Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 
This topic is locked
I've uninstalled it but there is still big delay with black screen on windows loading
aswMBR version 1.0.1.2252 Copyright© 2014 AVAST Software
Run date: 2014-12-01 01:15:13
-----------------------------
01:15:13.855 OS Version: Windows x64 6.2.9200
01:15:13.855 Number of processors: 4 586 0x3C03
01:15:13.857 ComputerName: VLADIMIRPC UserName: Vladimir
01:15:14.035 Initialize success
01:15:14.363 VM: initialized successfully
01:15:14.363 VM: Intel CPU supported
01:15:15.657 VM: supported disk I/O storport.sys
01:16:47.629 AVAST engine defs: 14113000
01:19:33.877 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000026
01:19:33.878 Disk 0 Vendor: KINGMAX_SSD_120GB M1009 Size: 114473MB BusType: 11
01:19:33.880 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000027
01:19:33.881 Disk 1 Vendor: WDC_WD7500AZEX-00ZF5A0 80.00A80 Size: 715404MB BusType: 11
01:19:33.890 VM: Disk 0 MBR read successfully
01:19:33.892 Disk 0 MBR scan
01:19:33.910 Disk 0 Windows 7 default MBR code
01:19:33.912 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 114471 MB offset 2048
01:19:33.951 Disk 0 scanning C:\Windows\system32\drivers
01:19:40.282 Service scanning
01:19:52.462 Modules scanning
01:19:52.480 Disk 0 trace - called modules:
01:19:52.494 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys storahci.sys hal.dll
01:19:52.499 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe0011a4374e0]
01:19:52.504 3 CLASSPNP.SYS[fffff8010b38d27b] -> nt!IofCallDriver -> [0xffffe00119ab2e50]
01:19:52.509 5 ACPI.sys[fffff8010aa557aa] -> nt!IofCallDriver -> [0xffffe00119ab7b70]
01:19:52.514 7 ACPI.sys[fffff8010aa557aa] -> nt!IofCallDriver -> \Device\00000026[0xffffe00119ab4060]
01:19:52.691 AVAST engine scan C:\Windows
01:19:53.361 AVAST engine scan C:\Windows\system32
01:21:39.139 AVAST engine scan C:\Windows\system32\drivers
01:21:48.534 AVAST engine scan C:\Users\Vladimir
01:23:02.415 File: C:\Users\Vladimir\AppData\Local\Temp\is386526232\5BFEE0EB_stp.EXE **INFECTED** Win32:MalOb-CA [Cryp]
01:24:02.464 AVAST engine scan C:\ProgramData
01:24:54.574 Disk 0 statistics 4564846/0/5 @ 25,82 MB/s
01:24:54.578 Scan finished successfully
01:25:08.054 Disk 0 MBR has been saved successfully to "C:\Users\Vladimir\Desktop\MBR.dat"
01:25:08.083 The log file has been saved successfully to "C:\Users\Vladimir\Desktop\aswMBR.txt"
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-11-2014
Ran by Vladimir (administrator) on VLADIMIRPC on 01-12-2014 01:27:03
Running from C:\Users\Vladimir\Downloads
Loaded Profile: Vladimir (Available profiles: Vladimir)
Platform: Windows 8.1 Pro (X64) OS Language: Русский (Россия)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(The Within Network, LLC) C:\Windows\unsignedthemes.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
() C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\WDFME.exe
() C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDSC.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CMedia) C:\Program Files\UNi Xonar Audio\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
(ArcSoft Inc.) C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TotalMedia Server\TM Server.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(ООО ДубльГИС) C:\Program Files (x86)\2gis\3.0\2GISTrayNotifier.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(BitTorrent Inc.) C:\Users\Vladimir\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [480648 2014-04-01] (Autodesk Inc.)
HKLM-x32\...\Run: [2Gis Update Notifier] => C:\Program Files (x86)\2gis\3.0\2GISTrayNotifier.exe [4582936 2014-09-30] (ООО ДубльГИС)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-05] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1415048 2014-03-05] (Autodesk, Inc.)
HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1415048 2014-03-05] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
ShortcutTarget: TotalMedia Server.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk
ShortcutTarget: WDDMStatus.lnk -> C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (Western Digital Technologies, Inc.)
Startup: C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default
FF Homepage: vk.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll ()
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF SearchPlugin: C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\searchplugins\--youtube.xml
FF SearchPlugin: C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\searchplugins\urban-dictionary.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mailru.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\ozonru.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\priceru.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yandex-slovari.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yandex.xml
FF Extension: DownloadHelper - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-06]
FF Extension: Stylish - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-05-09]
FF Extension: RightToClick - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\Extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi [2014-05-09]
FF Extension: Adblock Plus - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-09]
FF Extension: Adblock Edge - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\1hkqq8tl.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-05-09]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://vk.com/"
CHR Profile: C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Документы Google) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-09]
CHR Extension: (Диск Google) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-09]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-09]
CHR Extension: (Поиск Google) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-09]
CHR Extension: (AdBlock) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-30]
CHR Extension: (VkOpt) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoboppgpbgclpfnjfdidokiilachfcbb [2014-09-07]
CHR Extension: (friGate CDN - расширенный доступ к сайтам) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbacbcfdfaapbcnlnbmciiaakomhkbkb [2014-06-02]
CHR Extension: (Google Кошелек) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-09]
CHR Extension: (Gmail) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-09]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 2GISUpdateService; C:\Program Files (x86)\2gis\3.0\2GISUpdateService.exe [3764760 2014-09-30] (ООО ДубльГИС)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [581000 2014-04-01] (Autodesk Inc.)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [44736 2014-03-11] (ArcSoft, Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-12] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S2 Launch TotalMedia Theatre 6 Driver; C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TMTLaunchDriverServer.exe [608256 2014-03-04] (ArcSoft, Inc.) [File not signed]
R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] () [File not signed]
S3 mi-raysat_3dsmax2015_64; C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [86016 2014-04-26] () [File not signed]
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
R2 UnsignedThemes; C:\Windows\unsignedthemes.exe [13824 2013-09-23] (The Within Network, LLC) [File not signed]
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288256 2010-09-08] (WDC) [File not signed]
R2 WDFME; C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\WDFME.exe [1034752 2010-09-08] () [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WDSC; C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDSC.exe [485376 2010-09-08] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671000 2014-11-05] (Wacom Technology, Corp.)
S2 51cdb72; "C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\Optimizer Pro 3.11\OptProCrash.dll",ENT
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 ArcCtrl; C:\Windows\System32\drivers\ArcCtrl.sys [3315392 2013-11-20] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-05-13] (Disc Soft Ltd)
S3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [469264 2014-05-09] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-08] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-08] ()
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-07] ()
S3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-07] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R2 uxstyle; C:\Windows\system32\Drivers\uxstyle.sys [31440 2013-09-23] (The Within Network, LLC)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
U3 aswMBR; \??\C:\Users\Vladimir\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\Vladimir\AppData\Local\Temp\aswVmm.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-01 01:27 - 2014-12-01 01:27 - 00018817 _____ () C:\Users\Vladimir\Downloads\FRST.txt
2014-12-01 01:26 - 2014-12-01 01:27 - 00000000 ____D () C:\FRST
2014-12-01 01:25 - 2014-12-01 01:25 - 00002391 _____ () C:\Users\Vladimir\Desktop\aswMBR.txt
2014-12-01 01:25 - 2014-12-01 01:25 - 00000512 _____ () C:\Users\Vladimir\Desktop\MBR.dat
2014-12-01 01:16 - 2014-12-01 01:16 - 02117120 _____ (Farbar) C:\Users\Vladimir\Downloads\FRST64.exe
2014-12-01 01:08 - 2014-12-01 01:08 - 05198336 _____ (AVAST Software) C:\Users\Vladimir\Downloads\aswMBR.exe
2014-12-01 00:13 - 2014-12-01 00:13 - 00000117 _____ () C:\Users\Vladimir\Desktop\мблд.txt
2014-11-30 19:28 - 2014-11-30 19:28 - 00001171 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\usbwebserver.lnk
2014-11-30 17:55 - 2014-11-30 18:08 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Brackets
2014-11-30 17:46 - 2014-11-30 17:46 - 00000720 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2014-11-30 17:45 - 2014-11-30 17:46 - 00000000 ____D () C:\Program Files (x86)\Brackets
2014-11-30 17:44 - 2014-11-30 17:44 - 00000000 ____D () C:\Users\Все пользователи\600440862
2014-11-30 17:44 - 2014-11-30 17:44 - 00000000 ____D () C:\ProgramData\600440862
2014-11-30 17:43 - 2014-11-30 17:43 - 00000000 __SHD () C:\Users\Vladimir\AppData\Local\EmieBrowserModeList
2014-11-30 17:43 - 2014-11-30 17:43 - 00000000 ____D () C:\Users\Vladimir\Documents\Optimizer Pro
2014-11-30 17:39 - 2014-11-30 23:58 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\FileZilla
2014-11-30 17:39 - 2014-11-30 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-11-30 17:39 - 2014-11-30 17:39 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-11-30 17:38 - 2014-11-30 17:44 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-11-30 17:38 - 2014-11-30 17:38 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Opera Software
2014-11-30 17:38 - 2014-11-30 17:38 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Opera Software
2014-11-30 16:07 - 2014-11-30 16:08 - 00000000 ____D () C:\Users\Vladimir\Documents\USBWebserver v8.6
2014-11-29 19:02 - 2014-11-29 19:02 - 659334091 _____ () C:\Windows\MEMORY.DMP
2014-11-29 19:02 - 2014-11-29 19:02 - 00279696 _____ () C:\Windows\Minidump\112914-8234-01.dmp
2014-11-27 21:56 - 2014-11-27 21:58 - 00000000 ____D () C:\Users\Vladimir\Desktop\на печать
2014-11-27 12:05 - 2014-10-13 10:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-27 12:05 - 2014-10-11 08:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-27 12:05 - 2014-10-11 08:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-27 12:05 - 2014-10-08 15:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-27 12:05 - 2014-10-08 15:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-27 12:05 - 2014-10-08 14:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-27 12:05 - 2014-10-08 13:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-27 12:05 - 2014-10-08 13:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-26 16:27 - 2014-11-26 16:27 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\WTablet
2014-11-25 20:13 - 2014-11-25 20:13 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Evernote
2014-11-25 20:12 - 2014-11-25 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2014-11-25 20:12 - 2014-11-25 20:12 - 00000000 ____D () C:\Program Files (x86)\Evernote
2014-11-25 02:57 - 2014-11-25 02:57 - 00000000 ____D () C:\Users\Все пользователи\Atrise
2014-11-25 02:57 - 2014-11-25 02:57 - 00000000 ____D () C:\ProgramData\Atrise
2014-11-25 02:29 - 2014-11-25 02:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atrise Lutcurve
2014-11-25 02:29 - 2014-11-25 02:29 - 00000000 ____D () C:\Program Files (x86)\Atrise
2014-11-25 01:48 - 2014-10-31 13:28 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-25 01:48 - 2014-10-31 11:59 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-25 01:48 - 2014-10-31 11:42 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-25 01:48 - 2014-10-10 09:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-25 01:48 - 2014-10-10 09:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-25 01:48 - 2014-10-10 09:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-25 01:48 - 2014-10-08 15:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-25 01:48 - 2014-10-08 15:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-25 01:48 - 2014-10-08 15:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-25 01:48 - 2014-10-08 15:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-25 01:48 - 2014-10-08 14:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-25 01:48 - 2014-10-08 14:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-25 01:48 - 2014-10-08 14:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-25 01:48 - 2014-10-08 14:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-25 01:48 - 2014-10-08 14:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-25 01:48 - 2014-10-08 13:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-25 01:47 - 2014-11-05 07:38 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-25 01:47 - 2014-11-04 08:10 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-25 01:47 - 2014-10-31 13:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-25 01:47 - 2014-10-31 13:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-25 01:47 - 2014-10-31 13:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-25 01:47 - 2014-10-31 13:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-25 01:47 - 2014-10-31 13:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-25 01:47 - 2014-10-31 13:06 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-25 01:47 - 2014-10-31 13:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-25 01:47 - 2014-10-31 13:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-25 01:47 - 2014-10-31 13:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-25 01:47 - 2014-10-31 13:05 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-25 01:47 - 2014-10-31 13:05 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-25 01:47 - 2014-10-31 13:04 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-25 01:47 - 2014-10-31 12:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-25 01:47 - 2014-10-31 12:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-25 01:47 - 2014-10-31 12:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-25 01:47 - 2014-10-31 12:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-25 01:47 - 2014-10-31 12:53 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-11-25 01:47 - 2014-10-31 12:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2014-11-25 01:47 - 2014-10-31 12:51 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-25 01:47 - 2014-10-31 12:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-25 01:47 - 2014-10-31 12:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-25 01:47 - 2014-10-31 12:50 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-25 01:47 - 2014-10-31 12:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-25 01:47 - 2014-10-31 12:49 - 00537088 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-25 01:47 - 2014-10-31 12:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-25 01:47 - 2014-10-31 12:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-25 01:47 - 2014-10-31 12:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-25 01:47 - 2014-10-31 12:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-25 01:47 - 2014-10-31 12:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-25 01:47 - 2014-10-31 12:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-25 01:47 - 2014-10-31 12:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-25 01:47 - 2014-10-31 12:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-11-25 01:47 - 2014-10-31 12:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-25 01:47 - 2014-10-31 12:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-25 01:47 - 2014-10-31 12:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-25 01:47 - 2014-10-31 12:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-25 01:47 - 2014-10-31 12:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-25 01:47 - 2014-10-31 12:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-11-25 01:47 - 2014-10-31 12:08 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-25 01:47 - 2014-10-31 12:06 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-25 01:47 - 2014-10-31 12:05 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-25 01:47 - 2014-10-31 12:05 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-25 01:47 - 2014-10-31 12:03 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-25 01:47 - 2014-10-31 11:45 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-25 01:47 - 2014-10-31 11:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-25 01:47 - 2014-10-31 11:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-25 01:47 - 2014-10-31 11:32 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-25 01:47 - 2014-10-31 11:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-11-25 01:47 - 2014-10-31 11:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-11-25 01:47 - 2014-10-31 11:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-11-25 01:47 - 2014-10-31 11:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-11-25 01:47 - 2014-10-31 11:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-11-25 01:47 - 2014-10-31 11:24 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-25 01:47 - 2014-10-31 11:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-11-25 01:47 - 2014-10-31 11:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-25 01:47 - 2014-10-31 11:23 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-11-25 01:47 - 2014-10-31 11:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-25 01:47 - 2014-10-31 11:22 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-25 01:47 - 2014-10-31 11:20 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-25 01:47 - 2014-10-31 11:18 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-25 01:47 - 2014-10-31 11:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-25 01:47 - 2014-10-31 11:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-25 01:47 - 2014-10-31 11:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-25 01:47 - 2014-10-31 11:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-25 01:47 - 2014-10-31 11:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2014-11-25 01:47 - 2014-10-31 11:12 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-11-25 01:47 - 2014-10-31 11:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-25 01:47 - 2014-10-31 11:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-25 01:47 - 2014-10-31 11:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-11-25 01:47 - 2014-10-31 11:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-25 01:47 - 2014-10-31 10:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-25 01:47 - 2014-10-31 10:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-11-25 01:47 - 2014-10-31 10:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-25 01:47 - 2014-10-31 10:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-11-25 01:47 - 2014-10-31 10:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-25 01:47 - 2014-10-31 10:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-25 01:47 - 2014-10-31 10:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-25 01:47 - 2014-10-31 10:51 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-11-25 01:47 - 2014-10-31 10:50 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-25 01:47 - 2014-10-31 10:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-11-25 01:47 - 2014-10-31 10:46 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-25 01:47 - 2014-10-31 10:46 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-11-25 01:47 - 2014-10-31 10:42 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-11-25 01:47 - 2014-10-31 10:40 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-25 01:47 - 2014-10-31 10:40 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-25 01:47 - 2014-10-31 10:39 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-25 01:47 - 2014-10-31 10:30 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-25 01:47 - 2014-10-31 10:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-25 01:47 - 2014-10-31 10:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-11-25 01:47 - 2014-10-31 10:17 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-25 01:47 - 2014-10-31 10:13 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-25 01:47 - 2014-10-31 10:11 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-25 01:47 - 2014-10-07 14:28 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-25 01:47 - 2014-10-07 14:27 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-25 01:47 - 2014-10-07 14:27 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-25 01:47 - 2014-10-07 14:27 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-25 01:47 - 2014-10-07 14:27 - 00108432 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-25 01:47 - 2014-10-07 11:34 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-25 01:47 - 2014-10-07 11:34 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-25 01:47 - 2014-10-07 11:33 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-25 01:47 - 2014-10-07 11:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-25 01:47 - 2014-10-07 09:54 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-25 01:47 - 2014-10-07 09:46 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-25 01:47 - 2014-09-27 15:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-25 01:47 - 2014-09-27 13:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-25 01:47 - 2014-09-27 11:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-25 01:47 - 2014-09-27 11:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-25 01:47 - 2014-09-27 11:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-25 01:47 - 2014-09-22 12:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-25 01:47 - 2014-09-22 11:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-25 01:47 - 2014-09-22 11:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-11-25 01:47 - 2014-09-22 10:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-25 01:47 - 2014-09-19 08:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-25 01:47 - 2014-09-03 06:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2014-11-25 01:47 - 2014-09-03 06:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2014-11-25 01:39 - 2014-10-17 15:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-25 01:39 - 2014-10-17 14:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-25 01:27 - 2014-08-23 13:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-25 01:27 - 2014-08-23 13:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-25 01:26 - 2014-10-23 13:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-25 01:26 - 2014-10-23 13:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-25 00:59 - 2014-11-10 07:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-25 00:59 - 2014-11-10 07:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-25 00:59 - 2014-11-10 07:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-25 00:59 - 2014-11-10 07:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-25 00:59 - 2014-10-18 17:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-25 00:59 - 2014-10-18 16:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-25 00:59 - 2014-10-18 16:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-25 00:59 - 2014-10-18 15:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-25 00:59 - 2014-10-18 14:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-25 00:59 - 2014-10-18 14:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-25 00:59 - 2014-10-18 14:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-25 00:59 - 2014-10-18 14:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-25 00:59 - 2014-10-18 14:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-25 00:59 - 2014-10-18 14:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-25 00:59 - 2014-10-18 14:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-25 00:59 - 2014-10-18 14:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-25 00:59 - 2014-10-18 14:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-25 00:59 - 2014-10-18 14:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-25 00:59 - 2014-10-18 14:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-25 00:59 - 2014-10-18 14:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-25 00:59 - 2014-09-10 14:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-25 00:59 - 2014-09-08 11:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-25 00:59 - 2014-09-08 11:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-25 00:59 - 2014-09-08 06:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-25 00:59 - 2014-09-05 06:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-25 00:59 - 2014-09-05 06:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-25 00:59 - 2014-09-04 11:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-25 00:59 - 2014-09-04 10:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-25 00:59 - 2014-09-04 09:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-11-25 00:59 - 2014-09-04 08:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-11-25 00:59 - 2014-08-31 08:17 - 00148800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-25 00:59 - 2014-08-31 08:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-25 00:59 - 2014-08-31 06:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-25 00:59 - 2014-08-31 06:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-25 00:59 - 2014-08-31 05:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-25 00:59 - 2014-08-31 05:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-25 00:59 - 2014-08-31 04:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-25 00:59 - 2014-08-31 04:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-25 00:59 - 2014-08-28 10:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-25 00:59 - 2014-08-28 08:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-25 00:59 - 2014-08-28 08:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-25 00:59 - 2014-08-23 13:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-25 00:59 - 2014-08-23 13:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-25 00:59 - 2014-08-23 12:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-11-25 00:59 - 2014-08-02 08:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-25 00:59 - 2014-08-02 08:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-24 01:40 - 2014-11-24 01:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-16 21:15 - 2014-11-25 20:17 - 00000000 ____D () C:\Users\Vladimir\Desktop\refsort
2014-11-15 19:32 - 2014-11-18 22:27 - 00000000 ____D () C:\Program Files\Tablet
2014-11-15 19:32 - 2014-11-15 19:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Планшет Wacom
2014-11-15 19:32 - 2014-11-15 19:32 - 00000000 ____D () C:\Program Files (x86)\TabletPlugins
2014-11-15 19:32 - 2014-11-05 02:49 - 02029336 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01995544 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01988888 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01863448 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01626392 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01617176 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01610008 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01497368 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2014-11-15 18:15 - 2014-11-15 18:15 - 00000000 ____D () C:\Users\Все пользователи\ATI
2014-11-15 18:15 - 2014-11-15 18:15 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\AMD
2014-11-15 18:15 - 2014-11-15 18:15 - 00000000 ____D () C:\ProgramData\ATI
2014-11-15 18:14 - 2014-11-15 18:14 - 00056548 _____ () C:\Windows\SysWOW64\CCCInstall_201411151914145791.log
2014-11-15 18:14 - 2014-11-15 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-11-15 18:14 - 2014-11-15 18:14 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-11-14 11:11 - 2014-11-14 11:11 - 00002477 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalMedia Theatre 6.lnk
2014-11-13 20:46 - 2014-11-13 20:46 - 00000000 ____D () C:\Users\Vladimir\Documents\ArcSoft
2014-11-13 20:45 - 2014-11-13 20:46 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\ArcSoft
2014-11-13 20:42 - 2014-11-13 20:46 - 00000000 ____D () C:\Users\Public\ArcSoft
2014-11-13 20:42 - 2014-11-13 20:42 - 00000000 ____D () C:\Users\Все пользователи\ArcSoft
2014-11-13 20:42 - 2014-11-13 20:42 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\ArcSoft
2014-11-13 20:42 - 2014-11-13 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 6
2014-11-13 20:42 - 2014-11-13 20:42 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-11-13 20:42 - 2013-11-20 08:57 - 03315392 _____ () C:\Windows\system32\Drivers\ArcCtrl.sys
2014-11-13 20:42 - 2013-09-14 13:54 - 00009883 _____ () C:\Windows\system32\Drivers\win81_64logo.cat
2014-11-13 20:42 - 2012-06-11 17:42 - 00080488 _____ (ArcSoft Inc.) C:\Windows\system32\MMCEDT6.exe
2014-11-13 20:41 - 2014-11-13 20:41 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Downloaded Installations
2014-11-13 20:41 - 2014-11-13 20:41 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-11-06 11:40 - 2014-11-06 11:40 - 09314984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 07208104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 07028336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 01118208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-11-06 11:40 - 2014-11-06 11:40 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-11-06 11:37 - 2014-11-06 11:37 - 00297672 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-11-06 11:36 - 2014-11-06 11:36 - 16756736 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-11-06 11:08 - 2014-11-06 11:08 - 00235008 _____ () C:\Windows\system32\clinfo.exe
2014-11-06 11:08 - 2014-11-06 11:08 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-11-06 11:07 - 2014-11-06 11:07 - 33869824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-11-06 11:07 - 2014-11-06 11:07 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-11-06 11:07 - 2014-11-06 11:07 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-11-06 11:07 - 2014-11-06 11:07 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-11-06 11:05 - 2014-11-06 11:05 - 28772352 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-11-06 11:03 - 2014-11-06 11:03 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-11-06 11:03 - 2014-11-06 11:03 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-11-06 10:52 - 2014-11-06 10:52 - 00418304 _____ () C:\Windows\system32\amdmiracast.dll
2014-11-06 10:51 - 2014-11-06 10:51 - 00134656 _____ () C:\Windows\system32\amdhdl64.dll
2014-11-06 10:51 - 2014-11-06 10:51 - 00123392 _____ () C:\Windows\SysWOW64\amdhdl32.dll
2014-11-06 10:50 - 2014-11-06 10:50 - 28356608 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-11-06 10:49 - 2014-11-06 10:49 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-11-06 10:49 - 2014-11-06 10:49 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-11-06 10:48 - 2014-11-06 10:48 - 05834752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-11-06 10:41 - 2014-11-06 10:41 - 04589056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-11-06 10:37 - 2014-11-06 10:37 - 00625976 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-11-06 10:37 - 2014-11-06 10:37 - 00625976 _____ () C:\Windows\system32\atiapfxx.blb
2014-11-06 10:37 - 2014-11-06 10:37 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-11-06 10:37 - 2014-11-06 10:37 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-11-06 10:37 - 2014-11-06 10:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-11-06 10:37 - 2014-11-06 10:37 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-11-06 10:36 - 2014-11-06 10:36 - 23627264 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-11-06 10:36 - 2014-11-06 10:36 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-11-06 10:36 - 2014-11-06 10:36 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-11-06 10:34 - 2014-11-06 10:34 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-11-06 10:34 - 2014-11-06 10:34 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-11-06 10:34 - 2014-11-06 10:34 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-11-06 10:31 - 2014-11-06 10:31 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-11-06 10:31 - 2014-11-06 10:31 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-11-06 10:28 - 2014-11-06 10:28 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-11-06 10:26 - 2014-11-06 10:26 - 00623616 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-11-06 10:26 - 2014-11-06 10:26 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-11-06 10:25 - 2014-11-06 10:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-11-06 10:25 - 2014-11-06 10:25 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-11-06 10:24 - 2014-11-06 10:24 - 00839168 _____ (AMD) C:\Windows\system32\coinst_14.30.dll
2014-11-06 10:20 - 2014-11-06 10:20 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-11-06 10:14 - 2014-11-06 10:14 - 00901120 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00581120 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-11-06 10:14 - 2014-11-06 10:14 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-11-06 10:14 - 2014-11-06 10:14 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-11-06 10:09 - 2014-11-06 10:09 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-11-05 21:17 - 2014-11-05 21:17 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-11-05 21:13 - 2014-11-05 21:13 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-01 01:26 - 2014-05-09 18:56 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\uTorrent
2014-12-01 01:24 - 2014-05-09 15:28 - 02068490 _____ () C:\Windows\WindowsUpdate.log
2014-12-01 01:16 - 2014-05-09 15:40 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3074703722-1488665831-1995059848-1001
2014-12-01 01:16 - 2014-03-18 18:17 - 00005430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-01 01:16 - 2014-03-18 17:31 - 03400552 _____ () C:\Windows\system32\perfh019.dat
2014-12-01 01:16 - 2014-03-18 17:31 - 01063166 _____ () C:\Windows\system32\perfc019.dat
2014-12-01 01:11 - 2014-05-09 20:02 - 00001002 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-01 01:11 - 2014-05-09 15:35 - 00000000 ___DO () C:\Users\Vladimir\OneDrive
2014-12-01 01:11 - 2014-05-09 15:33 - 00000000 ____D () C:\Users\Vladimir
2014-12-01 01:11 - 2013-08-22 22:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-01 01:00 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sru
2014-12-01 00:53 - 2013-08-22 21:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-01 00:52 - 2013-08-22 22:44 - 05175112 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-01 00:36 - 2014-05-09 20:02 - 00001006 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-01 00:31 - 2014-05-09 20:36 - 00000896 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-30 02:00 - 2014-05-09 19:18 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Adobe
2014-11-29 19:02 - 2014-08-01 23:27 - 00000000 ____D () C:\Windows\Minidump
2014-11-29 15:29 - 2013-08-22 22:46 - 00057918 _____ () C:\Windows\setupact.log
2014-11-29 13:01 - 2014-05-09 20:22 - 00001456 _____ () C:\Users\Vladimir\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-11-29 00:13 - 2014-05-09 22:23 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\CrashDumps
2014-11-28 12:16 - 2014-06-12 22:24 - 00000000 ____D () C:\flow3
2014-11-28 10:42 - 2013-08-22 23:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-11-27 12:06 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\rescache
2014-11-27 11:30 - 2014-05-09 15:34 - 00000000 ____D () C:\Users\Все пользователи\KMSAutoS
2014-11-27 11:30 - 2014-05-09 15:34 - 00000000 ____D () C:\ProgramData\KMSAutoS
2014-11-26 11:32 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-11-26 11:31 - 2014-05-09 20:36 - 00003784 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-25 20:19 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-25 20:19 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-25 20:19 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-25 20:19 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-25 20:14 - 2014-05-13 22:28 - 00000000 ____D () C:\Users\Все пользователи\Package Cache
2014-11-25 20:14 - 2014-05-13 22:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-25 16:21 - 2014-07-11 00:44 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-25 16:20 - 2014-03-18 07:04 - 00099336 _____ () C:\Windows\PFRO.log
2014-11-25 01:49 - 2014-05-11 13:55 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-25 01:49 - 2013-08-22 23:36 - 00000000 ___RD () C:\Windows\ToastData
2014-11-25 01:49 - 2013-08-22 23:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-11-25 01:47 - 2014-05-11 13:55 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-25 00:36 - 2014-05-09 15:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-24 09:45 - 2014-05-09 15:35 - 00003984 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{A69F27C1-8389-4B2F-A2E1-6F7C369BFDF2}
2014-11-24 02:59 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-24 00:31 - 2014-05-09 20:02 - 00003978 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-24 00:31 - 2014-05-09 20:02 - 00003742 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-21 04:51 - 2013-08-22 23:38 - 00714208 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-21 04:51 - 2013-08-22 23:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-20 02:15 - 2014-09-19 14:16 - 00003718 _____ () C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2014-11-15 19:32 - 2014-06-15 00:23 - 00000000 ____D () C:\Program Files\TabletPlugins
2014-11-15 18:14 - 2014-06-14 07:43 - 00000000 ____D () C:\Users\Все пользователи\AMD
2014-11-15 18:14 - 2014-06-14 07:43 - 00000000 ____D () C:\ProgramData\AMD
2014-11-15 18:13 - 2014-06-14 07:42 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-11-13 20:42 - 2014-05-09 18:41 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-11 02:26 - 2014-05-09 15:34 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Adobe
2014-11-06 11:40 - 2014-04-18 10:43 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-11-06 11:40 - 2014-04-18 10:42 - 10889312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-11-06 11:40 - 2014-04-18 10:42 - 08045488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-11-06 11:40 - 2014-04-18 10:42 - 01342248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-11-06 11:40 - 2014-04-18 10:42 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-11-06 11:39 - 2014-04-18 10:42 - 08295784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-11-06 10:26 - 2014-04-18 09:30 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-11-06 10:14 - 2014-04-18 09:09 - 01211392 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
Some content of TEMP:
====================
C:\Users\Vladimir\AppData\Local\Temp\AcDeltree.exe
C:\Users\Vladimir\AppData\Local\Temp\msvcp60.dll
C:\Users\Vladimir\AppData\Local\Temp\nvStInst.exe
C:\Users\Vladimir\AppData\Local\Temp\optprosetup.exe
C:\Users\Vladimir\AppData\Local\Temp\tmp9C32.exe
C:\Users\Vladimir\AppData\Local\Temp\tmpF0DD.exe
C:\Users\Vladimir\AppData\Local\Temp\twapi-2.0a2.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-25 11:01
==================== End Of Log ============================Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-11-2014
Ran by Vladimir at 2014-12-01 01:27:24
Running from C:\Users\Vladimir\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
2ГИС 3.14.9.0 (HKLM-x32\...\{61993DF3-0FD9-47A2-AC2D-DCB82BEDE0E6}) (Version: 3.14.9.0 - ООО "ДубльГИС")
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.2.1 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Russian (HKLM-x32\...\{AC76BA86-7AD7-1049-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{178849B8-9A23-5478-D850-9712A01E561D}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ArcSoft TotalMedia Theatre 6 (HKLM-x32\...\InstallShield_{5232358C-7C23-4319-8271-E43F924196AC}) (Version: 6.7.1.199 - ArcSoft)
ArcSoft TotalMedia Theatre 6 (x32 Version: 6.7.1.199 - ArcSoft) Hidden
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Atrise Lutcurve 2.2.0 (HKLM-x32\...\Atrise Lutcurve) (Version: 2.2.0 - Atrise Software)
AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Help - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD Architecture 2013 Help - Русский (Russian) (HKLM\...\AutoCAD Architecture 2013 Help - Русский (Russian)) (Version: 7.0.50.0 - Autodesk)
AutoCAD Architecture 2013 Help - Русский (Russian) (Version: 7.0.50.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.8.5.800 - Autodesk)
Autodesk 3ds Max 2014 (HKLM\...\Autodesk 3ds Max 2014) (Version: 16.0.420.0 - Autodesk)
Autodesk 3ds Max 2014 (Version: 16.0.420.0 - Autodesk) Hidden
Autodesk 3ds Max 2014 64-bit Populate Data (HKLM\...\{7491836B-659E-47DD-ABBF-F875AD48FD10}) (Version: 1.0.0.1 - Autodesk)
Autodesk 3ds Max 2015 (HKLM\...\Autodesk 3ds Max 2015) (Version: 17.0.630.0 - Autodesk)
Autodesk 3ds Max 2015 (Version: 17.0.630.0 - Autodesk) Hidden
Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 2.2.12.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD 2015 Help - English (HKLM\...\AutoCAD 2015 Help - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk Backburner 2014 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 14.0.0.0 - Autodesk, Inc.)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk Composite 2014 (HKLM\...\Autodesk Composite 2014) (Version: 9.0.0.0 - Autodesk)
Autodesk Composite 2014 (Version: 9.0.0.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk DirectConnect 2014 64-bit (HKLM\...\Autodesk DirectConnect 2014 64-bit) (Version: 8.0.56.1 - Autodesk)
Autodesk DirectConnect 2014 64-bit (Version: 8.0.56.1 - Autodesk) Hidden
Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk)
Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden
Autodesk Essential Skills Movies for 3ds Max 2014 64-bit (HKLM\...\{E8814D63-BB76-4C89-A25E-264ECF11D00D}) (Version: 1.2.0.0 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2014 64-bit (HKLM\...\{009751C6-22D7-4548-A313-AD48FA57076F}) (Version: 16.0 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2015 (HKLM\...\{9167CA34-4E48-49E3-8892-3C439739D2D3}) (Version: 17.0 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2014 (HKLM-x32\...\{A0633D4E-5AF2-4E3E-A70A-FE9C2BD8A958}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)
Autodesk ReCap (Version: 1.3.1.39 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2014 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.107.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.107.0 - Autodesk) Hidden
Brackets (HKLM-x32\...\{ABCC2682-885E-47D9-9EB8-2785C3FD82E3}) (Version: 1.0 - brackets.io)
CGS17_Setup_x64 (Version: 17.0 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - EN (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0.0.707 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - RU (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Duplicate File Remover (HKLM-x32\...\{5AFA81C6-6DE9-49b0-B2C1-D53763632D59}_is1) (Version: 3.5 - Essential Data Tools)
Easy GIF Animator 6.1 (HKLM-x32\...\Easy GIF Animator_is1) (Version: Easy GIF Animator 6.0 - Karlis Blumentals)
Evernote v. 5.7.2 (HKLM-x32\...\{FB57263E-706F-11E4-A65F-00163E98E7D6}) (Version: 5.7.2.5753 - Evernote Corp.)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FileZilla Client 3.9.0.6 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Планета Земля (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Handy Recovery 5.5 (HKLM-x32\...\{4196D960-68B0-4BEB-B312-3C1B4654068D}) (Version: 5.5 - SoftLogica)
HashTab 5.2.0.14 (HKLM\...\HashTab) (Version: 5.2.0.14 - Implbits Software)
Intel® C++ Redistributables for Windows* on Intel® 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel® Smart Connect Technology (HKLM\...\{14B883B3-A95B-42F0-81A6-8B1A0C831E82}) (Version: 4.2.40.2439 - Intel Corporation)
Intel® Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{51adbf11-493f-431c-a862-967a0fae2944}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 33.1.1 (x86 ru) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 ru)) (Version: 33.1.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MPC-HC 1.7.5 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.5 - MPC-HC Team)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Perfect Resize 7.5.1 (HKLM-x32\...\{EFBAD7A9-39AB-4C34-8745-0DEBA5BDC793}) (Version: 7.5.1 - onOne Software)
Polyhedral Mesh To Solid (HKLM-x32\...\Polyhedral Mesh To Solid 2.0.5) (Version: 2.0.5 - CodeDog Technologies)
Polyhedral Mesh To Solid (Version: 2.0.5 - CodeDog Technologies) Hidden
Poser Pro 2014 (HKLM\...\Poser Pro 2014 English_is1) (Version: 10.0.0 - Smith Micro Software, Inc.)
PoserContent2014 (HKLM\...\Poser Pro 2014_is1) (Version: 10.0.0 - Smith Micro Software, Inc.)
PoserFusion for 3ds Max (HKLM-x32\...\PoserFusion for 3ds Max_is1) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
SolidRocks for max 2013 V1.2.4 (HKLM-x32\...\SolidRocks for max 2013) (Version: V1.2.4 - E.I Subburb)
UNi Xonar Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - )
UxStyle (HKLM-x32\...\{05560347-3a9b-4644-a8ed-8b64cc947189}) (Version: 0.2.3.0 - The Within Network, LLC)
UxStyle (Version: 0.2.3.0 - The Within Network, LLC) Hidden
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
V-Ray for 3dsmax 2014 for x64 (HKLM\...\V-Ray for 3dsmax 2014 for x64) (Version: 2.40.04 - Chaos Software Ltd)
V-Ray for 3dsmax 2015 for x64 (HKLM\...\V-Ray for 3dsmax 2015 for x64) (Version: 3.00.07 - Chaos Software Ltd)
WD SmartWare (HKLM\...\{6F482C75-174D-42EB-A2CF-B00A1F354F7B}) (Version: 1.4.1.1 - Western Digital)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
WinRAR 5.10 бета 4 (64-разрядная) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
Данные 2ГИС г.Чита 01.11.2014 (HKLM-x32\...\{2205CA95-74E3-4441-A650-A9B428D825EA}) (Version: 31.0.0 - ООО "ДубльГИС")
Импорт SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Пакет локализации Autodesk Content Service (x32 Version: 3.0.84.1 - Autodesk) Hidden
Планшет Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.10w2 - Wacom Technology Corp.)
Рекомендованные приложения Autodesk (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll No File
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe No File
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll No File
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3074703722-1488665831-1995059848-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll No File
==================== Restore Points =========================
15-11-2014 10:13:09 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
22-11-2014 10:13:34 Запланированная контрольная точка
25-11-2014 12:12:44 Installed Evernote v. 5.7.2
30-11-2014 09:45:44 Installed Brackets
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 21:25 - 2014-11-13 20:44 - 00000881 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 intouch.arcsoft.com
127.0.0.1 arcsoft.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {3FD23E75-ECC6-4F6A-A4BB-DCEC12FBBF5C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {515A7D8C-8255-4407-801A-7711C4645E1B} - System32\Tasks\Задачи просмотра событий\System_Microsoft-Windows-Kernel-General_12 => C:\Program Files\MPC-HC\mpc-hc64.exe [2014-05-01] (MPC-HC Team)
Task: {55F2018B-098B-44B9-98B5-D96FD0C2F02F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {78E21D8C-2B6E-499C-B669-6BEC5DE4D666} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {7D915F90-FD00-4C4A-9C94-D89E0E1FE59C} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [2014-03-16] (MSfree Inc.)
Task: {A2A3AE30-0400-498A-A45C-C5CD6696D5E3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-26] (Adobe Systems Incorporated)
Task: {C1218631-96CF-49AD-81C9-8C57CA4AD541} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-11-25] (Microsoft Corporation)
Task: {F9511E1B-616F-43D2-8F7F-A6B2182A4342} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {F9E86EEB-6207-4C21-9598-14555FAC4529} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-voodarius@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-09-15 12:19 - 2011-09-15 12:19 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
2010-09-08 09:45 - 2010-09-08 09:45 - 01034752 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\WDFME.exe
2010-09-08 09:44 - 2010-09-08 09:44 - 00485376 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDSC.exe
2014-05-02 03:29 - 2014-05-02 03:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-11-15 19:32 - 2014-11-05 02:49 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2014-05-16 00:18 - 2008-07-11 13:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe
2014-05-16 00:18 - 2008-07-11 13:03 - 00282112 ____N () C:\Windows\System\HsMgr64.exe
2014-05-27 17:40 - 2014-04-01 14:07 - 00047496 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-05-27 17:40 - 2014-04-01 14:07 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2010-03-05 09:24 - 2010-03-05 09:24 - 00886272 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\System.Data.SQLite.dll
2014-05-16 00:18 - 2012-06-06 07:56 - 00143360 ____N () C:\Program Files\UNi Xonar Audio\Customapp\VmixP8.dll
2014-11-19 22:14 - 2014-11-19 22:14 - 00438336 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2014-11-19 22:14 - 2014-11-19 22:14 - 00320064 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2014-05-09 18:41 - 2013-09-03 15:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-11-24 01:40 - 2014-11-24 01:40 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Vladimir\OneDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run32: => "AdobeCEPServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-3074703722-1488665831-1995059848-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
========================= Accounts: ==========================
Vladimir (S-1-5-21-3074703722-1488665831-1995059848-1001 - Administrator - Enabled) => C:\Users\Vladimir
Администратор (S-1-5-21-3074703722-1488665831-1995059848-500 - Administrator - Disabled)
Гость (S-1-5-21-3074703722-1488665831-1995059848-501 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: При выгрузке строк счетчиков производительности для службы WmiApRpl (WmiApRpl) произошел сбой. Первое двойное слово (DWORD) в секции данных содержит код ошибки.
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Строки производительности в значении реестра производительности были повреждены, когда выполнялась обработка поставщика расширенных счетчиков производительности Performance. Значение параметра BaseIndex из реестра производительности находится в первом двойном слове (DWORD) секции данных, значение LastCounter - во втором двойном слове (DWORD) секции данных, а значение LastHelp - в третьем двойном слове (DWORD) секции данных.
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Строки производительности в значении реестра производительности были повреждены, когда выполнялась обработка поставщика расширенных счетчиков производительности Performance. Значение параметра BaseIndex из реестра производительности находится в первом двойном слове (DWORD) секции данных, значение LastCounter - во втором двойном слове (DWORD) секции данных, а значение LastHelp - в третьем двойном слове (DWORD) секции данных.
Error: (12/01/2014 01:11:37 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: При выгрузке строк счетчиков производительности для службы WmiApRpl (WmiApRpl) произошел сбой. Первое двойное слово (DWORD) в секции данных содержит код ошибки.
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Строки производительности в значении реестра производительности были повреждены, когда выполнялась обработка поставщика расширенных счетчиков производительности Performance. Значение параметра BaseIndex из реестра производительности находится в первом двойном слове (DWORD) секции данных, значение LastCounter - во втором двойном слове (DWORD) секции данных, а значение LastHelp - в третьем двойном слове (DWORD) секции данных.
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Строки производительности в значении реестра производительности были повреждены, когда выполнялась обработка поставщика расширенных счетчиков производительности Performance. Значение параметра BaseIndex из реестра производительности находится в первом двойном слове (DWORD) секции данных, значение LastCounter - во втором двойном слове (DWORD) секции данных, а значение LastHelp - в третьем двойном слове (DWORD) секции данных.
Error: (12/01/2014 00:54:11 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
Error: (12/01/2014 00:53:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Имя сбойного приложения: Wacom_Tablet.exe, версия: 6.3.10.2, метка времени: 0x54591e03
Имя сбойного модуля: MSVCR110.dll, версия: 11.0.51106.1, метка времени: 0x5098826e
Код исключения: 0xc0000409
Смещение ошибки: 0x00000000000740c4
Идентификатор сбойного процесса: 0x26c
Время запуска сбойного приложения: 0xWacom_Tablet.exe0
Путь сбойного приложения: Wacom_Tablet.exe1
Путь сбойного модуля: Wacom_Tablet.exe2
Идентификатор отчета: Wacom_Tablet.exe3
Полное имя сбойного пакета: Wacom_Tablet.exe4
Код приложения, связанного со сбойным пакетом: Wacom_Tablet.exe5
Error: (12/01/2014 00:52:33 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
System errors:
=============
Error: (12/01/2014 01:11:37 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Превышение времени ожидания (30000 мс) при ожидании подключения службы "Optimizer Pro Crash Monitor".
Error: (12/01/2014 01:11:07 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 0:53:41 на 01.12.2014 было неожиданным.
Error: (12/01/2014 00:54:11 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Превышение времени ожидания (30000 мс) при ожидании подключения службы "Optimizer Pro Crash Monitor".
Error: (12/01/2014 00:52:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Превышение времени ожидания (30000 мс) при ожидании подключения службы "Optimizer Pro Crash Monitor".
Error: (12/01/2014 00:52:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 0:27:09 на 01.12.2014 было неожиданным.
Error: (11/29/2014 07:02:42 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000050 (0xffffe0000000002c, 0x0000000000000000, 0xfffff80088238a98, 0x0000000000000002)C:\Windows\MEMORY.DMP112914-8234-01
Error: (11/29/2014 07:02:41 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 18:58:56 на 29.11.2014 было неожиданным.
Error: (11/29/2014 00:16:42 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 23:51:20 на 28.11.2014 было неожиданным.
Error: (11/28/2014 09:51:20 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 21:15:49 на 28.11.2014 было неожиданным.
Error: (11/28/2014 09:15:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Предыдущее завершение работы системы в 21:10:43 на 28.11.2014 было неожиданным.
Microsoft Office Sessions:
=========================
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F2030000E5050000
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance163707000000000000000000008F020000
Error: (12/01/2014 01:16:48 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance163707000000000000000000008F020000
Error: (12/01/2014 01:11:37 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F2030000E5050000
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance163707000000000000000000008F020000
Error: (12/01/2014 00:58:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance163707000000000000000000008F020000
Error: (12/01/2014 00:54:11 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
Error: (12/01/2014 00:53:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Wacom_Tablet.exe6.3.10.254591e03MSVCR110.dll11.0.51106.15098826ec000040900000000000740c426c01d00cbe0f353c01C:\Program Files\Tablet\Wacom\Wacom_Tablet.exeC:\Program Files\Tablet\Wacom\MSVCR110.dll61c4037c-78b1-11e4-82f4-afdf2aebbdc6
Error: (12/01/2014 00:52:33 AM) (Source: ISCTAgent) (EventID: 1000) (User: )
Description: ISCT - CISCTPnpDriverApi::CreateInstance *****Unable to open the ISCT device driver
CodeIntegrity Errors:
===================================
Date: 2014-05-14 10:47:58.724
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.701
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.677
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.655
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.632
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.609
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.586
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.563
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.540
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
Date: 2014-05-14 10:47:58.517
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Vladimir\Downloads\AutoCAD 2015 J.51.0.0 Portable by Kriks\AutoCAD 2015 - English.exe because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel® Core™ i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 28%
Total physical RAM: 8121.56 MB
Available physical RAM: 5795.79 MB
Total Pagefile: 16313.56 MB
Available Pagefile: 13757.3 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB
==================== Drives ================================
Drive c: (Sys) (Fixed) (Total:111.79 GB) (Free:27.27 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:698.63 GB) (Free:503.91 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: E93E9AED)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 698.6 GB) (Disk ID: C3402152)
Partition 2: (Not Active) - (Size=698.6 GB) - (Type=OF Extended)
==================== End Of Log ============================
