - 2016-10-25 08:43 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2016-11-11 11:09 - 2016-10-25 08:42 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-11-11 11:09 - 2016-10-25 08:39 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-11 11:09 - 2016-10-25 08:36 - 04646400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-11-11 11:09 - 2016-10-25 08:36 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-11-11 11:09 - 2016-10-25 08:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2016-11-11 11:09 - 2016-10-25 08:35 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-11-11 11:09 - 2016-10-25 08:32 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-11 11:09 - 2016-10-25 08:32 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-11-11 11:09 - 2016-10-25 08:28 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-11-11 11:09 - 2016-10-25 08:28 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-11-11 11:09 - 2016-10-25 08:24 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-11-11 11:09 - 2016-10-25 08:14 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-11 11:09 - 2016-10-25 08:11 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-11-11 11:09 - 2016-10-25 08:05 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-11-11 11:09 - 2016-10-25 07:59 - 14258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-11 11:09 - 2016-10-25 07:58 - 07536128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-11 11:09 - 2016-10-25 07:55 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-11 11:09 - 2016-10-25 07:55 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-11-11 11:09 - 2016-10-25 07:53 - 03294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-11 11:09 - 2016-10-25 07:52 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-11-11 11:09 - 2016-10-25 07:51 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2016-11-11 11:09 - 2016-10-25 07:50 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-11-11 11:09 - 2016-10-25 07:45 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-11-11 11:09 - 2016-10-25 07:44 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-11 11:09 - 2016-10-25 07:33 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-11 11:09 - 2016-10-25 07:30 - 12590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-11 11:09 - 2016-10-25 07:07 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-11 11:09 - 2016-10-05 09:54 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-11-11 11:09 - 2016-10-05 08:00 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-11 11:09 - 2016-10-05 07:50 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-11-11 11:09 - 2016-10-05 07:49 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-11-11 11:09 - 2016-10-05 07:29 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-11 11:09 - 2016-10-05 07:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-11 11:09 - 2016-09-07 08:36 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-11 11:09 - 2016-09-07 08:34 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-11 11:09 - 2016-09-07 08:26 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-11 11:09 - 2016-09-07 08:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2016-11-11 11:09 - 2016-09-07 07:53 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-11-11 11:09 - 2016-09-07 07:49 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-11-11 11:09 - 2016-09-07 07:46 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-11 11:09 - 2016-09-07 07:43 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2016-11-11 11:09 - 2016-09-07 07:42 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-11-11 11:09 - 2016-09-07 07:42 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-11-11 11:09 - 2016-09-07 07:41 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-11-11 11:09 - 2016-09-07 07:41 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2016-11-11 11:09 - 2016-09-07 07:40 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2016-11-11 11:09 - 2016-09-07 07:40 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-11-11 11:09 - 2016-09-07 07:38 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-11-11 11:09 - 2016-09-07 07:38 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-11-11 11:09 - 2016-09-07 07:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-11 11:09 - 2016-09-07 07:37 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-11-11 11:09 - 2016-09-07 07:37 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-11 11:09 - 2016-09-07 07:36 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2016-11-11 11:09 - 2016-09-07 07:36 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2016-11-11 11:09 - 2016-09-07 07:35 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-11 11:09 - 2016-09-07 07:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2016-11-11 11:09 - 2016-09-07 07:34 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-11 11:09 - 2016-09-07 07:34 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-11-11 11:09 - 2016-09-07 07:34 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-11-11 11:09 - 2016-09-07 07:34 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-11 11:09 - 2016-09-07 07:33 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-11 11:09 - 2016-09-07 07:32 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-11 11:09 - 2016-09-07 07:32 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-11 11:09 - 2016-09-07 07:32 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-11-11 11:09 - 2016-09-07 07:32 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-11 11:09 - 2016-09-07 07:31 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-11 11:09 - 2016-09-07 07:31 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-11 11:09 - 2016-09-07 07:29 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-11 11:09 - 2016-09-07 07:29 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2016-11-11 11:09 - 2016-09-07 07:28 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-11 11:09 - 2016-09-07 07:23 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2016-11-11 11:09 - 2016-09-07 07:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2016-11-11 11:09 - 2016-09-07 07:17 - 01526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-11-11 11:09 - 2016-09-07 07:14 - 02573824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-11 11:09 - 2016-09-07 07:11 - 03053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-11 11:09 - 2016-09-07 07:10 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-11-11 11:09 - 2016-08-03 13:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-11 11:09 - 2016-08-03 13:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-11-11 11:09 - 2016-08-03 12:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-11-11 11:09 - 2016-08-03 12:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-11-11 11:09 - 2016-08-03 12:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-11-11 11:09 - 2016-08-03 12:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-11-11 11:09 - 2016-08-03 12:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-11 11:08 - 2016-10-25 12:42 - 07468384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-11 11:08 - 2016-10-25 12:42 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-11 11:08 - 2016-10-25 12:42 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-11 11:08 - 2016-10-25 12:42 - 01142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-11 11:08 - 2016-10-25 12:25 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-11 11:08 - 2016-10-25 11:49 - 00588328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-11-11 11:08 - 2016-10-25 11:49 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-11 11:08 - 2016-10-25 11:48 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-11 11:08 - 2016-10-25 11:48 - 01017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-11 11:08 - 2016-10-25 11:42 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-11 11:08 - 2016-10-25 11:42 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-11 11:08 - 2016-10-25 11:41 - 03694088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-11 11:08 - 2016-10-25 11:32 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-11 11:08 - 2016-10-25 10:47 - 28851216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-11-11 11:08 - 2016-10-25 10:47 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2016-11-11 11:08 - 2016-10-25 10:47 - 00305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-11 11:08 - 2016-10-25 10:46 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-11 11:08 - 2016-10-25 10:40 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-11 11:08 - 2016-10-25 10:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-11 11:08 - 2016-10-25 10:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2016-11-11 11:08 - 2016-10-25 10:32 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-11 11:08 - 2016-10-25 10:31 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-11 11:08 - 2016-10-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-11 11:08 - 2016-10-25 10:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-11 11:08 - 2016-10-25 10:18 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-11 11:08 - 2016-10-25 10:13 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-11 11:08 - 2016-10-25 10:05 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-11 11:08 - 2016-10-25 10:04 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-11-11 11:08 - 2016-10-25 09:56 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-11-11 11:08 - 2016-10-25 09:55 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-11 11:08 - 2016-10-25 09:53 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-11-11 11:08 - 2016-10-25 09:51 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-11-11 11:08 - 2016-10-25 09:50 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2016-11-11 11:08 - 2016-10-25 09:50 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-11 11:08 - 2016-10-25 09:46 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-11 11:08 - 2016-10-25 09:43 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-11-11 11:08 - 2016-10-25 09:43 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-11 11:08 - 2016-10-25 09:42 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-11 11:08 - 2016-10-25 09:41 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-11-11 11:08 - 2016-10-25 09:41 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-11-11 11:08 - 2016-10-25 09:40 - 02331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2016-11-11 11:08 - 2016-10-25 09:40 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2016-11-11 11:08 - 2016-10-25 09:40 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-11-11 11:08 - 2016-10-25 09:40 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-11 11:08 - 2016-10-25 09:40 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-11 11:08 - 2016-10-25 09:39 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-11-11 11:08 - 2016-10-25 09:39 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-11-11 11:08 - 2016-10-25 09:38 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-11-11 11:08 - 2016-10-25 09:35 - 01434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-11 11:08 - 2016-10-25 09:35 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-11 11:08 - 2016-10-25 09:35 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-11 11:08 - 2016-10-25 09:34 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-11 11:08 - 2016-10-25 09:33 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-11 11:08 - 2016-10-25 09:33 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-11-11 11:08 - 2016-10-25 09:30 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-11-11 11:08 - 2016-10-25 09:29 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-11 11:08 - 2016-10-25 09:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-11 11:08 - 2016-10-25 09:28 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-11 11:08 - 2016-10-25 09:27 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-11-11 11:08 - 2016-10-25 09:27 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2016-11-11 11:08 - 2016-10-25 09:25 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-11 11:08 - 2016-10-25 09:21 - 02054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-11 11:08 - 2016-10-25 09:19 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-11-11 11:08 - 2016-10-25 09:16 - 01965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-11-11 11:08 - 2016-10-25 09:07 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-11 11:08 - 2016-10-25 09:03 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-11-11 11:08 - 2016-10-25 09:01 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-11 11:08 - 2016-10-25 08:59 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-11 11:08 - 2016-10-25 08:57 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-11-11 11:08 - 2016-10-25 08:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-11 11:08 - 2016-10-25 08:53 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-11 11:08 - 2016-10-25 08:49 - 03081216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-11 11:08 - 2016-10-25 08:46 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2016-11-11 11:08 - 2016-10-25 08:41 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-11 11:08 - 2016-10-25 08:35 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2016-11-11 11:08 - 2016-10-25 08:34 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-11 11:08 - 2016-10-25 08:32 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-11 11:08 - 2016-10-25 08:30 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-11 11:08 - 2016-10-25 08:28 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-11 11:08 - 2016-10-25 08:28 - 01186816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2016-11-11 11:08 - 2016-10-25 08:28 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-11 11:08 - 2016-10-25 08:25 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-11 11:08 - 2016-10-25 08:24 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-11 11:08 - 2016-10-25 08:23 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-11-11 11:08 - 2016-10-25 08:19 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-11 11:08 - 2016-10-25 08:17 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-11 11:08 - 2016-10-25 08:13 - 22375936 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-11 11:08 - 2016-10-25 08:05 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-11 11:08 - 2016-10-25 08:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-11 11:08 - 2016-10-25 08:05 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-11 11:08 - 2016-10-25 08:02 - 24610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-11 11:08 - 2016-10-25 08:01 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-11 11:08 - 2016-10-25 07:53 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-11-11 11:08 - 2016-10-25 07:52 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-11-11 11:08 - 2016-10-25 07:48 - 07838208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-11 11:08 - 2016-10-25 07:48 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-11 11:08 - 2016-10-25 07:45 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-11 11:08 - 2016-10-25 07:44 - 19348480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-11 11:08 - 2016-10-25 07:44 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-11 11:08 - 2016-10-25 07:43 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-11 11:08 - 2016-10-25 07:29 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2016-11-11 11:08 - 2016-10-25 07:26 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-11 11:08 - 2016-10-05 07:38 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-11 11:08 - 2016-10-05 07:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-11 11:08 - 2016-10-05 07:10 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-11 11:08 - 2016-10-05 07:05 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-11 11:08 - 2016-10-05 06:48 - 02437120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-11 11:08 - 2016-10-05 06:30 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-11 11:08 - 2016-10-05 06:28 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-11 11:08 - 2016-09-07 08:39 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-11 11:08 - 2016-09-07 08:39 - 00799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-11 11:08 - 2016-09-07 08:39 - 00175120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-11 11:08 - 2016-09-07 08:37 - 00129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-11 11:08 - 2016-09-07 08:27 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-11 11:08 - 2016-09-07 08:26 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-11 11:08 - 2016-09-07 08:26 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-11 11:08 - 2016-09-07 08:26 - 00693592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-11 11:08 - 2016-09-07 08:26 - 00586200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-11-11 11:08 - 2016-09-07 08:26 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-11-11 11:08 - 2016-09-07 08:24 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2016-11-11 11:08 - 2016-09-07 08:22 - 00604920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-11 11:08 - 2016-09-07 08:11 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-11 11:08 - 2016-09-07 07:44 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-11 11:08 - 2016-09-07 07:42 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2016-11-11 11:08 - 2016-09-07 07:42 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2016-11-11 11:08 - 2016-09-07 07:42 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2016-11-11 11:08 - 2016-09-07 07:41 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-11 11:08 - 2016-09-07 07:40 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-11-11 11:08 - 2016-09-07 07:39 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-11 11:08 - 2016-09-07 07:39 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2016-11-11 11:08 - 2016-09-07 07:39 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2016-11-11 11:08 - 2016-09-07 07:38 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-11-11 11:08 - 2016-09-07 07:38 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2016-11-11 11:08 - 2016-09-07 07:38 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-11-11 11:08 - 2016-09-07 07:38 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-11-11 11:08 - 2016-09-07 07:36 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-11-11 11:08 - 2016-09-07 07:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-11 11:08 - 2016-09-07 07:35 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-11 11:08 - 2016-09-07 07:34 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-11 11:08 - 2016-09-07 07:34 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-11 11:08 - 2016-09-07 07:33 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-11-11 11:08 - 2016-09-07 07:33 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-11-11 11:08 - 2016-09-07 07:33 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2016-11-11 11:08 - 2016-09-07 07:32 - 04213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2016-11-11 11:08 - 2016-09-07 07:32 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-11-11 11:08 - 2016-09-07 07:32 - 00643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2016-11-11 11:08 - 2016-09-07 07:32 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2016-11-11 11:08 - 2016-09-07 07:31 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-11-11 11:08 - 2016-09-07 07:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2016-11-11 11:08 - 2016-09-07 07:30 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-11-11 11:08 - 2016-09-07 07:30 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-11 11:08 - 2016-09-07 07:30 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-11-11 11:08 - 2016-09-07 07:30 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-11 11:08 - 2016-09-07 07:29 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-11-11 11:08 - 2016-09-07 07:29 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-11 11:08 - 2016-09-07 07:29 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-11-11 11:08 - 2016-09-07 07:29 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-11-11 11:08 - 2016-09-07 07:28 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-11 11:08 - 2016-09-07 07:28 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-11 11:08 - 2016-09-07 07:28 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-11-11 11:08 - 2016-09-07 07:27 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-11-11 11:08 - 2016-09-07 07:27 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-11 11:08 - 2016-09-07 07:25 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-11-11 11:08 - 2016-09-07 07:25 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-11-11 11:08 - 2016-09-07 07:21 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-11-11 11:08 - 2016-09-07 07:19 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-11-11 11:08 - 2016-09-07 07:19 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-11 11:08 - 2016-09-07 07:19 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-11-11 11:08 - 2016-09-07 07:16 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-11-11 11:08 - 2016-09-07 07:11 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-11-11 11:08 - 2016-08-03 13:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-11 11:08 - 2016-08-03 13:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-11 11:08 - 2016-08-03 13:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-11 11:08 - 2016-08-03 12:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-11 11:08 - 2016-08-03 12:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-11 11:08 - 2016-08-03 07:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-11-11 11:07 - 2016-11-02 18:12 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-11 11:07 - 2016-11-02 18:08 - 00636296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-11 11:07 - 2016-10-25 12:44 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-11 11:07 - 2016-10-25 12:44 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-11 11:07 - 2016-10-25 12:42 - 01098648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-11 11:07 - 2016-10-25 12:42 - 00125280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-11 11:07 - 2016-10-25 12:42 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-11-11 11:07 - 2016-10-25 12:41 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-11 11:07 - 2016-10-25 12:40 - 00384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-11 11:07 - 2016-10-25 12:39 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-11-11 11:07 - 2016-10-25 12:39 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-11-11 11:07 - 2016-10-25 12:26 - 00528736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-11 11:07 - 2016-10-25 12:19 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-11-11 11:07 - 2016-10-25 11:51 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-11 11:07 - 2016-10-25 11:50 - 00439136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-11 11:07 - 2016-10-25 11:39 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-11-11 11:07 - 2016-10-25 11:39 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-11 11:07 - 2016-10-25 11:38 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-11 11:07 - 2016-10-25 11:37 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-11 11:07 - 2016-10-25 11:37 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-11 11:07 - 2016-10-25 11:36 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-11 11:07 - 2016-10-25 11:36 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-11 11:07 - 2016-10-25 11:30 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-11 11:07 - 2016-10-25 11:03 - 02549456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-11 11:07 - 2016-10-25 11:03 - 01988440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-11 11:07 - 2016-10-25 11:02 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-11-11 11:07 - 2016-10-25 11:02 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-11 11:07 - 2016-10-25 11:01 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-11 11:07 - 2016-10-25 11:01 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-11 11:07 - 2016-10-25 10:45 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-11 11:07 - 2016-10-25 10:31 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-11 11:07 - 2016-10-25 10:30 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2016-11-11 11:07 - 2016-10-25 10:24 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-11 11:07 - 2016-10-25 10:21 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-11 11:07 - 2016-10-25 10:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-11 11:07 - 2016-10-25 10:12 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2016-11-11 11:07 - 2016-10-25 10:12 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-11 11:07 - 2016-10-25 10:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-11 11:07 - 2016-10-25 10:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-11-11 11:07 - 2016-10-25 10:08 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-11 11:07 - 2016-10-25 10:02 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-11 11:07 - 2016-10-25 10:02 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-11 11:07 - 2016-10-25 10:02 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-11 11:07 - 2016-10-25 10:00 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-11 11:07 - 2016-10-25 09:59 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-11 11:07 - 2016-10-25 09:59 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-11 11:07 - 2016-10-25 09:58 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-11-11 11:07 - 2016-10-25 09:57 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-11 11:07 - 2016-10-25 09:56 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-11-11 11:07 - 2016-10-25 09:56 - 00317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-11 11:07 - 2016-10-25 09:55 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2016-11-11 11:07 - 2016-10-25 09:55 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-11 11:07 - 2016-10-25 09:54 - 00752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-11-11 11:07 - 2016-10-25 09:53 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-11 11:07 - 2016-10-25 09:53 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-11 11:07 - 2016-10-25 09:53 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-11 11:07 - 2016-10-25 09:53 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-11 11:07 - 2016-10-25 09:52 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-11-11 11:07 - 2016-10-25 09:52 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-11 11:07 - 2016-10-25 09:52 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-11 11:07 - 2016-10-25 09:52 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-11-11 11:07 - 2016-10-25 09:51 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2016-11-11 11:07 - 2016-10-25 09:51 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-11 11:07 - 2016-10-25 09:50 - 00363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2016-11-11 11:07 - 2016-10-25 09:49 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2016-11-11 11:07 - 2016-10-25 09:48 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-11 11:07 - 2016-10-25 09:47 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-11-11 11:07 - 2016-10-25 09:46 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2016-11-11 11:07 - 2016-10-25 09:46 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-11-11 11:07 - 2016-10-25 09:42 - 01813504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-11 11:07 - 2016-10-25 09:42 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-11 11:07 - 2016-10-25 09:41 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-11 11:07 - 2016-10-25 09:40 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-11-11 11:07 - 2016-10-25 09:40 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-11 11:07 - 2016-10-25 09:40 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-11 11:07 - 2016-10-25 09:39 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-11 11:07 - 2016-10-25 09:39 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-11 11:07 - 2016-10-25 09:39 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-11 11:07 - 2016-10-25 09:39 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-11-11 11:07 - 2016-10-25 09:38 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-11 11:07 - 2016-10-25 09:38 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2016-11-11 11:07 - 2016-10-25 09:37 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-11 11:07 - 2016-10-25 09:36 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-11 11:07 - 2016-10-25 09:36 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-11 11:07 - 2016-10-25 09:36 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-11 11:07 - 2016-10-25 09:35 - 01132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-11-11 11:07 - 2016-10-25 09:35 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-11 11:07 - 2016-10-25 09:34 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-11 11:07 - 2016-10-25 09:33 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-11 11:07 - 2016-10-25 09:32 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-11 11:07 - 2016-10-25 09:32 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-11-11 11:07 - 2016-10-25 09:32 - 01053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-11 11:07 - 2016-10-25 09:32 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-11-11 11:07 - 2016-10-25 09:30 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-11-11 11:07 - 2016-10-25 09:29 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-11-11 11:07 - 2016-10-25 09:29 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-11 11:07 - 2016-10-25 09:27 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-11 11:07 - 2016-10-25 09:27 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-11 11:07 - 2016-10-25 09:27 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-11 11:07 - 2016-10-25 09:26 - 02103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-11 11:07 - 2016-10-25 09:25 - 01872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-11 11:07 - 2016-10-25 09:25 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-11-11 11:07 - 2016-10-25 09:24 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-11 11:07 - 2016-10-25 09:24 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-11-11 11:07 - 2016-10-25 09:23 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-11-11 11:07 - 2016-10-25 09:22 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-11-11 11:07 - 2016-10-25 09:21 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-11 11:07 - 2016-10-25 09:20 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-11 11:07 - 2016-10-25 09:17 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-11-11 11:07 - 2016-10-25 09:16 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-11 11:07 - 2016-10-25 09:11 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-11 11:07 - 2016-10-25 09:05 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-11 11:07 - 2016-10-25 09:05 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-11 11:07 - 2016-10-25 09:03 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-11 11:07 - 2016-10-25 09:01 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-11 11:07 - 2016-10-25 08:54 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-11 11:07 - 2016-10-25 08:54 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-11-11 11:07 - 2016-10-25 08:54 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-11 11:07 - 2016-10-25 08:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-11 11:07 - 2016-10-25 08:52 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-11-11 11:07 - 2016-10-25 08:52 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-11 11:07 - 2016-10-25 08:51 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-11 11:07 - 2016-10-25 08:50 - 02874880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-11-11 11:07 - 2016-10-25 08:49 - 01997312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-11-11 11:07 - 2016-10-25 08:48 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-11 11:07 - 2016-10-25 08:47 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-11 11:07 - 2016-10-25 08:46 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-11-11 11:07 - 2016-10-25 08:46 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-11 11:07 - 2016-10-25 08:43 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-11 11:07 - 2016-10-25 08:40 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-11 11:07 - 2016-10-25 08:39 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-11 11:07 - 2016-10-25 08:38 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-11 11:07 - 2016-10-25 08:37 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-11 11:07 - 2016-10-25 08:34 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-11 11:07 - 2016-10-25 08:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-11 11:07 - 2016-10-25 08:28 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-11-11 11:07 - 2016-10-25 08:26 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-11 11:07 - 2016-10-25 08:20 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-11 11:07 - 2016-10-25 08:14 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-11-11 11:07 - 2016-10-25 08:12 - 11544576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-11 11:07 - 2016-10-25 08:10 - 01568256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-11 11:07 - 2016-10-25 08:05 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-11 11:07 - 2016-10-25 08:03 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-11 11:07 - 2016-10-25 08:02 - 06976512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-11 11:07 - 2016-10-25 08:02 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-11 11:07 - 2016-10-25 08:02 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-11-11 11:07 - 2016-10-25 05:19 - 00775336 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-11 11:07 - 2016-10-25 05:19 - 00775336 _____ C:\WINDOWS\system32\locale.nls
2016-11-11 11:07 - 2016-10-25 04:47 - 00445873 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-11 11:07 - 2016-10-05 10:56 - 01644736 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 01242304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 00602304 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 00591040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 00329920 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-11 11:07 - 2016-10-05 10:56 - 00144576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-11 11:07 - 2016-10-05 10:56 - 00085696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-11 11:07 - 2016-10-05 10:01 - 01337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-11-11 11:07 - 2016-10-05 08:37 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-11 11:07 - 2016-10-05 08:31 - 00422240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-11 11:07 - 2016-10-05 08:25 - 00871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-11-11 11:07 - 2016-10-05 07:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-11 11:07 - 2016-10-05 07:17 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-11 11:07 - 2016-10-05 07:15 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-11-11 11:07 - 2016-10-05 07:04 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-11 11:07 - 2016-10-05 07:00 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-11 11:07 - 2016-10-05 07:00 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-11 11:07 - 2016-10-05 06:29 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-11 11:07 - 2016-09-27 05:39 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-11 11:07 - 2016-09-07 08:39 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-11 11:07 - 2016-09-07 08:39 - 00414232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2016-11-11 11:07 - 2016-09-07 08:26 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-11 11:07 - 2016-09-07 08:25 - 01447776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2016-11-11 11:07 - 2016-09-07 08:25 - 01270064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-11 11:07 - 2016-09-07 08:22 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-11-11 11:07 - 2016-09-07 08:22 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-11-11 11:07 - 2016-09-07 08:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-11-11 11:07 - 2016-09-07 08:16 - 02773088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-11 11:07 - 2016-09-07 08:16 - 02144512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-11 11:07 - 2016-09-07 08:15 - 00911640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-11-11 11:07 - 2016-09-07 08:14 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-11 11:07 - 2016-09-07 08:14 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-11 11:07 - 2016-09-07 08:11 - 02187408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-11-11 11:07 - 2016-09-07 07:44 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2016-11-11 11:07 - 2016-09-07 07:44 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-11-11 11:07 - 2016-09-07 07:44 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2016-11-11 11:07 - 2016-09-07 07:44 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2016-11-11 11:07 - 2016-09-07 07:43 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2016-11-11 11:07 - 2016-09-07 07:41 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-11 11:07 - 2016-09-07 07:37 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2016-11-11 11:07 - 2016-09-07 07:37 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-11 11:07 - 2016-09-07 07:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-11 11:07 - 2016-09-07 07:37 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-11-11 11:07 - 2016-09-07 07:37 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 01568768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2016-11-11 11:07 - 2016-09-07 07:36 - 01051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-11 11:07 - 2016-09-07 07:36 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-11-11 11:07 - 2016-09-07 07:35 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-11-11 11:07 - 2016-09-07 07:35 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-11-11 11:07 - 2016-09-07 07:34 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-11-11 11:07 - 2016-09-07 07:34 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2016-11-11 11:07 - 2016-09-07 07:34 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-11 11:07 - 2016-09-07 07:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-11 11:07 - 2016-09-07 07:33 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-11-11 11:07 - 2016-09-07 07:33 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-11 11:07 - 2016-09-07 07:33 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-11 11:07 - 2016-09-07 07:32 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-11 11:07 - 2016-09-07 07:32 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-11-11 11:07 - 2016-09-07 07:31 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-11 11:07 - 2016-09-07 07:31 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 02476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 01558528 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-11-11 11:07 - 2016-09-07 07:30 - 01318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 00904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 00697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-11-11 11:07 - 2016-09-07 07:30 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-11-11 11:07 - 2016-09-07 07:29 - 01487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2016-11-11 11:07 - 2016-09-07 07:29 - 01465344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-11-11 11:07 - 2016-09-07 07:29 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-11-11 11:07 - 2016-09-07 07:29 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-11-11 11:07 - 2016-09-07 07:28 - 01783808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-11-11 11:07 - 2016-09-07 07:28 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-11 11:07 - 2016-09-07 07:28 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-11-11 11:07 - 2016-09-07 07:27 - 01743872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-11 11:07 - 2016-09-07 07:26 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-11 11:07 - 2016-09-07 07:25 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-11-11 11:07 - 2016-09-07 07:23 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-11-11 11:07 - 2016-09-07 07:22 - 03093504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-11 11:07 - 2016-09-07 07:21 - 03046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2016-11-11 11:07 - 2016-09-07 07:20 - 00513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2016-11-11 11:07 - 2016-09-07 07:19 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-11-11 11:07 - 2016-09-07 07:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-11-11 11:07 - 2016-09-07 07:17 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-11 11:07 - 2016-09-07 07:16 - 01676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2016-11-11 11:07 - 2016-09-07 07:12 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-11-11 11:07 - 2016-09-07 07:10 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-11-11 11:07 - 2016-09-07 07:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-11-11 11:07 - 2016-09-07 07:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-11 11:07 - 2016-09-07 07:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2016-11-11 11:07 - 2016-09-07 07:09 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-11 11:07 - 2016-08-03 12:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-11-11 11:07 - 2016-08-03 12:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-11 11:07 - 2016-08-03 12:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-11 11:07 - 2016-08-03 12:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-11 11:07 - 2016-08-03 12:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-11 11:07 - 2016-08-03 12:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-11-11 11:07 - 2016-06-18 07:55 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-11 11:07 - 2016-06-18 07:51 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-11 11:06 - 2016-11-02 17:25 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-11 11:06 - 2016-10-25 11:38 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-11 11:06 - 2016-10-25 11:37 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-11-11 11:06 - 2016-10-25 11:34 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-11-11 11:06 - 2016-10-25 11:34 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-11-11 11:06 - 2016-10-25 11:34 - 00106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-11-11 11:06 - 2016-10-25 11:33 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-11 11:06 - 2016-10-25 11:01 - 00324448 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-11 11:06 - 2016-10-25 10:46 - 00376528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-11 11:06 - 2016-10-25 10:32 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2016-11-11 11:06 - 2016-10-25 10:31 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-11-11 11:06 - 2016-10-25 10:21 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-11 11:06 - 2016-10-25 10:19 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2016-11-11 11:06 - 2016-10-25 10:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2016-11-11 11:06 - 2016-10-25 10:13 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-11 11:06 - 2016-10-25 10:12 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2016-11-11 11:06 - 2016-10-25 10:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-11 11:06 - 2016-10-25 10:09 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-11-11 11:06 - 2016-10-25 10:05 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-11-11 11:06 - 2016-10-25 09:59 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2016-11-11 11:06 - 2016-10-25 09:59 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2016-11-11 11:06 - 2016-10-25 09:59 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2016-11-11 11:06 - 2016-10-25 09:58 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2016-11-11 11:06 - 2016-10-25 09:58 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-11 11:06 - 2016-10-25 09:57 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-11 11:06 - 2016-10-25 09:56 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2016-11-11 11:06 - 2016-10-25 09:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-11 11:06 - 2016-10-25 09:55 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-11 11:06 - 2016-10-25 09:54 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-11-11 11:06 - 2016-10-25 09:52 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-11 11:06 - 2016-10-25 09:52 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-11-11 11:06 - 2016-10-25 09:51 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-11-11 11:06 - 2016-10-25 09:51 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-11-11 11:06 - 2016-10-25 09:51 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2016-11-11 11:06 - 2016-10-25 09:50 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-11-11 11:06 - 2016-10-25 09:50 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2016-11-11 11:06 - 2016-10-25 09:47 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-11 11:06 - 2016-10-25 09:47 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-11 11:06 - 2016-10-25 09:47 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2016-11-11 11:06 - 2016-10-25 09:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-11 11:06 - 2016-10-25 09:44 - 01479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-11-11 11:06 - 2016-10-25 09:44 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2016-11-11 11:06 - 2016-10-25 09:43 - 00440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2016-11-11 11:06 - 2016-10-25 09:42 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-11 11:06 - 2016-10-25 09:41 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-11 11:06 - 2016-10-25 09:41 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-11 11:06 - 2016-10-25 09:41 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-11-11 11:06 - 2016-10-25 09:38 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-11 11:06 - 2016-10-25 09:38 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-11 11:06 - 2016-10-25 09:37 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-11 11:06 - 2016-10-25 09:34 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-11 11:06 - 2016-10-25 09:32 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-11-11 11:06 - 2016-10-25 09:32 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-11-11 11:06 - 2016-10-25 09:32 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2016-11-11 11:06 - 2016-10-25 09:24 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-11 11:06 - 2016-10-25 09:22 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-11-11 11:06 - 2016-10-25 09:21 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-11 11:06 - 2016-10-25 09:21 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-11-11 11:06 - 2016-10-25 09:16 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-11 11:06 - 2016-10-25 09:09 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-11 11:06 - 2016-10-25 09:03 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-11-11 11:06 - 2016-10-25 09:01 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-11-11 11:06 - 2016-10-25 08:52 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-11-11 11:06 - 2016-10-25 08:35 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2016-11-11 11:06 - 2016-10-25 08:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-11 11:06 - 2016-10-25 08:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-11 11:06 - 2016-10-25 07:44 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-11-11 11:06 - 2016-10-25 07:43 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-11 11:06 - 2016-10-05 10:19 - 00129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-11 11:06 - 2016-10-05 07:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-11 11:06 - 2016-10-05 07:49 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-11-11 11:06 - 2016-10-05 07:47 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-11-11 11:06 - 2016-10-05 07:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-11 11:06 - 2016-10-05 07:34 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-11 11:06 - 2016-10-05 07:30 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-11 11:06 - 2016-10-05 07:23 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-11-11 11:06 - 2016-09-07 08:39 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-11-11 11:06 - 2016-09-07 08:39 - 00705576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-11-11 11:06 - 2016-09-07 08:39 - 00337328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-11 11:06 - 2016-09-07 08:35 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-11-11 11:06 - 2016-09-07 08:26 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-11 11:06 - 2016-09-07 08:22 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-11-11 11:06 - 2016-09-07 08:15 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-11-11 11:06 - 2016-09-07 07:46 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2016-11-11 11:06 - 2016-09-07 07:45 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2016-11-11 11:06 - 2016-09-07 07:44 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-11-11 11:06 - 2016-09-07 07:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll
2016-11-11 11:06 - 2016-09-07 07:42 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-11-11 11:06 - 2016-09-07 07:41 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2016-11-11 11:06 - 2016-09-07 07:41 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2016-11-11 11:06 - 2016-09-07 07:41 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-11 11:06 - 2016-09-07 07:40 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-11-11 11:06 - 2016-09-07 07:40 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-11 11:06 - 2016-09-07 07:40 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-11 11:06 - 2016-09-07 07:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2016-11-11 11:06 - 2016-09-07 07:38 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-11 11:06 - 2016-09-07 07:38 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-11-11 11:06 - 2016-09-07 07:37 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-11-11 11:06 - 2016-09-07 07:37 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-11-11 11:06 - 2016-09-07 07:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-11-11 11:06 - 2016-09-07 07:36 - 00457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2016-11-11 11:06 - 2016-09-07 07:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-11 11:06 - 2016-09-07 07:36 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-11-11 11:06 - 2016-09-07 07:36 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-11 11:06 - 2016-09-07 07:35 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-11-11 11:06 - 2016-09-07 07:35 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-11-11 11:06 - 2016-09-07 07:35 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-11-11 11:06 - 2016-09-07 07:34 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-11 11:06 - 2016-09-07 07:34 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-11 11:06 - 2016-09-07 07:33 - 00904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2016-11-11 11:06 - 2016-09-07 07:33 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-11-11 11:06 - 2016-09-07 07:32 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2016-11-11 11:06 - 2016-09-07 07:31 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-11-11 11:06 - 2016-09-07 07:31 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-11 11:06 - 2016-09-07 07:31 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppinst.dll
2016-11-11 11:06 - 2016-09-07 07:31 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-11 11:06 - 2016-09-07 07:30 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-11-11 11:06 - 2016-09-07 07:30 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-11-11 11:06 - 2016-09-07 07:30 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-11-11 11:06 - 2016-09-07 07:27 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-11 11:06 - 2016-09-07 07:27 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-11-11 11:06 - 2016-09-07 07:22 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-11-11 11:06 - 2016-09-07 07:22 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-11-11 11:06 - 2016-09-07 07:20 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-11 11:06 - 2016-09-07 07:16 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-11 11:06 - 2016-08-03 12:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-11-11 10:58 - 2016-11-11 10:59 - 00002214 _____ C:\RannohDecryptor.1.9.3.0_11.11.2016_10.58.29_log.txt
2016-11-11 10:46 - 2016-11-11 10:50 - 00002214 _____ C:\RannohDecryptor.1.9.3.0_11.11.2016_10.46.26_log.txt
2016-11-11 10:45 - 2016-11-11 10:46 - 00002216 _____ C:\WildfireDecryptor.1.0.0.2_11.11.2016_10.45.45_log.txt
2016-11-11 10:44 - 2016-11-11 10:45 - 00002144 _____ C:\ShadeDecryptor.1.1.0.2_11.11.2016_10.44.35_log.txt
2016-11-11 10:41 - 2016-11-11 10:42 - 00002212 _____ C:\ScatterDecryptor.1.0.0.0_11.11.2016_10.41.42_log.txt
2016-11-11 10:41 - 2016-11-11 10:41 - 00000000 ____D C:\Users\Валя\AppData\Roaming\gnupg
2016-11-11 10:40 - 2016-11-11 10:41 - 00002214 _____ C:\RannohDecryptor.1.9.3.0_11.11.2016_10.40.29_log.txt
2016-11-11 10:39 - 2016-11-11 10:40 - 00002456 _____ C:\RakhniDecryptor.1.17.6.0_11.11.2016_10.39.51_log.txt
2016-11-11 10:37 - 2016-11-11 10:39 - 00608382 _____ C:\XoristDecryptor.2.5.1.0_11.11.2016_10.37.59_log.txt
2016-11-11 10:32 - 2016-11-11 13:05 - 00000000 ____D C:\11
2016-11-11 10:30 - 2016-11-11 10:34 - 00004174 _____ C:\RectorDecryptor.2.7.0.0_11.11.2016_10.30.28_log.txt
2016-11-11 10:29 - 2016-11-11 10:30 - 00002248 _____ C:\WildfireDecryptor.1.0.0.2_11.11.2016_10.29.30_log.txt
2016-11-11 09:32 - 2016-11-11 09:32 - 00153216 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2016-11-11 09:13 - 2016-11-11 09:21 - 00002146 _____ C:\Users\Валя\AppData\Roaming\ISHTAR.DATA
2016-11-11 09:13 - 2016-11-11 09:13 - 00001830 _____ C:\Users\Валя\AppData\Roaming\README-ISHTAR.txt
2016-11-11 09:11 - 2016-11-11 09:11 - 01182752 _____ C:\Users\Валя\AppData\Roaming\P2S8MW.tmp
2016-11-09 23:13 - 2016-11-09 23:13 - 00000000 ____D C:\Users\Валя\Desktop\Жмайлова,6
2016-11-09 13:18 - 2016-11-11 09:16 - 00000000 ____D C:\Users\Валя\Desktop\Ольгинская
2016-11-08 19:40 - 2016-11-11 09:14 - 00488855 _____ C:\Users\Валя\Desktop\ISHTAR-СТ Локомотив.zip
2016-11-08 19:39 - 2016-11-11 09:14 - 01029138 _____ C:\Users\Валя\Desktop\ISHTAR-Югтехмонтаж.zip
2016-11-03 13:43 - 2016-11-11 09:14 - 00241429 _____ C:\Users\Валя\Desktop\ISHTAR-2 треугольника.pdf
2016-11-02 13:36 - 2016-11-11 09:15 - 00000000 ____D C:\Users\Валя\Desktop\Лене для просчета ЗЖМ
2016-11-01 23:06 - 2016-11-01 23:06 - 39862848 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 02393176 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 01816720 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 01814064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00242160 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00205360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00183984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00182960 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00055248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 29101576 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 19861512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 15488928 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 13483208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 11742216 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 08732168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 05688840 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 05262856 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04928528 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04363784 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04270680 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04239704 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 03971592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01858640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01590792 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01178632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00968168 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00964592 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00705032 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00536560 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00466920 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00448496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00439304 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00416264 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00390152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00388616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00350184 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00318472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00312304 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00301552 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00297168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00273416 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00268784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00266248 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00237040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00225288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00223248 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00212488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4531.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00193032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00181840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00174088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00111624 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00103432 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00100872 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00095240 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00084488 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00052744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-10-26 21:52 - 2016-11-11 09:15 - 00000000 ____D C:\Users\Валя\Desktop\2-я Краснодарская,79 Ермолова
2016-10-26 14:23 - 2016-11-11 09:15 - 00000000 ____D C:\Users\Валя\Desktop\ЗАХАРОВ
2016-10-14 17:21 - 2016-11-11 09:21 - 00000000 ____D C:\Users\Валя\Desktop\Юфимцева
2016-10-14 12:38 - 2016-11-11 09:21 - 00000000 ____D C:\Users\Валя\Desktop\темерницкий
2016-10-06 19:42 - 2016-10-06 19:42 - 00004862 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-10-06 19:41 - 2016-10-06 19:41 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin
2016-10-06 19:41 - 2016-10-06 19:41 - 00831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-10-05 17:12 - 2016-11-11 09:16 - 00000000 ____D C:\Users\Валя\Desktop\СКВО
2016-09-27 18:04 - 2016-11-11 09:14 - 00012864 _____ C:\Users\Валя\Desktop\ISHTAR-торг. ц пят кущевская.xlsx
2016-09-21 15:37 - 2016-11-11 09:15 - 00000000 ____D C:\Users\Валя\Desktop\Витас арки церковь
2016-09-20 16:06 - 2016-11-11 09:21 - 00000000 ____D C:\Users\Валя\Desktop\форматная
2016-09-14 15:28 - 2016-11-11 09:15 - 00000000 ____D C:\Users\Валя\Desktop\Лена рехау
2016-09-07 20:04 - 2016-11-11 09:16 - 00000000 ____D C:\Users\Валя\Desktop\РЫБА
2016-09-05 15:30 - 2016-11-11 09:14 - 00247563 _____ C:\Users\Валя\Desktop\ISHTAR-Багаевка окна-размеры.xls
2016-09-05 15:30 - 2016-11-11 09:14 - 00038667 _____ C:\Users\Валя\Desktop\ISHTAR-Багаевка двери-размеры.xls
2016-08-24 09:56 - 2016-08-24 09:56 - 00000000 ____D C:\Users\Валя\AppData\LocalLow\KMPlayer
2016-08-24 09:27 - 2016-11-11 08:29 - 00004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8B154D00-6A5D-4E98-9C6B-EE6E6769A4F7}
2016-08-23 19:06 - 2016-11-11 09:21 - 00000000 ____D C:\Users\Валя\Desktop\ст.Старочеркасская
2016-08-13 10:07 - 2016-11-11 09:16 - 00000000 ____D C:\Users\Валя\Desktop\Самарское технадзор

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-11 13:10 - 2015-08-10 14:29 - 00000896 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-11 13:05 - 2016-03-15 22:28 - 00003808 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2016-11-11 13:05 - 2015-10-30 10:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-11 13:03 - 2015-10-30 10:21 - 00000000 ____D C:\WINDOWS\INF
2016-11-11 13:03 - 2015-08-07 22:16 - 00000000 ____D C:\Program Files (x86)\Opera
2016-11-11 13:02 - 2016-04-27 08:10 - 00807810 _____ C:\WINDOWS\system32\perfh019.dat
2016-11-11 13:02 - 2016-04-27 08:10 - 00159346 _____ C:\WINDOWS\system32\perfc019.dat
2016-11-11 13:02 - 2015-08-08 02:15 - 01841708 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-11 12:59 - 2016-07-20 03:58 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-11 12:59 - 2016-04-27 08:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-11 12:59 - 2016-03-25 00:28 - 00000000 __SHD C:\Users\Валя\IntelGraphicsProfiles
2016-11-11 12:59 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-11 12:59 - 2015-08-10 13:16 - 00000984 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 12:56 - 2016-04-27 08:34 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-11 12:56 - 2016-04-26 22:31 - 00418552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-11 12:56 - 2015-08-08 12:27 - 00000000 ____D C:\Users\Все пользователи\VMware
2016-11-11 12:56 - 2015-08-08 12:27 - 00000000 ____D C:\ProgramData\VMware
2016-11-11 12:56 - 2014-12-18 21:21 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-11-11 12:13 - 2015-10-30 09:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-11 12:09 - 2015-10-30 10:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-11 12:09 - 2015-10-30 09:31 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-11-11 12:09 - 2015-10-30 09:31 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-11-11 12:09 - 2015-10-30 09:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-11 12:09 - 2015-10-30 09:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-11 12:04 - 2016-03-25 00:45 - 00000000 ____D C:\Users\Валя\AppData\Local\ClassicShell
2016-11-11 12:03 - 2015-10-30 10:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-11 11:37 - 2015-08-10 13:16 - 00000988 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 11:30 - 2015-08-13 17:17 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 11:23 - 2015-08-13 17:17 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 11:21 - 2016-07-20 03:58 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-11 11:18 - 2016-04-27 08:24 - 00000000 ____D C:\WINDOWS\ShellNew
2016-11-11 11:17 - 2016-07-20 03:55 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-11 11:17 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-11-11 11:03 - 2015-08-10 12:49 - 00000000 ____D C:\Program Files (x86)\LoviOtvet
2016-11-11 10:48 - 2016-03-25 00:28 - 00000000 ____D C:\Users\Валя\AppData\Local\Packages
2016-11-11 10:42 - 2015-10-30 10:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 10:42 - 2015-10-30 10:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 10:42 - 2015-10-30 10:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-11-11 10:37 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Макс
2016-11-11 09:34 - 2015-08-08 13:01 - 00000000 ____D C:\Program Files\ESET
2016-11-11 09:32 - 2015-11-27 13:03 - 00061568 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwlwf.sys
2016-11-11 09:32 - 2015-03-10 17:24 - 00262792 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2016-11-11 09:32 - 2015-03-10 17:24 - 00208520 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2016-11-11 09:32 - 2015-03-10 17:24 - 00197248 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2016-11-11 09:32 - 2015-03-10 17:24 - 00084616 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2016-11-11 09:27 - 2015-08-07 22:17 - 00003980 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1438975025
2016-11-11 09:27 - 2015-08-07 22:17 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-11-11 09:21 - 2016-07-21 09:54 - 00000000 ____D C:\Users\Валя\Desktop\т.Зина
2016-11-11 09:21 - 2016-07-19 16:37 - 00000000 ____D C:\Users\Валя\Downloads\VueScanPro_9.4.57
2016-11-11 09:21 - 2016-07-19 15:09 - 00000000 ____D C:\Users\Валя\Downloads\VueScan_Pro_v9.5.50
2016-11-11 09:21 - 2016-07-19 12:26 - 00000000 ____D C:\Users\Валя\Desktop\Юг-профиль
2016-11-11 09:21 - 2016-07-19 12:26 - 00000000 ____D C:\Users\Валя\Desktop\Эверест
2016-11-11 09:21 - 2016-07-19 12:23 - 00000000 ____D C:\Users\Валя\Desktop\Фотки
2016-11-11 09:21 - 2016-07-19 12:23 - 00000000 ____D C:\Users\Валя\Desktop\ТСЖ
2016-11-11 09:21 - 2016-07-19 12:23 - 00000000 ____D C:\Users\Валя\Desktop\Трофимов
2016-11-11 09:21 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Суд
2016-11-11 09:21 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Сравнение цен 2.10.15
2016-11-11 09:21 - 2015-10-13 10:51 - 00000000 ____D C:\Users\Валя\Desktop\сохранение2
2016-11-11 09:19 - 2014-12-18 21:31 - 00000000 ____D C:\Users\Все пользователи\Energy Manager
2016-11-11 09:19 - 2014-12-18 21:31 - 00000000 ____D C:\ProgramData\Energy Manager
2016-11-11 09:17 - 2015-08-10 14:29 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-11-11 09:16 - 2016-07-19 12:54 - 00000251 _____ C:\Users\Public\Documents\KYGA.dat
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Слайдорс
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Скайгласс
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Ситилюкс
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\СЕРТИФИКАТЫ
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Сельмаш
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Реквизиты
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Просчеты Магнат
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Предложения других фирм
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Пласт сервис
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Планета
2016-11-11 09:16 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Макеты в газетах
2016-11-11 09:15 - 2016-08-10 11:03 - 00000000 ____D C:\Users\Валя\Desktop\Дом тел. счета
2016-11-11 09:15 - 2016-07-28 21:57 - 00000000 ____D C:\Users\Валя\Desktop\Курганная дом фотки
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Ламинация Радуга
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Ламинация Батайск
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Костя
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Копии уч.документ
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Ком.предлодения комплектующие
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Исток
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Евроокна
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Документы безнал
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Договора Роллставни
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Договора
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Димакс
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Дим Геленджик
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Дельтапласт
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Гермес
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Всячина
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Веста
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Бланк заказа
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Асаржи ПС
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\Аллюминий
2016-11-11 09:15 - 2016-07-19 12:22 - 00000000 ____D C:\Users\Валя\Desktop\2-я Баррикадная
2016-11-11 09:14 - 2016-07-20 11:51 - 00700233 _____ C:\Users\Валя\Documents\ISHTAR-403.pdf
2016-11-11 09:14 - 2016-07-19 17:50 - 00740210 _____ C:\Users\Валя\Documents\ISHTAR-scanlite402.jpg.pdf
2016-11-11 09:14 - 2016-07-19 16:28 - 17578958 _____ C:\Users\Валя\Downloads\ISHTAR-ScanPapyrus.16.09.rar
2016-11-11 09:14 - 2016-07-19 15:30 - 17396453 _____ C:\Users\Валя\Downloads\ISHTAR-VueScanPro_9.4.57.zip
2016-11-11 09:14 - 2016-07-19 15:17 - 17680187 _____ C:\Users\Валя\Downloads\ISHTAR-VueScan.Pro.9.5.rar
2016-11-11 09:14 - 2016-07-19 15:09 - 19103423 _____ C:\Users\Валя\Downloads\ISHTAR-VueScan_Pro_v9.5.50.rar
2016-11-11 09:14 - 2016-07-19 12:26 - 18531894 _____ C:\Users\Валя\Desktop\ISHTAR-Сочи.zip
2016-11-11 09:14 - 2016-07-19 12:26 - 02942064 _____ C:\Users\Валя\Desktop\ISHTAR-Хачересов.zip
2016-11-11 09:14 - 2016-07-19 12:26 - 01932634 _____ C:\Users\Валя\Desktop\ISHTAR-Военная часть.zip
2016-11-11 09:14 - 2016-07-19 12:26 - 00044811 _____ C:\Users\Валя\Desktop\ISHTAR-Прайс 12.04.2011.xls
2016-11-11 09:14 - 2016-07-19 11:16 - 00200265 _____ C:\Users\Валя\Desktop\ISHTAR-Комплектующие.txt
2016-11-11 09:14 - 2016-03-25 23:40 - 04628238 _____ C:\Users\Валя\Downloads\ISHTAR-FS-1016MFP_x64_..._Vista_WHQL.zip
2016-11-11 09:14 - 2015-08-13 20:37 - 03248735 _____ C:\Users\Валя\Desktop\ISHTAR-Swnd7.pdf
2016-11-11 09:13 - 2016-07-22 16:58 - 00000000 ____D C:\Магнат
2016-11-11 09:13 - 2016-07-19 16:33 - 00000000 ____D C:\скан
2016-11-11 09:13 - 2015-08-13 22:56 - 00000000 ____D C:\full key usb
2016-11-11 09:13 - 2015-08-13 20:51 - 00000000 ____D C:\base
2016-11-11 09:13 - 2015-08-08 16:27 - 00000000 ____D C:\AdwCleaner
2016-11-11 09:13 - 2015-08-08 15:41 - 00000000 ____D C:\scanpro
2016-11-09 12:10 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-09 12:10 - 2015-10-30 10:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-09 12:10 - 2015-08-10 14:29 - 00004026 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-11-06 08:56 - 2016-03-14 21:53 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-01 23:06 - 2015-12-19 01:10 - 34823872 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-01 23:06 - 2015-12-19 01:10 - 12680800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-01 23:06 - 2015-07-17 23:34 - 38903912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-01 23:06 - 2015-07-17 23:34 - 33479360 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-01 23:06 - 2015-07-17 23:34 - 06696832 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-01 23:06 - 2015-07-17 23:34 - 05140472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-01 23:05 - 2016-07-20 03:59 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-01 23:05 - 2016-07-20 03:59 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-01 23:05 - 2015-12-19 01:08 - 00254984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-01 23:05 - 2015-07-17 23:36 - 07966192 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-01 23:05 - 2015-07-17 23:35 - 00401896 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-01 23:05 - 2015-07-17 23:35 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-01 23:05 - 2015-07-17 23:35 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-01 23:05 - 2015-07-17 23:34 - 15837984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-01 23:05 - 2015-07-17 23:28 - 02142224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-01 23:05 - 2015-07-17 23:28 - 00756744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-01 23:05 - 2015-07-17 23:28 - 00398856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-10-29 00:48 - 2015-10-30 10:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:48 - 2015-10-30 10:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-26 21:43 - 2016-07-19 12:23 - 00000000 ____D C:\Users\Валя\Desktop\Суперокна5 предложения
2016-10-25 11:58 - 2016-04-27 08:36 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-10-25 04:39 - 2015-08-10 13:16 - 00002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-19 22:25 - 2016-03-25 01:22 - 00000000 ____D C:\Users\Валя\AppData\Roaming\VMware
2016-10-19 22:25 - 2016-03-25 01:22 - 00000000 ____D C:\Users\Валя\AppData\Local\VMware
2016-10-19 22:25 - 2015-08-08 14:11 - 00000000 ____D C:\xp
2016-10-13 11:23 - 2015-09-11 16:37 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2015-10-13 10:52 - 2015-10-13 10:52 - 3782141 _____ () C:\Program Files (x86)\FensterWelt.rar
2016-03-15 23:10 - 2016-03-15 23:10 - 52256966 _____ () C:\Program Files (x86)\Kct.rar
2016-11-11 09:13 - 2016-11-11 09:21 - 0002146 _____ () C:\Users\Валя\AppData\Roaming\ISHTAR.DATA
2016-11-11 09:11 - 2016-11-11 09:11 - 1182752 _____ () C:\Users\Валя\AppData\Roaming\P2S8MW.tmp
2016-11-11 09:13 - 2016-11-11 09:13 - 0001830 _____ () C:\Users\Валя\AppData\Roaming\README-ISHTAR.txt
2016-07-20 03:57 - 2016-07-20 03:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Валя\AppData\Local\Temp\mcse32_00.dll
C:\Users\Валя\AppData\Local\Temp\mcse64_00.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

„ЁбЇҐвзҐа § Јаг§ЄЁ ¬ЁЄа®Їа®Ја ¬¬
---------------------
Ё¤ҐвЁдЁЄ в®а {fwbootmgr}
displayorder {bootmgr}
{d470cbcd-873d-11e4-a40c-806e6f6e6963}
{9429b92f-3d56-11e5-825f-806e6f6e6963}
{d470cbcb-873d-11e4-a40c-806e6f6e6963}
{d470cbcc-873d-11e4-a40c-806e6f6e6963}
timeout 0

„ЁбЇҐвзҐа § Јаг§ЄЁ Windows
--------------------
Ё¤ҐвЁдЁЄ в®а {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale ru-RU
inherit {globalsettings}
default {current}
resumeobject {85283d2c-873e-11e4-a40c-f9b1fc5654ca}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {9429b92f-3d56-11e5-825f-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\LrsBootMgr.efi
description Lenovo Recovery System

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {9429b930-3d56-11e5-825f-806e6f6e6963}
description EFI Network 0 for IPv4 (68-F7-28-49-2C-B2)

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {d470cbcb-873d-11e4-a40c-806e6f6e6963}
description EFI USB Device

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {d470cbcc-873d-11e4-a40c-806e6f6e6963}
description EFI DVD/CDROM

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {d470cbcd-873d-11e4-a40c-806e6f6e6963}
description EFI Network

ЏаЁ«®¦ҐЁҐ ¬ЁЄа®Їа®Ја ¬¬л (101fffff)
-------------------------------
Ё¤ҐвЁдЁЄ в®а {d470cbcf-873d-11e4-a40c-806e6f6e6963}
description EFI Network 0 for IPv6 (68-F7-28-49-2C-B2)

‡ Јаг§Є Windows
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d24-873e-11e4-a40c-f9b1fc5654ca}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{85283d25-873e-11e4-a40c-f9b1fc5654ca}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale ru-RU
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{85283d25-873e-11e4-a40c-f9b1fc5654ca}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

‡ Јаг§Є Windows
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d29-873e-11e4-a40c-f9b1fc5654ca}
device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{85283d2a-873e-11e4-a40c-f9b1fc5654ca}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale ru-RU
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride Recovery
osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{85283d2a-873e-11e4-a40c-f9b1fc5654ca}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

‡ Јаг§Є Windows
-------------------
Ё¤ҐвЁдЁЄ в®а {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale ru-RU
inherit {bootloadersettings}
recoverysequence {85283d2e-873e-11e4-a40c-f9b1fc5654ca}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {85283d2c-873e-11e4-a40c-f9b1fc5654ca}
nx OptIn
bootmenupolicy Standard

‡ Јаг§Є Windows
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d2e-873e-11e4-a40c-f9b1fc5654ca}
device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{85283d2f-873e-11e4-a40c-f9b1fc5654ca}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale ru-RU
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride Recovery
osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{85283d2f-873e-11e4-a40c-f9b1fc5654ca}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

‚ле®¤ Ё§ аҐ¦Ё¬ ЈЁЎҐа жЁЁ
--------------------------
Ё¤ҐвЁдЁЄ в®а {85283d22-873e-11e4-a40c-f9b1fc5654ca}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale ru-RU
inherit {resumeloadersettings}
recoverysequence {85283d24-873e-11e4-a40c-f9b1fc5654ca}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

‚ле®¤ Ё§ аҐ¦Ё¬ ЈЁЎҐа жЁЁ
--------------------------
Ё¤ҐвЁдЁЄ в®а {85283d27-873e-11e4-a40c-f9b1fc5654ca}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale ru-RU
inherit {resumeloadersettings}
recoverysequence {85283d29-873e-11e4-a40c-f9b1fc5654ca}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

‚ле®¤ Ё§ аҐ¦Ё¬ ЈЁЎҐа жЁЁ
--------------------------
Ё¤ҐвЁдЁЄ в®а {85283d2c-873e-11e4-a40c-f9b1fc5654ca}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale ru-RU
inherit {resumeloadersettings}
recoverysequence {85283d2e-873e-11e4-a40c-f9b1fc5654ca}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Џа®ўҐаЄ Ї ¬пвЁ Windows
---------------------
Ё¤ҐвЁдЁЄ в®а {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description „Ё Ј®бвЁЄ Ї ¬пвЁ
locale ru-RU
inherit {globalsettings}
badmemoryaccess Yes

Џ а ¬Ґвал EMS
-------------
Ё¤ҐвЁдЁЄ в®а {emssettings}
bootems No

Џ а ¬Ґвал ®в« ¤зЁЄ
-------------------
Ё¤ҐвЁдЁЄ в®а {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

„ҐдҐЄвл Ћ‡“
-----------
Ё¤ҐвЁдЁЄ в®а {badmemory}

ѓ«®Ў «млҐ Ї а ¬Ґвал
--------------------
Ё¤ҐвЁдЁЄ в®а {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Џ а ¬Ґвал § Јаг§зЁЄ
--------------------
Ё¤ҐвЁдЁЄ в®а {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Џ а ¬Ґвал ЈЁЇҐаўЁ§®а
-------------------
Ё¤ҐвЁдЁЄ в®а {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Џ а ¬Ґвал § Јаг§зЁЄ ў®ббв ®ў«ҐЁп
-----------------------------------
Ё¤ҐвЁдЁЄ в®а {resumeloadersettings}
inherit {globalsettings}

Џ а ¬Ґвал гбва®©бвў
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d25-873e-11e4-a40c-f9b1fc5654ca}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi

Џ а ¬Ґвал гбва®©бвў
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d26-873e-11e4-a40c-f9b1fc5654ca}
description Windows Setup
ramdisksdidevice partition=C:
ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Џ а ¬Ґвал гбва®©бвў
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d2a-873e-11e4-a40c-f9b1fc5654ca}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume7
ramdisksdipath \Recovery\WindowsRE\boot.sdi

Џ а ¬Ґвал гбва®©бвў
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d2b-873e-11e4-a40c-f9b1fc5654ca}
description Windows Setup
ramdisksdidevice partition=C:
ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Џ а ¬Ґвал гбва®©бвў
-------------------
Ё¤ҐвЁдЁЄ в®а {85283d2f-873e-11e4-a40c-f9b1fc5654ca}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume7
ramdisksdipath \Recovery\WindowsRE\boot.sdi

Ќ бва®©Є Ї а ¬Ґва®ў Ramdisk
---------------------
Ё¤ҐвЁдЁЄ в®а {ramdiskoptions}
description Ramdisk options
ramdisksdidevice boot
ramdisksdipath \boot\boot.sdi

LastRegBack: 2016-11-04 15:00

==================== End of FRST.txt ============================

addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by Валя (11-11-2016 13:12:55)
Running from C:\Users\Валя\Desktop
Windows 10 Home Single Language Version 1511 (X64) (2016-07-20 01:25:27)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

DefaultAccount (S-1-5-21-1195179172-2301030070-928400072-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1195179172-2301030070-928400072-1004 - Limited - Enabled)
UpdatusUser (S-1-5-21-1195179172-2301030070-928400072-1001 - Limited - Enabled) => C:\Users\UpdatusUser
Администратор (S-1-5-21-1195179172-2301030070-928400072-500 - Administrator - Disabled)
Валя (S-1-5-21-1195179172-2301030070-928400072-1006 - Administrator - Enabled) => C:\Users\Валя
Гость (S-1-5-21-1195179172-2301030070-928400072-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security 9.0.408.1 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 9.0.408.1 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Персональный файервол ESET (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
Adobe Acrobat Reader DC - Russian (HKLM-x32\...\{AC76BA86-7AD7-1049-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF01}) (Version: 16.0 - Adobe Systems Incorporated)
AIMP3, версия 3.6.0.1495 (HKLM-x32\...\AIMP3_is1) (Version: 3.6.0.1495 - AIMP DevTeam)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
CGS17_Setup_x64 (Version: 17.5 - Corel Corporation) Hidden
Classic Shell (HKLM\...\{D4B3454F-7529-4F5F-851D-2C36933F7D64}) (Version: 4.2.5 - IvoSoft)
Cloud Mail.Ru (HKLM-x32\...\{776AF05B-784A-416F-B14C-31A1FBAF8B19}_is1) (Version: 15.06.0175 - Mail.Ru Group)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.55.62 - Conexant)
Corel Graphics - Windows Shell Extension (HKLM\...\_{DF6D3D0B-BE1E-4186-9EEE-03474730E72F}) (Version: 17.5.0.907 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.5.907 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.5.907 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - RU (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.5 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.5.0.907 - Corel Corporation)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Download Master 6.5.1.1471 (HKLM-x32\...\Download Master_is1) (Version: 6.5.1.1471 - l-rePack®)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo)
Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden
ESET Smart Security (HKLM\...\{97F3D28F-DF0C-4154-B5A6-D0D8FA1FEA2F}) (Version: 9.0.349.14 - ESET, spol. s r.o.)
FastStone Image Viewer 5.3 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.3 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
Intel® C++ Redistributables for Windows* on Intel® 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
K-Lite Mega Codec Pack 11.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.0 - )
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.9500 - Broadcom Corporation)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.)
Lenovo Photo Master (x32 Version: 1.0.1823.01 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.201 - Lenovo)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office профессиональный плюс 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 ru) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 ru)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
Nero2015-BROM-Express-16.0.24000_Nero12-CoverDesigner_WaveEditor (HKLM-x32\...\Nero2015-BROM-Express-16.0.24000_Nero12-CoverDesigner_WaveEditor) (Version: - )
NVIDIA GeForce Experience 1.7 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7 - NVIDIA Corporation)
NVIDIA Графический драйвер 332.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.33 - NVIDIA Corporation)
NVIDIA Системное программное обеспечение PhysX 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation)
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Opera Stable 41.0.2353.56 (HKLM-x32\...\Opera 41.0.2353.56) (Version: 41.0.2353.56 - Opera Software)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
Skype™ 7.6 (HKLM-x32\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 7.6.103 - Skype Technologies S.A.)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
TeamViewer 10.0.43879 (HKLM-x32\...\TeamViewer_is1) (Version: 10.0.43879 - l-rePack®)
The KMPlayer 3.9.1.135 (HKLM-x32\...\{D96EDF7C-FABB-4A71-B3B7-F197C88DDF0F}_is1) (Version: 3.9.1.135 - ©7sh3. (Сборка от 13.04.2015))
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 11.1.2 - VMware, Inc)
VMware Workstation (Version: 11.1.2 - VMware, Inc.) Hidden
VueScan x32 (HKLM-x32\...\VueScan x32) (Version: - )
VueScan x64 (HKLM\...\VueScan x64) (Version: - )
WinRAR 5.21 (64-разрядная) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Глаз.ТВ (HKLM-x32\...\GlazTV) (Version: 1.0 - www.glaz.tv)
Засоби перевірки правопису Microsoft Office 2013 – українська мова (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Карточная игра в Дурака 7.2 (HKLM\...\Durbetsel) (Version: 7.2 - Конюхов Александр)
ЛовиОтвет 6.1.85.21 (HKLM-x32\...\LoviOtvet_is1) (Version: - iTVA LLC.)
Миллионер 3.9.3 (HKLM\...\Millioner) (Version: 3.9.3 - Nikolay Ivanov)
Обновления NVIDIA 9.3.16 (Version: 9.3.16 - NVIDIA Corporation) Hidden
Пакет драйверов Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Пакет драйверов Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Панель управления NVIDIA 353.62 (Version: 353.62 - NVIDIA Corporation) Hidden
Поддержка программ Apple (x64) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Поддержка программ Apple (x86) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Программа FensterWelt (HKLM-x32\...\Программа FensterWelt) (Version: - )
Руководства пользователя (x32 Version: 3.0.0.3 - Lenovo) Hidden
Сокровища Монтесумы 2 2.0 (HKLM\...\Montezuma2) (Version: 2.0 - MyPlayCity, Inc)
Сокровища Монтесумы 3 3.0 (HKLM\...\Montezuma3) (Version: 3.0 - MyPlayCity, Inc)
Сокровища Монтесумы 4 (HKLM-x32\...\Сокровища Монтесумы 4) (Version: 1.0.0 - Alawar)
Средства проверки правописания Microsoft Office 2013 — русский (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
СуперОкна 7 (HKLM-x32\...\СуперОкна 7_is1) (Version: - КСТ софт)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{64A9418A-B6B1-4112-B75C-E61633C9A31F}\InprocServer32 -> C:\Users\0B62~1\AppData\Local\Temp\mcse64_00.dll ()
CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{6775BBF1-8D9D-4D14-A999-4E78DF8DCEC6}\InprocServer32 -> C:\Users\0B62~1\AppData\Local\Temp\mcse64_00.dll ()
CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{6A2E142B-EA63-433A-AC05-5223CBD26E65}\InprocServer32 -> C:\Users\0B62~1\AppData\Local\Temp\mcse64_00.dll ()
CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{6AFCC535-2F12-4F50-9F0A-1CF856CFC95D}\InprocServer32 -> C:\Users\0B62~1\AppData\Local\Temp\mcse64_00.dll ()
CustomCLSID: HKU\S-1-5-21-1195179172-2301030070-928400072-1006_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Валя\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CFD6910-A6D0-4A39-AF9C-4FFF5809993A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {11D09A05-254F-4694-BA7F-B8B71C63109F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {147AD6C9-B69D-4786-A57D-726EC1F2E39B} - System32\Tasks\KMSAuto => C:\WINDOWS\KMSAuto.exe [2015-03-16] (Ratiborus, MSFree Inc.)
Task: {43C6838B-E0AE-4B7A-80F8-802C6E3D8CC3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-10] (Google Inc.)
Task: {4ACA85E6-625A-45CB-893A-8A55883D6291} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {54E8B141-B4FD-4742-BB05-A3168DA957E8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-10] (Google Inc.)
Task: {60109A3D-B3EA-4061-843D-D69AA0E9384B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {671659A5-5E6C-455C-9825-D94E9D785B57} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {68F4CDD4-1009-4FE8-9CB2-E92857A6EF26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {6E0880BF-0DC9-4797-ACF9-C7A8D4284036} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [2016-03-15] ()
Task: {756E0240-66A0-4516-A841-4FA9A1788547} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {8D397DCF-CC59-42B4-BF93-CA1A36AAA67C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {9DED7404-133A-4347-A697-D520B008F223} - System32\Tasks\Opera scheduled Autoupdate 1438975025 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-07] (Opera Software)
Task: {A8F54B48-7CA5-4070-A153-81569C87ECD3} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-08-18] (Lenovo)
Task: {B77EB003-8681-4B2B-B9C8-E5BBDB72089D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B7F4AFD6-0187-4C73-85D1-CAACE81261AC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {CF256454-CAFD-466A-9140-3BE7CC49D1F3} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {D4A87804-9357-46AF-9634-ED9A2C7C7AC6} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {D8FCC390-ADED-483B-B2B1-B49128E4A2E8} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {E8C624BF-26C6-490E-8DA9-BD9BE88796F4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FECB7780-4D5D-4BEF-98AE-6307A5363494} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Валя\Desktop\FensterWelt — ярлык.lnk -> C:\Program Files (x86)\FensterWelt\FensterWelt.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Магнат — ярлык.lnk -> C:\Магнат () <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Магнат.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\СуперОкна 7.lnk -> C:\Program Files (x86)\Kct\Swnd7\Swnd7.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Игрульки\Карточная игра в Дурака.lnk -> C:\Program Files (x86)\Games\Durbetsel\Durbetsel.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Игрульки\Миллионер.lnk -> C:\Program Files (x86)\Games\Millioner\millioner.exe (NI Software) <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Игрульки\Сокровища Монтесумы 2.lnk -> C:\Program Files (x86)\Games\Montezuma2\Montezuma2.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\Desktop\Игрульки\Сокровища Монтесумы 3.lnk -> C:\Program Files (x86)\Games\Montezuma3\Montezuma3.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\AppData\Roaming\Microsoft\Windows\SendTo\Передача файлов через Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation) <===== Cyrillic
Shortcut: C:\Users\Валя\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\FensterWelt — ярлык.lnk -> C:\Program Files (x86)\FensterWelt\FensterWelt.exe () <===== Cyrillic
Shortcut: C:\Users\Валя\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\СуперОкна 7.lnk -> C:\Program Files (x86)\Kct\Swnd7\Swnd7.exe () <===== Cyrillic
Shortcut: C:\Users\Public\Desktop\запустить XP.lnk -> C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe (VMware, Inc.) <===== Cyrillic

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 10:18 - 2015-10-30 10:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-20 03:59 - 2015-07-23 04:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-19 12:52 - 2007-05-04 10:19 - 00033792 _____ () C:\WINDOWS\System32\KYGALM.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-31 07:36 - 2015-05-31 07:36 - 12732608 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2016-11-11 11:08 - 2016-10-25 12:42 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-12-18 21:21 - 2014-07-09 16:19 - 00592880 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2016-11-11 11:08 - 2016-10-25 12:42 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-07-20 04:32 - 2016-07-20 04:32 - 00959168 _____ () C:\Users\Валя\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-07-20 04:31 - 2016-11-11 13:00 - 00190464 _____ () C:\Users\0B62~1\AppData\Local\Temp\mcse64_00.dll
2016-07-20 05:22 - 2016-07-20 05:24 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-07-17 23:35 - 2016-11-01 23:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2014-12-18 21:21 - 2014-07-09 16:19 - 00397296 _____ () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
2016-04-27 08:14 - 2016-04-27 08:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-20 07:10 - 2016-07-01 06:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-11-11 11:08 - 2016-10-25 07:49 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-11 11:08 - 2016-10-25 07:44 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-11 11:08 - 2016-10-25 07:45 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-11 11:08 - 2016-10-25 07:48 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-12-18 20:57 - 2010-10-26 07:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2015-08-13 22:56 - 2015-08-13 20:41 - 03374655 _____ () C:\full key usb\2F73B0A1-7DFE6B23_Almaz_USB.exe
2015-12-14 15:28 - 2015-12-14 15:28 - 00078808 _____ () C:\Program Files\Lenovo\iMController\AutoUpdate.exe
2016-04-22 01:07 - 2016-04-22 01:07 - 00313656 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxslt.dll
2015-10-30 10:18 - 2015-10-30 10:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2015-05-31 07:59 - 2015-05-31 07:59 - 01301696 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2015-05-31 07:36 - 2015-05-31 07:36 - 00194752 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
2015-05-31 07:36 - 2015-05-31 07:36 - 00191680 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
2015-05-31 07:36 - 2015-05-31 07:36 - 00388288 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
2016-07-20 05:22 - 2016-07-20 05:24 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-07-20 05:22 - 2016-07-20 05:24 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2014-12-18 20:48 - 2013-09-16 22:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-04-22 01:08 - 2016-04-22 01:08 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 00244024 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-04-22 01:08 - 2016-04-22 01:08 - 01047864 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-11 09:26 - 2016-11-11 09:24 - 66023632 _____ () C:\Program Files (x86)\Opera\41.0.2353.56\opera.dll
2016-07-20 04:32 - 2016-07-20 04:32 - 00679624 _____ () C:\Users\Валя\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-11-11 09:25 - 2016-11-11 09:24 - 01888464 _____ () C:\Program Files (x86)\Opera\41.0.2353.56\libglesv2.dll
2016-11-11 09:25 - 2016-11-11 09:24 - 00094416 _____ () C:\Program Files (x86)\Opera\41.0.2353.56\libegl.dll
2015-12-14 15:28 - 2015-12-14 15:28 - 00026584 _____ () C:\Program Files\Lenovo\iMController\PluginCommunication.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 16:25 - 2016-07-19 16:37 - 00000892 ____A C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 stats.hamrick.com static.hamrick.com www.hamrick.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1195179172-2301030070-928400072-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\Валя\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR12"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKU\S-1-5-21-1195179172-2301030070-928400072-1006\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{4264F9AA-4BAD-4DF6-9423-A9ADD1F8D180}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{6194920A-2968-4B1F-BAC2-5CE6C3134809}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{B459F6F5-B2D9-4D21-B919-23BBAB66971E}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3B6B88C6-FCFE-4799-8047-C7232F9F42FF}] => (Allow) LPort=1688
FirewallRules: [{A2A312ED-6A5E-4778-B86A-611E40C17704}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{50A811BC-8F90-4AB2-BC98-BDA9F5FAA7C5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{FBFA4902-A4C9-4625-918A-B32EAA7E82FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{CF690A2B-B66E-4D8D-A2A3-516A2B6A0E5D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F56B6958-9913-4E8F-ABCC-7D5289BE0A2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D0B6ED34-35A3-4FF2-8D2C-23A59D77079E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F162EC5D-17BA-4DA4-840E-4D0BA0138194}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9860D730-A97B-4B89-8FA7-103C011CD88C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{49E28737-B0E8-425A-81BA-768F89C15C3A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DBC80226-A9DE-40BC-98C0-A0BA29A5DFCB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E1DC4A9E-C568-47E4-9A9C-F12AE30F8DC2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{49854056-3F87-4E3E-B396-706C93AC8A73}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6FB26EB5-7E7C-48AE-986C-696FF03E6C7F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14ABB491-51C2-4ED5-83EE-08C7C3499498}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B2E6B82D-48C3-4E72-8961-3659A8B527D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7785D2A3-5B15-4B18-8167-2058F843ADC9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{650DDE74-42EE-4132-A68C-4ED86BE5D144}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{80253DBE-7957-48F2-BB8A-91849DDE3BB3}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{F2B867DC-C336-455E-B661-6CE24520078B}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{A5EA0CBF-4451-491B-9DEE-8710A33D2FB2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{A1B00C52-E90D-4BBE-A97F-140528508BE5}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{BFCBA5D3-3883-4BE4-8942-4582D3D286A9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{095D8D02-B9A7-4029-B532-51FECEF200C0}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{A5228A60-62B5-48FF-94FE-6A57F49B6245}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{8853C13E-608D-4334-94A5-32A3F6FB2E6F}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FA983D66-CF28-480F-99FA-2EB5C2C6F07A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{EBDB05EC-834B-42B8-BEF6-CC3A756AD88B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{D8FD5C72-F3CE-4FF8-AAED-2FDE423FE8E1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{953BD4B7-55F9-404E-86C3-D0906F19434B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{D0F70F8E-8480-4FD6-86B7-A6769A337051}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{1F8EA90C-3E64-4050-8251-D68784FA7AE7}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{CF6210E6-D158-45FD-9D98-DD43F2531333}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{6F98B5C7-93D9-48ED-B1E2-1EB39B0A238C}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{DB7AD7D2-6D20-4892-8507-FC5498C735B3}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{582308D4-41C5-4EF8-BFBE-90F439C3A515}] => (Allow) LPort=55100
FirewallRules: [{25490BAC-E0C7-4B55-B56F-CF544C3EF960}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2016 12:57:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: IntelCpHeciSvc.exe, версия: 9.0.31.9015, метка времени: 0x559f017a
Имя сбойного модуля: IntelCpHeciSvc.exe, версия: 9.0.31.9015, метка времени: 0x559f017a
Код исключения: 0x40000015
Смещение ошибки: 0x00020850
Идентификатор сбойного процесса: 0x8dc
Время запуска сбойного приложения: 0x01d23c01d90426f8
Путь сбойного приложения: C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
Путь сбойного модуля: C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
Идентификатор отчета: 1b4e957d-ad72-4b23-a9e7-e873b55d4cb1
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

Error: (11/11/2016 12:56:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: Sw7LcSrv.EXE, версия: 7.0.0.3, метка времени: 0x2a425e19
Имя сбойного модуля: unknown, версия: 0.0.0.0, метка времени: 0x00000000
Код исключения: 0xc0000005
Смещение ошибки: 0x7a39e0b7
Идентификатор сбойного процесса: 0x9fc
Время запуска сбойного приложения: 0x01d23c01da57a104
Путь сбойного приложения: C:\Program Files (x86)\Kct\Swnd7\Sw7LcSrv.EXE
Путь сбойного модуля: unknown
Идентификатор отчета: 4fc3173a-8dbf-4930-9cd2-830bbad1c08e
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

Error: (11/11/2016 11:42:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: ShellExperienceHost.exe, версия: 10.0.10586.494, метка времени: 0x5775e94c
Имя сбойного модуля: Windows.UI.Xaml.dll, версия: 10.0.10586.494, метка времени: 0x5775e900
Код исключения: 0xc000027b
Смещение ошибки: 0x0000000000517ad4
Идентификатор сбойного процесса: 0x107c
Время запуска сбойного приложения: 0x01d23bec00f39b04
Путь сбойного приложения: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Путь сбойного модуля: C:\Windows\System32\Windows.UI.Xaml.dll
Идентификатор отчета: 03a86325-2fe4-4902-bd49-7a758943f071
Полное имя сбойного пакета: Microsoft.Windows.ShellExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy
Код приложения, связанного со сбойным пакетом: App

Error: (11/11/2016 10:19:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Имя сбойного модуля: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Код исключения: 0xc0000409
Смещение ошибки: 0x0000000000015953
Идентификатор сбойного процесса: 0x43c
Время запуска сбойного приложения: 0x01d23bebff191045
Путь сбойного приложения: C:\WINDOWS\system32\igfxHK.exe
Путь сбойного модуля: C:\WINDOWS\system32\igfxHK.exe
Идентификатор отчета: 6eb28c9f-dcf3-47eb-af3b-4c7e52ad8d0d
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

Error: (11/11/2016 09:42:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14625

Error: (11/11/2016 09:42:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14625

Error: (11/11/2016 09:42:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/11/2016 09:34:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Имя сбойного модуля: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Код исключения: 0xc0000409
Смещение ошибки: 0x0000000000015953
Идентификатор сбойного процесса: 0x1b84
Время запуска сбойного приложения: 0x01d23be5b75bd5e7
Путь сбойного приложения: C:\WINDOWS\system32\igfxHK.exe
Путь сбойного модуля: C:\WINDOWS\system32\igfxHK.exe
Идентификатор отчета: 55b00426-cb08-407a-872d-1ec2e0a703a5
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

Error: (11/11/2016 09:33:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: Sw7LcSrv.EXE, версия: 7.0.0.3, метка времени: 0x2a425e19
Имя сбойного модуля: unknown, версия: 0.0.0.0, метка времени: 0x00000000
Код исключения: 0xc0000005
Смещение ошибки: 0x7a39e0b7
Идентификатор сбойного процесса: 0xb48
Время запуска сбойного приложения: 0x01d23be58ee2d4cc
Путь сбойного приложения: C:\Program Files (x86)\Kct\Swnd7\Sw7LcSrv.EXE
Путь сбойного модуля: unknown
Идентификатор отчета: 9a37e02d-6f28-4ca1-9ec5-bdc0f251d2f0
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

Error: (11/11/2016 09:18:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Имя сбойного модуля: igfxHK.exe, версия: 6.15.10.4331, метка времени: 0x564cc83e
Код исключения: 0xc0000409
Смещение ошибки: 0x0000000000015953
Идентификатор сбойного процесса: 0x16e0
Время запуска сбойного приложения: 0x01d23be36eb92a76
Путь сбойного приложения: C:\WINDOWS\system32\igfxHK.exe
Путь сбойного модуля: C:\WINDOWS\system32\igfxHK.exe
Идентификатор отчета: 302842ee-965d-4a89-b157-b47f13cb1e7b
Полное имя сбойного пакета:
Код приложения, связанного со сбойным пакетом:

System errors:
=============
Error: (11/11/2016 01:11:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Параметры разрешений для конкретного приложения не дают разрешения Локально Активация для приложения COM-сервера с CLSID
{9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}
и APPID
{50E1C3FD-EC35-490E-9CCF-C68F9AE91919}
пользователю NT AUTHORITY\LOCAL SERVICE с ИД безопасности (S-1-5-19) и адресом LocalHost (с использованием LRPC), выполняемого в контейнере приложения Недоступно с ИД безопасности (Недоступно). Это разрешение безопасности можно изменить с помощью средства администрирования служб компонентов.

Error: (11/11/2016 01:11:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Параметры разрешений для конкретного приложения не дают разрешения Локально Активация для приложения COM-сервера с CLSID
{9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}
и APPID
{50E1C3FD-EC35-490E-9CCF-C68F9AE91919}
пользователю NT AUTHORITY\LOCAL SERVICE с ИД безопасности (S-1-5-19) и адресом LocalHost (с использованием LRPC), выполняемого в контейнере приложения Недоступно с ИД безопасности (Недоступно). Это разрешение безопасности можно изменить с помощью средства администрирования служб компонентов.

Error: (11/11/2016 01:04:01 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: На мини-порту Apple Mobile Device Ethernet ({307AD8BF-A090-44B9-A394-B44371F25A5D}) произошло событие 76

Error: (11/11/2016 01:01:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Параметры разрешений для конкретного приложения не дают разрешения Локально Активация для приложения COM-сервера с CLSID
{9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}
и APPID
{50E1C3FD-EC35-490E-9CCF-C68F9AE91919}
пользователю NT AUTHORITY\LOCAL SERVICE с ИД безопасности (S-1-5-19) и адресом LocalHost (с использованием LRPC), выполняемого в контейнере приложения Недоступно с ИД безопасности (Недоступно). Это разрешение безопасности можно изменить с помощью средства администрирования служб компонентов.

Error: (11/11/2016 12:59:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Параметры разрешений для конкретного приложения не дают разрешения Локально Активация для приложения COM-сервера с CLSID
{9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}
и APPID
{50E1C3FD-EC35-490E-9CCF-C68F9AE91919}
пользователю NT AUTHORITY\LOCAL SERVICE с ИД безопасности (S-1-5-19) и адресом LocalHost (с использованием LRPC), выполняемого в контейнере приложения Недоступно с ИД безопасности (Недоступно). Это разрешение безопасности можно изменить с помощью средства администрирования служб компонентов.

Error: (11/11/2016 12:59:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Параметры разрешений для конкретного приложения не дают разрешения Локально Активация для приложения COM-сервера с CLSID
{9A4948D9-13FC-4FAC-B60A-FBA6EE0FB11C}
и APPID
{50E1C3FD-EC35-490E-9CCF-C68F9AE91919}
пользователю NT AUTHORITY\LOCAL SERVICE с ИД безопасности (S-1-5-19) и адресом LocalHost (с использованием LRPC), выполняемого в контейнере приложения Недоступно с ИД безопасности (Недоступно). Это разрешение безопасности можно изменить с помощью средства администрирования служб компонентов.

Error: (11/11/2016 12:57:59 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 30) (User: NT AUTHORITY)
Description: Служба ведения журнала событий обнаружила ошибку (5) в ходе открытия доступа к каналу Microsoft-Windows-Kernel-ShimEngine/Operational для издателя {0BF2FB94-7B60-4B4D-9766-E82F658DF540}. Данная ошибка не влияет на работу канала, но не позволяет издателю публиковать события в канале. Одна из распространенных причин этой ошибки заключается в том, что поставщик использует систему безопасности поставщика трассировки событий Windows, но не предоставил необходимые права для удостоверения службы журнала событий.

Error: (11/11/2016 12:57:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "Intel® Content Protection HECI Service" неожиданно прервана. Это произошло (раз): 1.

Error: (11/11/2016 12:56:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Сбой при запуске службы "Sw7LcSrv" из-за ошибки
Служба не ответила на запрос своевременно.

Error: (11/11/2016 12:56:50 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Превышение времени ожидания (30000 мс) при ожидании подключения службы "Sw7LcSrv".

CodeIntegrity:
===================================
Date: 2016-11-11 12:58:20.697
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-11-11 11:24:08.533
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-27 04:26:27.530
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-22 11:18:22.171
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-21 17:00:37.612
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-20 07:18:58.242
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-20 04:29:43.641
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-20 04:16:33.757
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-20 04:15:48.786
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-20 03:57:20.817
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel® Core i3-4030U CPU @ 1.90GHz
Percentage of memory in use: 67%
Total physical RAM: 3988.27 MB
Available physical RAM: 1287.69 MB
Total Virtual: 5140.27 MB
Available Virtual: 2113.49 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:425.92 GB) (Free:302.71 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: C086CAA7)

Partition: GPT.

==================== End of Addition.txt ============================

11 ноября, 2016

Некоторые люди меня удивляют. Пишешь им одно, но они всё делают так, как им хочется, а не так как просили.

11 ноября, 2016

Все же сделал как вы сказали .почту вашу не могу найти что бы письмо переслать , напишу в личку ?

11 ноября, 2016

Содержимое логов я просил копировать?

13 ноября, 2016

Не мог найти как это сделать- нужно было просто нажать расширенная форма.

Но собственно ждать не было времени и забив в яндекс поиск фирм по дешифровке файлов была найдена контора,

после звонка , небольших переговоров и оплаты файлы были успешно восстановлены.

Дешифровка заняла не более получаса .

Судя по всему я не первый так как долго объяснять не пришлось и все было сделано быстро .

13 ноября, 2016

Но собственно ждать не было времени и забив в яндекс поиск фирм по дешифровке файлов была найдена контора,

Поздравляю, вы собственно отдали свои деньги посредникам, а те авторам шифровальщика. Какую наценку они с вас взяли я не знаю, но вы по сути мало того что переплатили, но вас дважды развели на деньги. Подробнее можете почитать тут http://virusinfo.info/showthread.php?t=180742 о таких "бизнесменах".

Изменено 13 ноября, 2016 пользователем mike 1

13 ноября, 2016

Но собственно ждать не было времени и забив в яндекс поиск фирм по дешифровке файлов была найдена контора,

Поздравляю, вы собственно отдали свои деньги посредникам, а те авторам шифровальщика. Какую наценку они с вас взяли я не знаю, но вы по сути мало того что переплатили, но вас дважды развели на деньги. Подробнее можете почитать тут http://virusinfo.info/showthread.php?t=180742 о таких "бизнесменах".

Наверное не мне вам объяснять но время деньги.

У нас в городя вряд ли бы это кто то сделал , да думаю что и вы, навряд ли смогли бы, быстро найти решение,

Изменено 13 ноября, 2016 пользователем Maxamps

13 ноября, 2016

Ну решение кое-какое есть, но оно не идеальное. Надеюсь, вы все таки после этого сделайте соответствующие выводы.

1 декабря, 2016

Добрый день. Попался на такую же удочку. Куда прикрепить файл? Как?

1 декабря, 2016

Добрый день. Попался на такую же удочку. Куда прикрепить файл? Как?

Для начала нужно создать свою тему

помогите расшифровать файлы после вируса ishtar

Рекомендуемые сообщения

Maxamps

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

Maxamps

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

Maxamps

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

Maxamps

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

Maxamps

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

andrey1999

Ссылка на комментарий

Поделиться на другие сайты

mike 1

Ссылка на комментарий

Поделиться на другие сайты

Пожалуйста, войдите, чтобы комментировать

Похожий контент

Сайт

Активность

Магазин

Поддержка

Kaspersky Support Forum