Dobrý den.
Již asi dva dny mě zamrzne pc, at se děje cokoliv nebo i když je počítač v klidu.
Pomalu mě načítá pc, když ho spouštim. Zamrzne logo Windows a musím počkat, než se to načte.
Včera jsem asi 10x restartoval pc. To vždy pomůže, ale za nějakou dobu opět zamrzne.
Prosím o kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.05.2018 01
Ran by arkar (administrator) on ARKAR-PC (25-05-2018 13:56:52)
Running from C:\Users\arkar\Desktop
Loaded Profiles: arkar (Available Profiles: arkar)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-05-11] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2017-03-28] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364136 2018-05-15] (Piriform Ltd)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\MountPoints2: {44cc1a05-098f-11e8-be67-001fc68db5e3} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A6224C50-8A3D-49A5-B0C7-BE2EFE1885F0}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?hl=cs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w18&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-05-11] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-05-11] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: No Name -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> No File
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: doc31r5t.default
FF ProfilePath: C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default [2018-05-25]
FF user.js: detected! => C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\user.js [2018-04-30]
FF Homepage: Mozilla\Firefox\Profiles\doc31r5t.default -> hxxps://www.google.com/
FF Extension: (Web Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\contact@web-security.com.xpi [2018-04-30]
FF Extension: (Video Downloader professional) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\ffext_basicvideoext@startpage24.xpi [2018-03-24]
FF Extension: (Avast SafePrice) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\sp@avast.com.xpi [2018-05-17]
FF Extension: (Google Translator for Firefox) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\translator@zoli.bod.xpi [2018-01-18]
FF Extension: (Avast Online Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\wrc@avast.com.xpi [2018-01-09]
FF Extension: (Video DownloadHelper) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-23]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-08] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7620096 2018-05-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2018-05-11] (AVAST Software)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [196640 2018-05-11] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [227504 2018-03-04] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199440 2018-03-04] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343752 2018-03-04] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57680 2018-03-04] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [234560 2018-05-11] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-05-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159120 2018-05-11] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111360 2018-05-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-05-11] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-05-11] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460520 2018-05-11] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [205976 2018-05-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381552 2018-05-11] (AVAST Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-01-09] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2018-01-09] ()
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-25 13:56 - 2018-05-25 13:57 - 000011770 _____ C:\Users\arkar\Desktop\FRST.txt
2018-05-25 13:55 - 2018-05-25 13:56 - 000000000 ____D C:\FRST
2018-05-25 13:55 - 2018-05-25 13:55 - 002413056 _____ (Farbar) C:\Users\arkar\Desktop\FRST64.exe
2018-05-24 23:12 - 2018-05-24 23:12 - 000032630 _____ C:\Users\arkar\Documents\cc_20180524_231249.reg
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\Users\arkar\AppData\Roaming\BC Soft Games
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\ProgramData\BC Soft Games
2018-05-21 19:44 - 2018-05-21 19:44 - 000000000 ____D C:\Users\arkar\AppData\Roaming\AlawarEntertainment
2018-05-21 19:38 - 2018-05-24 23:10 - 000000000 ____D C:\Program Files (x86)\Alawar
2018-05-18 12:40 - 2018-05-18 12:40 - 000001156 _____ C:\Users\arkar\Documents\cc_20180518_124013.reg
2018-05-17 10:14 - 2018-05-18 11:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-05-13 01:49 - 2018-05-13 01:50 - 007271632 _____ (Malwarebytes) C:\Users\arkar\Desktop\adwcleaner_7.1.1.exe
2018-05-12 19:24 - 2018-05-12 19:30 - 120117763 _____ C:\Users\arkar\Desktop\starfist_3.zip
2018-05-12 19:10 - 2018-05-12 19:10 - 002584393 _____ C:\Users\arkar\Desktop\tfzgjhj.rar
2018-05-12 19:07 - 2018-05-12 19:08 - 010786839 _____ C:\Users\arkar\Desktop\uhijok.rar
2018-05-12 18:04 - 2018-05-12 18:04 - 000002970 _____ C:\Users\arkar\Documents\cc_20180512_180435.reg
2018-05-12 18:03 - 2018-05-12 18:03 - 000002778 _____ C:\Users\arkar\Documents\cc_20180512_180309.reg
2018-05-12 16:44 - 2018-05-12 16:44 - 000000000 ____D C:\Users\arkar\Documents\My Games
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\Public\Documents\Creative
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\arkar\ansel
2018-05-12 15:08 - 2018-05-12 15:14 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Settlement. Colossus
2018-05-12 14:55 - 2018-05-12 17:59 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-12 14:49 - 2018-05-12 14:49 - 000000000 ____D C:\Users\arkar\AppData\Local\Steam
2018-05-12 13:47 - 2018-05-12 13:47 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-05-12 13:00 - 2018-05-12 13:00 - 000000000 ____D C:\ProgramData\SugarGames
2018-05-11 12:45 - 2018-05-11 12:45 - 000376536 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-05-09 10:24 - 2018-05-09 10:24 - 000004216 _____ C:\Users\arkar\Documents\cc_20180509_102429.reg
2018-05-09 10:24 - 2018-05-09 10:24 - 000002844 _____ C:\Users\arkar\Documents\cc_20180509_102441.reg
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-05-09 04:43 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2018-05-09 04:43 - 2017-12-09 00:25 - 000798520 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:25 - 000490808 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-05-09 04:43 - 2017-12-09 00:24 - 000928568 _____ C:\Windows\system32\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:24 - 000591672 _____ C:\Windows\system32\vulkaninfo.exe
2018-05-09 04:35 - 2018-04-23 20:57 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 20:02 - 000348832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 005583552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:35 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-05-09 04:35 - 2018-04-23 02:35 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-05-09 04:35 - 2018-04-23 02:35 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-05-09 04:35 - 2018-04-23 02:12 - 004047040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-05-09 04:35 - 2018-04-23 02:12 - 003958464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:10 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-05-09 04:35 - 2018-04-23 02:07 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:44 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:32 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 04:35 - 2018-04-23 01:32 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-05-09 04:35 - 2018-04-23 01:32 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 04:35 - 2018-04-23 01:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-05-09 04:35 - 2018-04-23 01:27 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-05-09 04:35 - 2018-04-23 01:25 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-09 04:35 - 2018-04-23 01:23 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-05-09 04:35 - 2018-04-23 01:23 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-05-09 04:35 - 2018-04-23 01:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 01:19 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-05-09 04:35 - 2018-04-23 01:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:53 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:53 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 04:35 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:39 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-05-09 04:35 - 2018-04-22 09:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-05-09 04:35 - 2018-04-22 09:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 09:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-05-09 04:35 - 2018-04-22 09:27 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 09:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-05-09 04:35 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:18 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 04:35 - 2018-04-22 09:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 09:08 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-05-09 04:35 - 2018-04-22 09:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 09:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-05-09 04:35 - 2018-04-22 09:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-05-09 04:35 - 2018-04-22 08:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 08:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-05-09 04:35 - 2018-04-22 08:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-05-09 04:35 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-05-09 04:35 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:46 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 08:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-05-09 04:35 - 2018-04-22 08:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 08:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 08:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 08:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-05-09 04:35 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-05-09 04:35 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-05-09 04:35 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-05-09 04:35 - 2018-04-18 18:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 18:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 17:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-09 04:35 - 2018-04-18 17:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-09 04:35 - 2018-04-11 18:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 04:35 - 2018-04-10 21:45 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-05-09 04:35 - 2018-04-10 18:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-09 04:35 - 2018-04-10 18:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-09 04:35 - 2018-04-10 18:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-09 04:35 - 2018-04-10 17:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 04:35 - 2018-04-10 17:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-09 04:35 - 2018-04-07 18:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-09 04:35 - 2018-03-19 00:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-05-09 04:35 - 2018-03-19 00:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-05-09 04:35 - 2018-03-14 19:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 04:35 - 2018-03-14 19:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-05 14:01 - 2012-02-04 03:12 - 000000000 ____D C:\Users\arkar\Desktop\Child_Lincoln
2018-05-04 18:50 - 2018-05-04 18:50 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka
2018-05-02 17:19 - 2018-03-04 02:26 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln
2018-05-02 17:19 - 2017-11-27 01:15 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln; Preston, Douglas
2018-05-02 17:18 - 2015-12-25 12:30 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child & Douglas Preston
2018-05-02 17:18 - 2015-10-07 05:16 - 000000000 ____D C:\Users\arkar\Desktop\Preston, Douglas J. - Child, Lincoln
2018-05-02 17:18 - 2015-09-11 10:56 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child, Douglas Preston
2018-05-02 17:16 - 2015-02-12 05:38 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (3)
2018-05-02 15:48 - 2018-05-02 15:48 - 000000362 _____ C:\Users\arkar\Documents\cc_20180502_154844.reg
2018-05-01 09:42 - 2018-05-01 09:42 - 000001072 _____ C:\Users\arkar\Documents\cc_20180501_094205.reg
2018-05-01 09:41 - 2018-05-01 09:41 - 000013118 _____ C:\Users\arkar\Documents\cc_20180501_094153.reg
2018-04-30 17:51 - 2018-04-30 17:51 - 000000000 ____D C:\Users\arkar\AppData\Local\{8D72BB2E-A9DA-D796-C442-F27EE02A0EE6}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-25 13:50 - 2018-01-09 15:27 - 000000000 ____D C:\Users\arkar\AppData\LocalLow\Mozilla
2018-05-25 13:48 - 2018-01-09 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-25 13:48 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-05-25 10:55 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-05-25 09:14 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-05-25 09:14 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-05-24 20:40 - 2018-04-16 16:35 - 000000000 ____D C:\ProgramData\AlawarWrapper
2018-05-24 14:57 - 2009-07-14 17:18 - 000668542 _____ C:\Windows\system32\perfh005.dat
2018-05-24 14:57 - 2009-07-14 17:18 - 000141202 _____ C:\Windows\system32\perfc005.dat
2018-05-24 14:57 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-05-24 11:05 - 2018-01-09 16:33 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-05-24 11:05 - 2018-01-09 16:33 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-05-18 11:02 - 2018-01-09 15:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-18 02:31 - 2018-03-20 23:24 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-18 02:31 - 2018-03-20 23:24 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-13 01:48 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\AppData\Roaming\uTorrent
2018-05-13 01:47 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\Desktop\Filmy
2018-05-12 22:51 - 2018-01-11 22:37 - 000000000 ____D C:\Users\arkar\AppData\Roaming\vlc
2018-05-12 16:43 - 2018-01-09 07:00 - 000000000 ____D C:\Users\arkar
2018-05-12 15:13 - 2018-01-09 18:05 - 000007602 _____ C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
2018-05-12 13:47 - 2018-01-09 16:31 - 000000950 _____ C:\Users\arkar\Desktop\µTorrent.lnk
2018-05-11 20:42 - 2018-01-10 17:07 - 001557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-05-11 12:46 - 2018-01-09 14:15 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-05-11 12:45 - 2018-01-09 14:15 - 000460520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000381552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000205976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000196640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000159120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000111360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-05-11 12:44 - 2018-01-09 14:15 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-05-11 12:44 - 2018-01-09 14:14 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-05-09 12:10 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-05-09 10:13 - 2009-07-14 06:45 - 000294160 _____ C:\Windows\system32\FNTCACHE.DAT
2018-05-09 04:47 - 2018-01-09 07:12 - 000000000 ____D C:\Windows\system32\MRT
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-05-09 04:43 - 2018-01-09 07:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-05-08 22:22 - 2018-01-09 16:02 - 000000000 ____D C:\Users\arkar\AppData\Local\ElevatedDiagnostics
2018-05-08 22:22 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-05-08 20:50 - 2018-03-14 09:50 - 000004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-08 20:50 - 2018-01-09 16:30 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-05-08 20:50 - 2018-01-09 16:30 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-08 20:50 - 2018-01-09 16:30 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-05-08 20:50 - 2018-01-09 16:30 - 000000000 ____D C:\Windows\system32\Macromed
2018-05-08 20:50 - 2018-01-09 16:29 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-05-01 10:23 - 2018-01-09 16:34 - 000001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-05-01 09:56 - 2018-02-25 15:57 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (2)
2018-05-01 09:56 - 2018-01-10 01:18 - 000000000 ____D C:\Users\arkar\Desktop\KNIHY A
2018-04-28 10:21 - 2009-07-14 07:08 - 000032552 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories =======
2018-01-09 18:05 - 2018-05-12 15:13 - 000007602 _____ () C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-18 00:31
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by arkar (25-05-2018 13:57:46)
Running from C:\Users\arkar\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-01-09 05:00:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3993056730-3010827568-3234898044-500 - Administrator - Disabled)
arkar (S-1-5-21-3993056730-3010827568-3234898044-1001 - Administrator - Enabled) => C:\Users\arkar
Guest (S-1-5-21-3993056730-3010827568-3234898044-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3993056730-3010827568-3234898044-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
µTorrent (HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Flash Player 29 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.72.1082 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
GMX - Enhanced by Google (HKLM-x32\...\{FC7A14BA-ACFA-C53A-1D7A-B5BACDFA663A}) (Version: - )
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Infovox Desktop 2.2 (HKLM-x32\...\{52C32940-C538-40CF-8DE9-B91090F49938}) (Version: 2.220.3 - Acapela Group)
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 60.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 60.0.1 (x64 cs)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01310C59-CDB7-46BF-95EC-770114C8A635} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {01A0F6D3-2E71-44DD-A5A0-0AAB39DDC894} - System32\Tasks\{B2D69A73-6160-4051-A699-1774688C81E6} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\InfovoxDesktop2.220Engine.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {3D26FF5D-3973-40C9-8BD6-427D9ACEE53D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-14] (AVAST Software)
Task: {7F1E1F43-E1BA-43E0-82EA-64ECB9990EFC} - System32\Tasks\{5F46BE14-F13F-4317-90AC-3637EBF5B509} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\Eliska22k_ID22.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {92B8E321-20A2-47C8-911F-C13DA7B6489E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-11] (AVAST Software)
Task: {A4BD2FEB-65E7-4A42-AAA0-2F061EDE9CAA} - \Driver Booster SkipUAC (arkar) -> No File <==== ATTENTION
Task: {B7DC234F-439E-4D36-8EA3-D8566ED995FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-15] (Piriform Ltd)
Task: {D374133C-92E3-4A8E-B658-1896C8B086B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
Task: {E1A138AE-8188-466F-B139-CA7EA53802D8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-15] (Piriform Ltd)
Task: {F3FA9F02-6B6C-4337-9DF0-291652F41CDF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {F8D3ED91-6466-476C-83AA-D22994F30A72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-03-13 13:49 - 2015-11-25 01:39 - 000210944 _____ () C:\Program Files\CDisplayEx\unrarshell.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000402944 _____ () C:\Program Files\CDisplayEx\libwebp.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000044544 _____ () C:\Program Files\CDisplayEx\libwebpdemux.dll
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-05-11 12:44 - 2018-05-11 12:44 - 000736984 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 001069784 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000598232 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-24 23:10 - 2018-05-24 23:10 - 005786256 _____ () C:\Program Files\AVAST Software\Avast\defs\18052408\algo.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-05-11 12:45 - 2018-05-11 12:45 - 000924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-05-25 13:52 - 2018-05-25 13:52 - 005786256 _____ () C:\Program Files\AVAST Software\Avast\defs\18052500\algo.dll
2018-03-04 10:30 - 2018-03-04 10:30 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A424BBB4-C7B8-410B-AA6B-07A010ECC3E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A51FC3EC-8CA0-43DB-A19B-62AD40708341}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C530BB35-0425-4D8A-9D30-91059C95E55D}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D312B4EE-2291-4847-A568-B685FE6AC410}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18EEA46D-B49C-4947-936E-7B19167BC8FB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{844E75EF-8DB8-4AA7-A96A-D5D4369AFBCB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
==================== Restore Points =========================
12-05-2018 21:21:02 Naplánovaný kontrolní bod
20-05-2018 00:25:29 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/24/2018 10:02:45 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:35 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:25 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1664) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1216.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 494) (User: )
Description: taskhost (1664) WebCacheLocal: Obnovení databáze se nezdařilo a došlo k chybě -1216, protože byly zjištěny odkazy na databázi C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat, která již není k dispozici. Databáze nebyla před odebráním (či případným přesunutím nebo přejmenováním) převedena do stavu čistého vypnutí. Databázový stroj nepovolí dokončení obnovení pro tuto instanci, dokud nebude znovu vytvořena instance chybějící databáze. Pokud databáze již skutečně není k dispozici a není již nadále požadována, získáte pokyny týkající se odstranění této chyby ve znalostní bázi Microsoft Knowledge Base nebo po klepnutí na odkaz Další informace na konci této zprávy.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:05 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:01:55 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
System errors:
=============
Error: (05/25/2018 01:48:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/25/2018 01:48:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/25/2018 01:48:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/25/2018 01:48:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/25/2018 01:48:49 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: Protokol PNRP (Peer Name Resolution Protocol) nebylo možné spustit, protože se nezdařilo vytvoření nové identity. Kód chyby: 0x80630801.
Error: (05/25/2018 01:48:49 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: Protokol PNRP (Peer Name Resolution Protocol) nebylo možné spustit, protože se nezdařilo vytvoření nové identity. Kód chyby: 0x80630801.
Error: (05/25/2018 01:48:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/25/2018 01:48:38 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+
Percentage of memory in use: 47%
Total physical RAM: 4094.49 MB
Available physical RAM: 2169.2 MB
Total Virtual: 8187.15 MB
Available Virtual: 6032.51 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:173.4 GB) NTFS
\\?\Volume{b84277c3-f4f8-11e7-a047-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: F6E6F6E6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zamrzání pc, prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Zamrzání pc, prosím o kontrolu logu
ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
BHO-x32: No Name -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2018-01-09] ()
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Zamrzání pc, prosím o kontrolu logu
Tady to je.
Fix result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by arkar (25-05-2018 14:34:50) Run:1
Running from C:\Users\arkar\Desktop
Loaded Profiles: arkar (Available Profiles: arkar)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
BHO-x32: No Name -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2018-01-09] ()
EmptyTemp:
Reboot:
End
*****************
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{FFCB3198-32F3-4E8B-9539-4324694ED664} => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer" => removed successfully
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
MTsensor => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\MTsensor" => removed successfully
MTsensor => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8054972 B
Java, Flash, Steam htmlcache => 6810442 B
Windows/system/drivers => 352553 B
Edge => 0 B
Chrome => 0 B
Firefox => 50724608 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558406 B
systemprofile32 => 70036 B
LocalService => 66228 B
NetworkService => 66228 B
arkar => 396268 B
RecycleBin => 0 B
EmptyTemp: => 127.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:35:11 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by arkar (25-05-2018 14:34:50) Run:1
Running from C:\Users\arkar\Desktop
Loaded Profiles: arkar (Available Profiles: arkar)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld ... &p_w=y1w18
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origi ... w=y1w18&q={searchTerms}
BHO-x32: No Name -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2018-01-09] ()
EmptyTemp:
Reboot:
End
*****************
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{FFCB3198-32F3-4E8B-9539-4324694ED664} => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer" => removed successfully
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
MTsensor => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\MTsensor" => removed successfully
MTsensor => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8054972 B
Java, Flash, Steam htmlcache => 6810442 B
Windows/system/drivers => 352553 B
Edge => 0 B
Chrome => 0 B
Firefox => 50724608 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558406 B
systemprofile32 => 70036 B
LocalService => 66228 B
NetworkService => 66228 B
arkar => 396268 B
RecycleBin => 0 B
EmptyTemp: => 127.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:35:11 ====
Re: Zamrzání pc, prosím o kontrolu logu
vycisti PC s ADWCleanerom a napis, ci su este problemy ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Zamrzání pc, prosím o kontrolu logu
Adw Cleaner mě našel hrozbu z doplňku Firefoxu. Odebral jsem doplněk a pak už sken nic nenašel.
Zatím to vypadá dobře. Pc startuje rychle, nic nezamrzá.
Uvidíme do zítra až neděle, zda nebude pc zamrzat. Do neděle dám vědět.
Zatím díky.
Zatím to vypadá dobře. Pc startuje rychle, nic nezamrzá.
Uvidíme do zítra až neděle, zda nebude pc zamrzat. Do neděle dám vědět.
Zatím díky.
Re: Zamrzání pc, prosím o kontrolu logu
za malo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Zamrzání pc, prosím o kontrolu logu
Dobré ráno.
Včera kolem půlnoci se mě pc opět seklo a musel jsem ho na bedně vypnout. Po opravě zde do té doby fungoval.
Dnes ráno normálně naběhlo (neseklo se ani logo) a zatím funguje vše dobře.
Začínám mít obavu, že to bude vadnej hdd nebo něco takového.
Avast a Adw Cleaner nic nenašli.
Edidt: Tak ted se mě pc zase seklo. Po restartu se seklo i logo.
Tady je novej log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.05.2018 01
Ran by arkar (administrator) on ARKAR-PC (27-05-2018 09:41:05)
Running from C:\Users\arkar\Desktop
Loaded Profiles: arkar (Available Profiles: arkar)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-05-11] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2017-03-28] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\MountPoints2: {44cc1a05-098f-11e8-be67-001fc68db5e3} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A6224C50-8A3D-49A5-B0C7-BE2EFE1885F0}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?hl=cs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-05-11] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-05-11] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: doc31r5t.default
FF ProfilePath: C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default [2018-05-27]
FF user.js: detected! => C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\user.js [2018-04-30]
FF Homepage: Mozilla\Firefox\Profiles\doc31r5t.default -> hxxps://www.google.com/
FF Extension: (Web Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\contact@web-security.com.xpi [2018-04-30]
FF Extension: (Avast SafePrice) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\sp@avast.com.xpi [2018-05-17]
FF Extension: (Google Translator for Firefox) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\translator@zoli.bod.xpi [2018-01-18]
FF Extension: (Avast Online Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\wrc@avast.com.xpi [2018-05-27]
FF Extension: (TLS 1.3 gradual roll-out fallback-limit) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\features\{a9f07e6e-eca2-409a-9ea5-03f71fe52b92}\tls13-version-fallback-rollout-bug1462099@mozilla.org.xpi [2018-05-25] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-08] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7620096 2018-05-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2018-05-11] (AVAST Software)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [196640 2018-05-11] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [227504 2018-03-04] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199440 2018-03-04] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343752 2018-03-04] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57680 2018-03-04] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [234560 2018-05-11] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-05-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159120 2018-05-11] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111360 2018-05-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-05-11] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-05-11] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460520 2018-05-11] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [205976 2018-05-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381552 2018-05-11] (AVAST Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-01-09] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-27 09:41 - 2018-05-27 09:41 - 000010090 _____ C:\Users\arkar\Desktop\FRST.txt
2018-05-27 09:40 - 2018-05-27 09:40 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (5)
2018-05-25 13:55 - 2018-05-27 09:41 - 000000000 ____D C:\FRST
2018-05-25 13:55 - 2018-05-25 13:55 - 002413056 _____ (Farbar) C:\Users\arkar\Desktop\FRST64.exe
2018-05-24 23:12 - 2018-05-24 23:12 - 000032630 _____ C:\Users\arkar\Documents\cc_20180524_231249.reg
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\Users\arkar\AppData\Roaming\BC Soft Games
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\ProgramData\BC Soft Games
2018-05-21 19:44 - 2018-05-21 19:44 - 000000000 ____D C:\Users\arkar\AppData\Roaming\AlawarEntertainment
2018-05-21 19:38 - 2018-05-24 23:10 - 000000000 ____D C:\Program Files (x86)\Alawar
2018-05-18 12:40 - 2018-05-18 12:40 - 000001156 _____ C:\Users\arkar\Documents\cc_20180518_124013.reg
2018-05-17 10:14 - 2018-05-18 11:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-05-13 01:49 - 2018-05-13 01:50 - 007271632 _____ (Malwarebytes) C:\Users\arkar\Desktop\adwcleaner_7.1.1.exe
2018-05-12 19:24 - 2018-05-12 19:30 - 120117763 _____ C:\Users\arkar\Desktop\starfist_3.zip
2018-05-12 19:10 - 2018-05-12 19:10 - 002584393 _____ C:\Users\arkar\Desktop\tfzgjhj.rar
2018-05-12 19:07 - 2018-05-12 19:08 - 010786839 _____ C:\Users\arkar\Desktop\uhijok.rar
2018-05-12 18:04 - 2018-05-12 18:04 - 000002970 _____ C:\Users\arkar\Documents\cc_20180512_180435.reg
2018-05-12 18:03 - 2018-05-12 18:03 - 000002778 _____ C:\Users\arkar\Documents\cc_20180512_180309.reg
2018-05-12 16:44 - 2018-05-12 16:44 - 000000000 ____D C:\Users\arkar\Documents\My Games
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\Public\Documents\Creative
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\arkar\ansel
2018-05-12 15:08 - 2018-05-12 15:14 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Settlement. Colossus
2018-05-12 14:55 - 2018-05-12 17:59 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-12 14:49 - 2018-05-12 14:49 - 000000000 ____D C:\Users\arkar\AppData\Local\Steam
2018-05-12 13:47 - 2018-05-12 13:47 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-05-12 13:00 - 2018-05-12 13:00 - 000000000 ____D C:\ProgramData\SugarGames
2018-05-11 12:45 - 2018-05-11 12:45 - 000376536 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-05-09 10:24 - 2018-05-09 10:24 - 000004216 _____ C:\Users\arkar\Documents\cc_20180509_102429.reg
2018-05-09 10:24 - 2018-05-09 10:24 - 000002844 _____ C:\Users\arkar\Documents\cc_20180509_102441.reg
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-05-09 04:43 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2018-05-09 04:43 - 2017-12-09 00:25 - 000798520 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:25 - 000490808 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-05-09 04:43 - 2017-12-09 00:24 - 000928568 _____ C:\Windows\system32\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:24 - 000591672 _____ C:\Windows\system32\vulkaninfo.exe
2018-05-09 04:35 - 2018-04-23 20:57 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 20:02 - 000348832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 005583552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:35 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-05-09 04:35 - 2018-04-23 02:35 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-05-09 04:35 - 2018-04-23 02:35 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-05-09 04:35 - 2018-04-23 02:12 - 004047040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-05-09 04:35 - 2018-04-23 02:12 - 003958464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:10 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-05-09 04:35 - 2018-04-23 02:07 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:44 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:32 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 04:35 - 2018-04-23 01:32 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-05-09 04:35 - 2018-04-23 01:32 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 04:35 - 2018-04-23 01:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-05-09 04:35 - 2018-04-23 01:27 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-05-09 04:35 - 2018-04-23 01:25 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-09 04:35 - 2018-04-23 01:23 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-05-09 04:35 - 2018-04-23 01:23 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-05-09 04:35 - 2018-04-23 01:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 01:19 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-05-09 04:35 - 2018-04-23 01:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:53 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:53 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 04:35 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:39 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-05-09 04:35 - 2018-04-22 09:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-05-09 04:35 - 2018-04-22 09:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 09:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-05-09 04:35 - 2018-04-22 09:27 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 09:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-05-09 04:35 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:18 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 04:35 - 2018-04-22 09:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 09:08 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-05-09 04:35 - 2018-04-22 09:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 09:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-05-09 04:35 - 2018-04-22 09:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-05-09 04:35 - 2018-04-22 08:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 08:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-05-09 04:35 - 2018-04-22 08:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-05-09 04:35 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-05-09 04:35 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:46 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 08:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-05-09 04:35 - 2018-04-22 08:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 08:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 08:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 08:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-05-09 04:35 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-05-09 04:35 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-05-09 04:35 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-05-09 04:35 - 2018-04-18 18:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 18:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 17:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-09 04:35 - 2018-04-18 17:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-09 04:35 - 2018-04-11 18:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 04:35 - 2018-04-10 21:45 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-05-09 04:35 - 2018-04-10 18:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-09 04:35 - 2018-04-10 18:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-09 04:35 - 2018-04-10 18:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-09 04:35 - 2018-04-10 17:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 04:35 - 2018-04-10 17:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-09 04:35 - 2018-04-07 18:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-09 04:35 - 2018-03-19 00:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-05-09 04:35 - 2018-03-19 00:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-05-09 04:35 - 2018-03-14 19:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 04:35 - 2018-03-14 19:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-05 14:01 - 2012-02-04 03:12 - 000000000 ____D C:\Users\arkar\Desktop\Child_Lincoln
2018-05-04 18:50 - 2018-05-04 18:50 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka
2018-05-02 17:19 - 2018-03-04 02:26 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln
2018-05-02 17:19 - 2017-11-27 01:15 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln; Preston, Douglas
2018-05-02 17:18 - 2015-12-25 12:30 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child & Douglas Preston
2018-05-02 17:18 - 2015-10-07 05:16 - 000000000 ____D C:\Users\arkar\Desktop\Preston, Douglas J. - Child, Lincoln
2018-05-02 17:18 - 2015-09-11 10:56 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child, Douglas Preston
2018-05-02 17:16 - 2015-02-12 05:38 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (3)
2018-05-02 15:48 - 2018-05-02 15:48 - 000000362 _____ C:\Users\arkar\Documents\cc_20180502_154844.reg
2018-05-01 09:42 - 2018-05-01 09:42 - 000001072 _____ C:\Users\arkar\Documents\cc_20180501_094205.reg
2018-05-01 09:41 - 2018-05-01 09:41 - 000013118 _____ C:\Users\arkar\Documents\cc_20180501_094153.reg
2018-04-30 17:51 - 2018-04-30 17:51 - 000000000 ____D C:\Users\arkar\AppData\Local\{8D72BB2E-A9DA-D796-C442-F27EE02A0EE6}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-27 09:39 - 2018-01-09 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-27 09:39 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-05-27 09:23 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-05-27 09:23 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-05-27 09:21 - 2018-01-09 15:27 - 000000000 ____D C:\Users\arkar\AppData\LocalLow\Mozilla
2018-05-27 09:20 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-05-26 09:14 - 2018-01-10 01:18 - 000000000 ____D C:\Users\arkar\Desktop\KNIHY A
2018-05-26 09:13 - 2018-01-09 16:33 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-05-26 09:13 - 2018-01-09 16:33 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-05-24 20:40 - 2018-04-16 16:35 - 000000000 ____D C:\ProgramData\AlawarWrapper
2018-05-24 14:57 - 2009-07-14 17:18 - 000668542 _____ C:\Windows\system32\perfh005.dat
2018-05-24 14:57 - 2009-07-14 17:18 - 000141202 _____ C:\Windows\system32\perfc005.dat
2018-05-24 14:57 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-05-18 11:02 - 2018-01-09 15:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-18 02:31 - 2018-03-20 23:24 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-18 02:31 - 2018-03-20 23:24 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-13 01:48 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\AppData\Roaming\uTorrent
2018-05-13 01:47 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\Desktop\Filmy
2018-05-12 22:51 - 2018-01-11 22:37 - 000000000 ____D C:\Users\arkar\AppData\Roaming\vlc
2018-05-12 16:43 - 2018-01-09 07:00 - 000000000 ____D C:\Users\arkar
2018-05-12 15:13 - 2018-01-09 18:05 - 000007602 _____ C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
2018-05-12 13:47 - 2018-01-09 16:31 - 000000950 _____ C:\Users\arkar\Desktop\µTorrent.lnk
2018-05-11 20:42 - 2018-01-10 17:07 - 001557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-05-11 12:46 - 2018-01-09 14:15 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-05-11 12:45 - 2018-01-09 14:15 - 000460520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000381552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000205976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000196640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000159120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000111360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-05-11 12:44 - 2018-01-09 14:15 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-05-11 12:44 - 2018-01-09 14:14 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-05-09 12:10 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-05-09 10:13 - 2009-07-14 06:45 - 000294160 _____ C:\Windows\system32\FNTCACHE.DAT
2018-05-09 04:47 - 2018-01-09 07:12 - 000000000 ____D C:\Windows\system32\MRT
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-05-09 04:43 - 2018-01-09 07:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-05-08 22:22 - 2018-01-09 16:02 - 000000000 ____D C:\Users\arkar\AppData\Local\ElevatedDiagnostics
2018-05-08 22:22 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-05-08 20:50 - 2018-03-14 09:50 - 000004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-08 20:50 - 2018-01-09 16:30 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-05-08 20:50 - 2018-01-09 16:30 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-08 20:50 - 2018-01-09 16:30 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-05-08 20:50 - 2018-01-09 16:30 - 000000000 ____D C:\Windows\system32\Macromed
2018-05-08 20:50 - 2018-01-09 16:29 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-05-01 10:23 - 2018-01-09 16:34 - 000001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-05-01 09:56 - 2018-02-25 15:57 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (2)
2018-04-28 10:21 - 2009-07-14 07:08 - 000032552 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories =======
2018-01-09 18:05 - 2018-05-12 15:13 - 000007602 _____ () C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-18 00:31
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by arkar (27-05-2018 09:42:16)
Running from C:\Users\arkar\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-01-09 05:00:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3993056730-3010827568-3234898044-500 - Administrator - Disabled)
arkar (S-1-5-21-3993056730-3010827568-3234898044-1001 - Administrator - Enabled) => C:\Users\arkar
Guest (S-1-5-21-3993056730-3010827568-3234898044-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3993056730-3010827568-3234898044-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
µTorrent (HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Flash Player 29 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.72.1082 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
GMX - Enhanced by Google (HKLM-x32\...\{FC7A14BA-ACFA-C53A-1D7A-B5BACDFA663A}) (Version: - )
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Infovox Desktop 2.2 (HKLM-x32\...\{52C32940-C538-40CF-8DE9-B91090F49938}) (Version: 2.220.3 - Acapela Group)
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 60.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 60.0.1 (x64 cs)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01310C59-CDB7-46BF-95EC-770114C8A635} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {01A0F6D3-2E71-44DD-A5A0-0AAB39DDC894} - System32\Tasks\{B2D69A73-6160-4051-A699-1774688C81E6} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\InfovoxDesktop2.220Engine.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {3D26FF5D-3973-40C9-8BD6-427D9ACEE53D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-14] (AVAST Software)
Task: {7F1E1F43-E1BA-43E0-82EA-64ECB9990EFC} - System32\Tasks\{5F46BE14-F13F-4317-90AC-3637EBF5B509} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\Eliska22k_ID22.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {92B8E321-20A2-47C8-911F-C13DA7B6489E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-11] (AVAST Software)
Task: {A4BD2FEB-65E7-4A42-AAA0-2F061EDE9CAA} - \Driver Booster SkipUAC (arkar) -> No File <==== ATTENTION
Task: {A9DEAD7D-7BDC-48AF-885B-449F3B2411DE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {B7DC234F-439E-4D36-8EA3-D8566ED995FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {D374133C-92E3-4A8E-B658-1896C8B086B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
Task: {F3FA9F02-6B6C-4337-9DF0-291652F41CDF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {F8D3ED91-6466-476C-83AA-D22994F30A72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-03-13 13:49 - 2015-11-25 01:39 - 000210944 _____ () C:\Program Files\CDisplayEx\unrarshell.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000402944 _____ () C:\Program Files\CDisplayEx\libwebp.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000044544 _____ () C:\Program Files\CDisplayEx\libwebpdemux.dll
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-05-11 12:44 - 2018-05-11 12:44 - 000736984 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 001069784 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000598232 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-27 09:15 - 2018-05-27 09:15 - 005786768 _____ () C:\Program Files\AVAST Software\Avast\defs\18052700\algo.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-05-11 12:45 - 2018-05-11 12:45 - 000924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-04 10:30 - 2018-03-04 10:30 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A424BBB4-C7B8-410B-AA6B-07A010ECC3E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A51FC3EC-8CA0-43DB-A19B-62AD40708341}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C530BB35-0425-4D8A-9D30-91059C95E55D}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D312B4EE-2291-4847-A568-B685FE6AC410}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18EEA46D-B49C-4947-936E-7B19167BC8FB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{844E75EF-8DB8-4AA7-A96A-D5D4369AFBCB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{07CAADE8-2722-428F-AAC9-32ECB5BAB912}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B4A2D546-EF4F-49C7-956D-EAC67F007B88}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
==================== Restore Points =========================
12-05-2018 21:21:02 Naplánovaný kontrolní bod
20-05-2018 00:25:29 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
Name: ATK0110 ACPI UTILITY
Description: ATK0110 ACPI UTILITY
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ATK
Service: MTsensor
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/24/2018 10:02:45 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:35 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:25 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1664) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1216.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 494) (User: )
Description: taskhost (1664) WebCacheLocal: Obnovení databáze se nezdařilo a došlo k chybě -1216, protože byly zjištěny odkazy na databázi C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat, která již není k dispozici. Databáze nebyla před odebráním (či případným přesunutím nebo přejmenováním) převedena do stavu čistého vypnutí. Databázový stroj nepovolí dokončení obnovení pro tuto instanci, dokud nebude znovu vytvořena instance chybějící databáze. Pokud databáze již skutečně není k dispozici a není již nadále požadována, získáte pokyny týkající se odstranění této chyby ve znalostní bázi Microsoft Knowledge Base nebo po klepnutí na odkaz Další informace na konci této zprávy.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:05 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:01:55 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
System errors:
=============
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+
Percentage of memory in use: 30%
Total physical RAM: 4094.49 MB
Available physical RAM: 2837.09 MB
Total Virtual: 8187.15 MB
Available Virtual: 6868.54 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:173.02 GB) NTFS
\\?\Volume{b84277c3-f4f8-11e7-a047-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: F6E6F6E6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Včera kolem půlnoci se mě pc opět seklo a musel jsem ho na bedně vypnout. Po opravě zde do té doby fungoval.
Dnes ráno normálně naběhlo (neseklo se ani logo) a zatím funguje vše dobře.
Začínám mít obavu, že to bude vadnej hdd nebo něco takového.
Avast a Adw Cleaner nic nenašli.
Edidt: Tak ted se mě pc zase seklo. Po restartu se seklo i logo.
Tady je novej log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.05.2018 01
Ran by arkar (administrator) on ARKAR-PC (27-05-2018 09:41:05)
Running from C:\Users\arkar\Desktop
Loaded Profiles: arkar (Available Profiles: arkar)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-05-11] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2017-03-28] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\MountPoints2: {44cc1a05-098f-11e8-be67-001fc68db5e3} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{744B7BCA-E83D-43DB-99A5-26DEBADB1657}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A6224C50-8A3D-49A5-B0C7-BE2EFE1885F0}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?hl=cs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-05-11] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-05-11] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: doc31r5t.default
FF ProfilePath: C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default [2018-05-27]
FF user.js: detected! => C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\user.js [2018-04-30]
FF Homepage: Mozilla\Firefox\Profiles\doc31r5t.default -> hxxps://www.google.com/
FF Extension: (Web Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\contact@web-security.com.xpi [2018-04-30]
FF Extension: (Avast SafePrice) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\sp@avast.com.xpi [2018-05-17]
FF Extension: (Google Translator for Firefox) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\translator@zoli.bod.xpi [2018-01-18]
FF Extension: (Avast Online Security) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\Extensions\wrc@avast.com.xpi [2018-05-27]
FF Extension: (TLS 1.3 gradual roll-out fallback-limit) - C:\Users\arkar\AppData\Roaming\Mozilla\Firefox\Profiles\doc31r5t.default\features\{a9f07e6e-eca2-409a-9ea5-03f71fe52b92}\tls13-version-fallback-rollout-bug1462099@mozilla.org.xpi [2018-05-25] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-08] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7620096 2018-05-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2018-05-11] (AVAST Software)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [196640 2018-05-11] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [227504 2018-03-04] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199440 2018-03-04] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343752 2018-03-04] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57680 2018-03-04] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [234560 2018-05-11] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-05-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159120 2018-05-11] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111360 2018-05-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-05-11] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-05-11] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460520 2018-05-11] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [205976 2018-05-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381552 2018-05-11] (AVAST Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-01-09] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-27 09:41 - 2018-05-27 09:41 - 000010090 _____ C:\Users\arkar\Desktop\FRST.txt
2018-05-27 09:40 - 2018-05-27 09:40 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (5)
2018-05-25 13:55 - 2018-05-27 09:41 - 000000000 ____D C:\FRST
2018-05-25 13:55 - 2018-05-25 13:55 - 002413056 _____ (Farbar) C:\Users\arkar\Desktop\FRST64.exe
2018-05-24 23:12 - 2018-05-24 23:12 - 000032630 _____ C:\Users\arkar\Documents\cc_20180524_231249.reg
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\Users\arkar\AppData\Roaming\BC Soft Games
2018-05-21 20:24 - 2018-05-21 20:24 - 000000000 ____D C:\ProgramData\BC Soft Games
2018-05-21 19:44 - 2018-05-21 19:44 - 000000000 ____D C:\Users\arkar\AppData\Roaming\AlawarEntertainment
2018-05-21 19:38 - 2018-05-24 23:10 - 000000000 ____D C:\Program Files (x86)\Alawar
2018-05-18 12:40 - 2018-05-18 12:40 - 000001156 _____ C:\Users\arkar\Documents\cc_20180518_124013.reg
2018-05-17 10:14 - 2018-05-18 11:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-05-13 01:49 - 2018-05-13 01:50 - 007271632 _____ (Malwarebytes) C:\Users\arkar\Desktop\adwcleaner_7.1.1.exe
2018-05-12 19:24 - 2018-05-12 19:30 - 120117763 _____ C:\Users\arkar\Desktop\starfist_3.zip
2018-05-12 19:10 - 2018-05-12 19:10 - 002584393 _____ C:\Users\arkar\Desktop\tfzgjhj.rar
2018-05-12 19:07 - 2018-05-12 19:08 - 010786839 _____ C:\Users\arkar\Desktop\uhijok.rar
2018-05-12 18:04 - 2018-05-12 18:04 - 000002970 _____ C:\Users\arkar\Documents\cc_20180512_180435.reg
2018-05-12 18:03 - 2018-05-12 18:03 - 000002778 _____ C:\Users\arkar\Documents\cc_20180512_180309.reg
2018-05-12 16:44 - 2018-05-12 16:44 - 000000000 ____D C:\Users\arkar\Documents\My Games
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\Public\Documents\Creative
2018-05-12 16:43 - 2018-05-12 16:43 - 000000000 ____D C:\Users\arkar\ansel
2018-05-12 15:08 - 2018-05-12 15:14 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Settlement. Colossus
2018-05-12 14:55 - 2018-05-12 17:59 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-12 14:49 - 2018-05-12 14:49 - 000000000 ____D C:\Users\arkar\AppData\Local\Steam
2018-05-12 13:47 - 2018-05-12 13:47 - 000000000 ____D C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-05-12 13:00 - 2018-05-12 13:00 - 000000000 ____D C:\ProgramData\SugarGames
2018-05-11 12:45 - 2018-05-11 12:45 - 000376536 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-05-09 10:24 - 2018-05-09 10:24 - 000004216 _____ C:\Users\arkar\Documents\cc_20180509_102429.reg
2018-05-09 10:24 - 2018-05-09 10:24 - 000002844 _____ C:\Users\arkar\Documents\cc_20180509_102441.reg
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-09 04:43 - 2018-05-09 04:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-05-09 04:43 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2018-05-09 04:43 - 2017-12-09 00:25 - 000798520 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:25 - 000490808 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-05-09 04:43 - 2017-12-09 00:24 - 000928568 _____ C:\Windows\system32\vulkan-1.dll
2018-05-09 04:43 - 2017-12-09 00:24 - 000591672 _____ C:\Windows\system32\vulkaninfo.exe
2018-05-09 04:35 - 2018-04-23 20:57 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 20:02 - 000348832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 005583552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:35 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-05-09 04:35 - 2018-04-23 02:35 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-05-09 04:35 - 2018-04-23 02:35 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-05-09 04:35 - 2018-04-23 02:35 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-05-09 04:35 - 2018-04-23 02:12 - 004047040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-05-09 04:35 - 2018-04-23 02:12 - 003958464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-05-09 04:35 - 2018-04-23 02:10 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-05-09 04:35 - 2018-04-23 02:07 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:44 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-05-09 04:35 - 2018-04-23 01:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:32 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 04:35 - 2018-04-23 01:32 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-05-09 04:35 - 2018-04-23 01:32 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 04:35 - 2018-04-23 01:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-05-09 04:35 - 2018-04-23 01:28 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-05-09 04:35 - 2018-04-23 01:27 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-05-09 04:35 - 2018-04-23 01:25 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-05-09 04:35 - 2018-04-23 01:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-09 04:35 - 2018-04-23 01:23 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-05-09 04:35 - 2018-04-23 01:23 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-05-09 04:35 - 2018-04-23 01:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-05-09 04:35 - 2018-04-23 01:19 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-05-09 04:35 - 2018-04-23 01:19 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-05-09 04:35 - 2018-04-23 01:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 04:35 - 2018-04-23 01:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 04:35 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:53 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:53 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 04:35 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:39 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-05-09 04:35 - 2018-04-22 09:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-05-09 04:35 - 2018-04-22 09:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 09:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-05-09 04:35 - 2018-04-22 09:27 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-05-09 04:35 - 2018-04-22 09:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 09:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-05-09 04:35 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-05-09 04:35 - 2018-04-22 09:18 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 04:35 - 2018-04-22 09:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-05-09 04:35 - 2018-04-22 09:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 09:08 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-05-09 04:35 - 2018-04-22 09:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 09:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 09:04 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-05-09 04:35 - 2018-04-22 09:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-05-09 04:35 - 2018-04-22 09:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 09:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-05-09 04:35 - 2018-04-22 09:00 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-05-09 04:35 - 2018-04-22 08:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-05-09 04:35 - 2018-04-22 08:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-05-09 04:35 - 2018-04-22 08:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-05-09 04:35 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-05-09 04:35 - 2018-04-22 08:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-05-09 04:35 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:49 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-05-09 04:35 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:46 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-05-09 04:35 - 2018-04-22 08:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-05-09 04:35 - 2018-04-22 08:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-05-09 04:35 - 2018-04-22 08:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-05-09 04:35 - 2018-04-22 08:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-05-09 04:35 - 2018-04-22 08:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-05-09 04:35 - 2018-04-22 08:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-05-09 04:35 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-05-09 04:35 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-05-09 04:35 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-05-09 04:35 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-05-09 04:35 - 2018-04-22 08:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-05-09 04:35 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-05-09 04:35 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-05-09 04:35 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-05-09 04:35 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-05-09 04:35 - 2018-04-18 18:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 18:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 04:35 - 2018-04-18 17:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-09 04:35 - 2018-04-18 17:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-09 04:35 - 2018-04-18 17:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-09 04:35 - 2018-04-11 18:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 04:35 - 2018-04-11 18:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 04:35 - 2018-04-10 21:45 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-05-09 04:35 - 2018-04-10 18:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-09 04:35 - 2018-04-10 18:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-09 04:35 - 2018-04-10 18:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 04:35 - 2018-04-10 18:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 04:35 - 2018-04-10 18:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-09 04:35 - 2018-04-10 17:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 04:35 - 2018-04-10 17:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 04:35 - 2018-04-10 17:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-09 04:35 - 2018-04-07 18:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-09 04:35 - 2018-03-19 00:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-05-09 04:35 - 2018-03-19 00:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-05-09 04:35 - 2018-03-14 19:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 04:35 - 2018-03-14 19:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 04:35 - 2018-03-14 19:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 04:35 - 2018-03-14 18:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 04:35 - 2018-03-14 18:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 04:35 - 2018-03-14 18:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 04:35 - 2018-03-14 18:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-05 14:01 - 2012-02-04 03:12 - 000000000 ____D C:\Users\arkar\Desktop\Child_Lincoln
2018-05-04 18:50 - 2018-05-04 18:50 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka
2018-05-02 17:19 - 2018-03-04 02:26 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln
2018-05-02 17:19 - 2017-11-27 01:15 - 000000000 ____D C:\Users\arkar\Desktop\Child, Lincoln; Preston, Douglas
2018-05-02 17:18 - 2015-12-25 12:30 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child & Douglas Preston
2018-05-02 17:18 - 2015-10-07 05:16 - 000000000 ____D C:\Users\arkar\Desktop\Preston, Douglas J. - Child, Lincoln
2018-05-02 17:18 - 2015-09-11 10:56 - 000000000 ____D C:\Users\arkar\Desktop\Lincoln Child, Douglas Preston
2018-05-02 17:16 - 2015-02-12 05:38 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (3)
2018-05-02 15:48 - 2018-05-02 15:48 - 000000362 _____ C:\Users\arkar\Documents\cc_20180502_154844.reg
2018-05-01 09:42 - 2018-05-01 09:42 - 000001072 _____ C:\Users\arkar\Documents\cc_20180501_094205.reg
2018-05-01 09:41 - 2018-05-01 09:41 - 000013118 _____ C:\Users\arkar\Documents\cc_20180501_094153.reg
2018-04-30 17:51 - 2018-04-30 17:51 - 000000000 ____D C:\Users\arkar\AppData\Local\{8D72BB2E-A9DA-D796-C442-F27EE02A0EE6}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-27 09:39 - 2018-01-09 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-27 09:39 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-05-27 09:23 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-05-27 09:23 - 2009-07-14 06:45 - 000014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-05-27 09:21 - 2018-01-09 15:27 - 000000000 ____D C:\Users\arkar\AppData\LocalLow\Mozilla
2018-05-27 09:20 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-05-26 09:14 - 2018-01-10 01:18 - 000000000 ____D C:\Users\arkar\Desktop\KNIHY A
2018-05-26 09:13 - 2018-01-09 16:33 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-05-26 09:13 - 2018-01-09 16:33 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-05-24 20:40 - 2018-04-16 16:35 - 000000000 ____D C:\ProgramData\AlawarWrapper
2018-05-24 14:57 - 2009-07-14 17:18 - 000668542 _____ C:\Windows\system32\perfh005.dat
2018-05-24 14:57 - 2009-07-14 17:18 - 000141202 _____ C:\Windows\system32\perfc005.dat
2018-05-24 14:57 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-05-18 11:02 - 2018-01-09 15:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-18 02:31 - 2018-03-20 23:24 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-18 02:31 - 2018-03-20 23:24 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-13 01:48 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\AppData\Roaming\uTorrent
2018-05-13 01:47 - 2018-01-09 16:31 - 000000000 ____D C:\Users\arkar\Desktop\Filmy
2018-05-12 22:51 - 2018-01-11 22:37 - 000000000 ____D C:\Users\arkar\AppData\Roaming\vlc
2018-05-12 16:43 - 2018-01-09 07:00 - 000000000 ____D C:\Users\arkar
2018-05-12 15:13 - 2018-01-09 18:05 - 000007602 _____ C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
2018-05-12 13:47 - 2018-01-09 16:31 - 000000950 _____ C:\Users\arkar\Desktop\µTorrent.lnk
2018-05-11 20:42 - 2018-01-10 17:07 - 001557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-05-11 12:46 - 2018-01-09 14:15 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-05-11 12:45 - 2018-01-09 14:15 - 000460520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000381552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000205976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000196640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000159120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000111360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-05-11 12:45 - 2018-01-09 14:15 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-05-11 12:44 - 2018-01-09 14:15 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-05-11 12:44 - 2018-01-09 14:14 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-05-09 12:10 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-05-09 10:13 - 2009-07-14 06:45 - 000294160 _____ C:\Windows\system32\FNTCACHE.DAT
2018-05-09 04:47 - 2018-01-09 07:12 - 000000000 ____D C:\Windows\system32\MRT
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-05-09 04:44 - 2018-01-09 07:12 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-05-09 04:43 - 2018-01-09 07:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-05-08 22:22 - 2018-01-09 16:02 - 000000000 ____D C:\Users\arkar\AppData\Local\ElevatedDiagnostics
2018-05-08 22:22 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-05-08 20:50 - 2018-03-14 09:50 - 000004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-08 20:50 - 2018-01-09 16:30 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-05-08 20:50 - 2018-01-09 16:30 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-08 20:50 - 2018-01-09 16:30 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-05-08 20:50 - 2018-01-09 16:30 - 000000000 ____D C:\Windows\system32\Macromed
2018-05-08 20:50 - 2018-01-09 16:29 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-05-01 10:23 - 2018-01-09 16:34 - 000001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-05-01 09:56 - 2018-02-25 15:57 - 000000000 ____D C:\Users\arkar\Desktop\Nová složka (2)
2018-04-28 10:21 - 2009-07-14 07:08 - 000032552 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories =======
2018-01-09 18:05 - 2018-05-12 15:13 - 000007602 _____ () C:\Users\arkar\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-18 00:31
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by arkar (27-05-2018 09:42:16)
Running from C:\Users\arkar\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-01-09 05:00:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3993056730-3010827568-3234898044-500 - Administrator - Disabled)
arkar (S-1-5-21-3993056730-3010827568-3234898044-1001 - Administrator - Enabled) => C:\Users\arkar
Guest (S-1-5-21-3993056730-3010827568-3234898044-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3993056730-3010827568-3234898044-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
µTorrent (HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Flash Player 29 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.72.1082 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
GMX - Enhanced by Google (HKLM-x32\...\{FC7A14BA-ACFA-C53A-1D7A-B5BACDFA663A}) (Version: - )
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Infovox Desktop 2.2 (HKLM-x32\...\{52C32940-C538-40CF-8DE9-B91090F49938}) (Version: 2.220.3 - Acapela Group)
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 60.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 60.0.1 (x64 cs)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-11] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01310C59-CDB7-46BF-95EC-770114C8A635} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {01A0F6D3-2E71-44DD-A5A0-0AAB39DDC894} - System32\Tasks\{B2D69A73-6160-4051-A699-1774688C81E6} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\InfovoxDesktop2.220Engine.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {3D26FF5D-3973-40C9-8BD6-427D9ACEE53D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-14] (AVAST Software)
Task: {7F1E1F43-E1BA-43E0-82EA-64ECB9990EFC} - System32\Tasks\{5F46BE14-F13F-4317-90AC-3637EBF5B509} => C:\Windows\system32\pcalua.exe -a C:\Users\arkar\Desktop\Balabolka\Eliska22k_ID22.exe -d C:\Users\arkar\Desktop\Balabolka
Task: {92B8E321-20A2-47C8-911F-C13DA7B6489E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-11] (AVAST Software)
Task: {A4BD2FEB-65E7-4A42-AAA0-2F061EDE9CAA} - \Driver Booster SkipUAC (arkar) -> No File <==== ATTENTION
Task: {A9DEAD7D-7BDC-48AF-885B-449F3B2411DE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {B7DC234F-439E-4D36-8EA3-D8566ED995FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {D374133C-92E3-4A8E-B658-1896C8B086B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
Task: {F3FA9F02-6B6C-4337-9DF0-291652F41CDF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated)
Task: {F8D3ED91-6466-476C-83AA-D22994F30A72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-20] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-03-13 13:49 - 2015-11-25 01:39 - 000210944 _____ () C:\Program Files\CDisplayEx\unrarshell.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000402944 _____ () C:\Program Files\CDisplayEx\libwebp.dll
2018-03-13 13:49 - 2015-11-25 01:39 - 000044544 _____ () C:\Program Files\CDisplayEx\libwebpdemux.dll
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-05-11 12:44 - 2018-05-11 12:44 - 000736984 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 001069784 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000598232 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-27 09:15 - 2018-05-27 09:15 - 005786768 _____ () C:\Program Files\AVAST Software\Avast\defs\18052700\algo.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-05-11 12:45 - 2018-05-11 12:45 - 000924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-04 10:30 - 2018-03-04 10:30 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-05-11 12:44 - 2018-05-11 12:44 - 000293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3993056730-3010827568-3234898044-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\arkar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A424BBB4-C7B8-410B-AA6B-07A010ECC3E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A51FC3EC-8CA0-43DB-A19B-62AD40708341}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C530BB35-0425-4D8A-9D30-91059C95E55D}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D312B4EE-2291-4847-A568-B685FE6AC410}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18EEA46D-B49C-4947-936E-7B19167BC8FB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{844E75EF-8DB8-4AA7-A96A-D5D4369AFBCB}] => (Allow) C:\Users\arkar\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{07CAADE8-2722-428F-AAC9-32ECB5BAB912}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B4A2D546-EF4F-49C7-956D-EAC67F007B88}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
==================== Restore Points =========================
12-05-2018 21:21:02 Naplánovaný kontrolní bod
20-05-2018 00:25:29 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
Name: ATK0110 ACPI UTILITY
Description: ATK0110 ACPI UTILITY
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ATK
Service: MTsensor
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/24/2018 10:02:45 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:35 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:25 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1664) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1216.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 494) (User: )
Description: taskhost (1664) WebCacheLocal: Obnovení databáze se nezdařilo a došlo k chybě -1216, protože byly zjištěny odkazy na databázi C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat, která již není k dispozici. Databáze nebyla před odebráním (či případným přesunutím nebo přejmenováním) převedena do stavu čistého vypnutí. Databázový stroj nepovolí dokončení obnovení pro tuto instanci, dokud nebude znovu vytvořena instance chybějící databáze. Pokud databáze již skutečně není k dispozici a není již nadále požadována, získáte pokyny týkající se odstranění této chyby ve znalostní bázi Microsoft Knowledge Base nebo po klepnutí na odkaz Další informace na konci této zprávy.
Error: (05/24/2018 10:02:15 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:02:05 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error: (05/24/2018 10:01:55 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1664) WebCacheLocal: Pokus o otevření souboru C:\Users\arkar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
System errors:
=============
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535
Error: (05/27/2018 09:40:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+
Percentage of memory in use: 30%
Total physical RAM: 4094.49 MB
Available physical RAM: 2837.09 MB
Total Virtual: 8187.15 MB
Available Virtual: 6868.54 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:173.02 GB) NTFS
\\?\Volume{b84277c3-f4f8-11e7-a047-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: F6E6F6E6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Re: Zamrzání pc, prosím o kontrolu logu
Z logu nie je zrejme, aka je velkost adresara plocha
Ak presahuje 500MB, tak poupratuj
+
Spust s prikazoveho riadku chkdsk /r
a po restarte nechaj pripadne chyby opravit
Ak presahuje 500MB, tak poupratuj
+
Spust s prikazoveho riadku chkdsk /r
a po restarte nechaj pripadne chyby opravit
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Zamrzání pc, prosím o kontrolu logu
Hotovo. Zatím se nic neděje, pc šlape.
Ozvu se do úterý, zda to funguje nebo dříve, když to zase zamrzne.
Díky.
Ozvu se do úterý, zda to funguje nebo dříve, když to zase zamrzne.
Díky.
Re: Zamrzání pc, prosím o kontrolu logu
Počítač musel do servisu a tam se zjistilo, že to dělá vadná myš .
Byl tam do ted, tak píšu až dnes.
Díky za pomoc.
.Byl tam do ted, tak píšu až dnes.
Díky za pomoc.
Re: Zamrzání pc, prosím o kontrolu logu
za malo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?