VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pomalý internet

https://forum.viry.cz:443/viewtopic.php?t=153622

Stránka 1 z 1

Pomalý internet

Napsal: 20 led 2018 19:15
od DannyH
Ahoj, zdá se mi, že můj internet je z ničeho nic pomalý. Když jsme před rokem změnili poskytovatele, internet šlapal jak měl cca půl roku, od té doby se mi zdá, že jeho rychlost klesla a vzhledem k tomu, že vím, co za blbosti jsem si stahoval, tak mám podezření, že by mi nějaký ten prográmek mohl něco dělat s internetem.

Zde je scan z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.01.2018 01
Ran by PC (administrator) on PC-PC (20-01-2018 19:05:51)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(Garena Online ) C:\Program Files (x86)\Garena\Garena\2.0.1711.1719\gxxsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(DEMO BITS) C:\Program Files (x86)\Common Files\cnex.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Users\PC\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\PC\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
() C:\Windows\runSW.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(Realtek) C:\Windows\SwUSB.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Spotify Ltd) C:\Users\PC\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\PC\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-09-09] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-05] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-09-04] (Intel Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\PC\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\PC\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19405824 2017-04-14] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [background_fault] => C:\Users\PC\AppData\Local\background_fault\aswRD.exe [1419576 2017-04-06] (AVAST Software) <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Advanced SystemCare 11] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3598624 2017-12-11] (IObit)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7704168 2018-01-07] (Lavasoft)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Spotify Web Helper] => C:\Users\PC\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-01-18] (Spotify Ltd)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {12d1994a-ca1c-11e6-a92e-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {594b6c4a-bade-11e6-bdd2-806e6f6e6963} - D:\UI.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {f341c7c7-b8d8-11e6-8fab-806e6f6e6963} - D:\UI.exe
HKLM\...\Providers\txxi2plt: C:\Program Files (x86)\Hilisygherlerent Nodifier\local64spl.dll <==== ATTENTION
ShellExecuteHooks: No Name - {6774068A-3611-11E7-B3E6-64006A5CFC23} - -> No File
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 1050 J410 series.lnk [2018-01-20]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{08D853D5-5679-44B6-B11E-E7746426F06B}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{19D7843D-1105-4D6B-98F0-53D7E3920DD0}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaie
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {0516562C-52AA-4C64-9C89-273030F7CF41} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {3AB890AB-8F58-4433-8750-9A16E3862A1B} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {445625C6-83F9-4A14-BEC2-F44D8E60936E} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {46C274D6-9208-4255-BB50-C19E29C6773A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {4B2F72A5-1556-46D9-9751-2D3549985B05} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {7455A749-0742-4729-913C-A6F5E4D8BADA} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {A6356852-B425-42E9-856D-9C39DE2EEE96} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {AFA83328-027B-48D9-9EEE-40A2B0CCEE1F} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10444__180107__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {D7D92CAA-B1DA-4F7F-9C93-E204D3470234} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-16] (AVAST Software)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-16] (AVAST Software)
BHO-x32: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-29] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File

FireFox:
========
FF DefaultProfile: 5hrvxud6.default
FF DefaultProfile: s72y0pwr.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default [2018-01-20]
FF Homepage: Mozilla\Firefox\Profiles\5hrvxud6.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaff
FF NewTab: Mozilla\Firefox\Profiles\5hrvxud6.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaff
FF NewTabOverride: Mozilla\Firefox\Profiles\5hrvxud6.default -> Enabled: "id":"{ea614400-e918-4741-9a97-7a972ff7c30b
FF Extension: (Avast Passwords) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-01-16]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-11-28]
FF Extension: (Steam Inventory Prices) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\ttz91@hotmail.com.xpi [2017-12-09]
FF Extension: (Avast Online Security) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\wrc@avast.com.xpi [2017-10-15]
FF Extension: (Adblock Plus) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-12]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-11-01]
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\features\{16b9c230-cbdf-47b4-86e1-2d1813f1a852}\disable-js-shared-memory@mozilla.org.xpi [2018-01-17] [Legacy]
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\searchplugins\yahoo-lavasoft.xml [2018-01-07]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default [2017-09-20] <==== ATTENTION
FF user.js: detected! => C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\user.js [2017-04-06]
FF Homepage: Firefox\Firefox\Profiles\s72y0pwr.default -> hxxp://www.searchinme.com/
FF Extension: (SimilarWeb) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-05-30] [Legacy] [not signed]
FF Extension: (HSearch) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\@E97YHOMI-FU8L-IM23-VUT9-RVDZT7M8XL8H.xpi [2017-05-16] [not signed]
FF Extension: (MEGA) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\firefox@mega.co.nz.xpi [2017-09-19] [Legacy]
FF Extension: (Dashlane) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-09-04]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-05-16] [Legacy] [not signed]
FF Extension: (Adblock Plus) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-07-22] [Legacy]
FF Extension: (Seznam lištička) - C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-08-30] [Legacy]
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\searchplugins\startsearch.xml [2017-05-16]
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Firefox\Firefox\Profiles\s72y0pwr.default\searchplugins\txxi2plt.xml [2017-05-13]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\extensions\arthurj8283@gmail.com
FF Extension: (xRocket Toolbar) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\extensions\arthurj8283@gmail.com [2017-05-18] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox\Firefox.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\dsengine.js [2018-01-07] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\dsengine.cfg [2018-01-07] <==== ATTENTION

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.luckysearch123.com?type=hp&ts=14951 ... 9gfg4g3o0c
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.luckysearch123.com?type=hp&ts=14951 ... 9gfg4g3o0c"
CHR NewTab: ChromeDefaultData -> "active": true,
"entry": "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"

CHR DefaultSearchURL: ChromeDefaultData -> hxxps://www.facebook.com/search/top/?q={searchT ... ensearch=1
CHR DefaultSearchKeyword: ChromeDefaultData -> cs-cz.facebook.com
CHR DefaultSuggestURL: ChromeDefaultData -> hxxps://www.facebook.com/search/opensearch/sugg ... earchTerms}
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2018-01-06] <==== ATTENTION
CHR Extension: (Prezentace Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Dokumenty Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (Seznam Lištička - Email) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-23]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Vyhledávání Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-12-09]
CHR Extension: (Dashlane Secure Password Manager) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2017-05-03]
CHR Extension: (Tabulky Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Download Accelerator Plus (DAP)) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb [2017-05-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-24]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-07]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService11; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1058080 2017-12-11] (IObit)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-05] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1494024 2017-06-27] ()
S2 cnexx; C:\Program Files (x86)\Common Files\cnex-demo.exe [36864 2017-11-01] (Microsoft® DEVELOPER) [File not signed]
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-09-18] (EasyAntiCheat Ltd)
R2 GarenaPlatform; C:\Program Files (x86)\Garena\Garena\2.0.1711.1719\gxxsvc.exe [318296 2017-11-17] (Garena Online )
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2155328 2017-12-22] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3025224 2017-12-22] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2017-04-08] ()
R2 Realtek8723AU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [File not signed]
R2 RunSwUSB; C:\Windows\runSW.exe [44104 2013-05-14] ()
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25704 2018-01-07] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 BIT; C:\ProgramData\BIT\BIT.dll [X] <==== ATTENTION
S2 CSHMDR; C:\Users\PC\AppData\Local\CSHMDR\Snare.dll [X] <==== ATTENTION
S2 CWASRE; C:\Users\PC\AppData\Local\CWASRE\Snare.dll [X] <==== ATTENTION
S2 snare; C:\Users\PC\AppData\Local\snare\Snare.dll [X] <==== ATTENTION
S2 WinAppSvr; C:\ProgramData\Microsoft\AppV\setup\install.dll [X] <==== ATTENTION <==== ATTENTION
S2 WinSAPSvc; C:\Users\PC\AppData\Roaming\WinSAPSvc\WinSAP.dll [X] <==== ATTENTION

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AIDA64Driver; no ImagePath
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-05] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-05] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-05] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-05] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-05] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-05] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-08] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-10] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-05] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-05] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-10] (AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-05] (AVAST Software)
R3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-01-20] (CPUID)
S3 DrvAgent64; no ImagePath
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-05-13] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-05-13] (Disc Soft Ltd)
S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [32840 2017-06-20] (ELAN Microelectronic Corp.)
S3 gdrv; no ImagePath
S3 gkernel; no ImagePath
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-12-24] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [41480 2018-01-06] (Intel Corporation)
R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2016-12-21] (IObit)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [55056 2016-05-23] (Elex do Brasil Participações Ltda) <==== ATTENTION
S1 iSafeNetFilter; no ImagePath <==== ATTENTION
S1 ISODisk; C:\Windows\SysWow64\Drivers\ISODisk.sys [9600 2006-04-26] () [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [201296 2018-01-06] (Intel Corporation)
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2350152 2013-05-07] (Realtek Semiconductor Corporation )
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S1 ESEADriver2; \??\C:\Users\PC\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATTENTION
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-20 19:05 - 2018-01-20 19:06 - 000028300 _____ C:\Users\PC\Desktop\FRST.txt
2018-01-20 19:05 - 2018-01-20 19:05 - 000000000 ____D C:\FRST
2018-01-20 19:04 - 2018-01-20 19:04 - 000112640 _____ (forum.viry.cz) C:\Users\PC\Desktop\FRSTLauncher.exe
2018-01-20 19:02 - 2018-01-20 19:02 - 002393088 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2018-01-20 18:39 - 2018-01-20 18:39 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-20 11:21 - 2018-01-20 11:21 - 000000222 _____ C:\Users\PC\Desktop\Football Manager 2017.url
2018-01-16 13:44 - 2018-01-16 13:44 - 000000000 ____H C:\asc_rdflag
2018-01-14 00:35 - 2018-01-14 00:36 - 002302702 _____ C:\Users\PC\Downloads\game_video_12196524_ajQjdNBLSlEFMAhVFvguSkvhWNU.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 002014448 _____ C:\Users\PC\Downloads\game_video_12194646_jsRp6B42APHQ0JdMwaZTKCxArb4.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001814169 _____ C:\Users\PC\Downloads\game_video_12193699_pe7OFqWmeNotWJjLGaUr8EYfHLk.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001768909 _____ C:\Users\PC\Downloads\game_video_12196053_2_6g_hGGA6IUpChfkDriqeF3qwc.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001687408 _____ C:\Users\PC\Downloads\game_video_12195285_YFKcS-AqfSXze1vLo51H1tG2KW8.dem.gz
2018-01-14 00:34 - 2018-01-14 00:35 - 002156407 _____ C:\Users\PC\Downloads\game_video_12189091_0W0YCFt68M5FPile1LMjit7oX6A.dem.gz
2018-01-12 12:53 - 2018-01-12 12:55 - 000000000 ____D C:\Users\PC\AppData\Local\CaptureOne
2018-01-12 12:53 - 2018-01-12 12:53 - 000000000 ____D C:\Users\PC\AppData\Local\Phase_One
2018-01-12 12:53 - 2018-01-12 12:53 - 000000000 ____D C:\ProgramData\Phase One
2018-01-12 12:52 - 2018-01-12 12:52 - 000000000 ____D C:\Program Files\DIFX
2018-01-12 12:50 - 2018-01-12 12:50 - 000001010 _____ C:\Users\PC\Desktop\Capture One 11.lnk
2018-01-12 12:50 - 2018-01-12 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phase One
2018-01-12 12:49 - 2018-01-12 12:49 - 000000000 ____D C:\Program Files\Phase One
2018-01-12 12:07 - 2018-01-12 12:10 - 150404192 _____ (Phase One A/S ) C:\Users\PC\Downloads\CaptureOne.Win.11.0.0.exe
2018-01-09 17:40 - 2018-01-09 17:40 - 000001959 _____ C:\Users\Public\Desktop\NHL07.lnk
2018-01-09 17:40 - 2018-01-09 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA SPORTS
2018-01-09 17:38 - 2018-01-09 17:38 - 000000000 ____D C:\Program Files (x86)\EA SPORTS
2018-01-09 14:28 - 2018-01-01 03:21 - 005581544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-01-09 14:28 - 2018-01-01 03:21 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000948968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-01-09 14:28 - 2018-01-01 03:21 - 000288488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-01-09 14:28 - 2018-01-01 03:21 - 000213736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2018-01-09 14:28 - 2018-01-01 03:21 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-01-09 14:28 - 2018-01-01 03:19 - 001665384 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 014183936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 002004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001741312 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001110528 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000705024 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2018-01-09 14:28 - 2018-01-01 03:18 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2018-01-09 14:28 - 2018-01-01 03:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-01-09 14:28 - 2018-01-01 03:13 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-01-09 14:28 - 2018-01-01 03:04 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2018-01-09 14:28 - 2018-01-01 03:02 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001390080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000304640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-01-09 14:28 - 2018-01-01 03:00 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2018-01-09 14:28 - 2018-01-01 03:00 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\traffic.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:55 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2018-01-09 14:28 - 2018-01-01 02:54 - 004013800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-01-09 14:28 - 2018-01-01 02:54 - 003959016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-01-09 14:28 - 2018-01-01 02:54 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-01-09 14:28 - 2018-01-01 02:50 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-01-09 14:28 - 2018-01-01 02:49 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-01-09 14:28 - 2018-01-01 02:46 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-01-09 14:28 - 2018-01-01 02:45 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-01-09 14:28 - 2018-01-01 02:43 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2018-01-09 14:28 - 2018-01-01 02:43 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshqos.dll
2018-01-09 14:28 - 2018-01-01 02:42 - 000460288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-01-09 14:28 - 2018-01-01 02:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-01-09 14:28 - 2018-01-01 02:41 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-01-09 14:28 - 2018-01-01 02:39 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-01-09 14:28 - 2018-01-01 02:36 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-01-09 14:28 - 2018-01-01 02:35 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-01-09 14:28 - 2017-12-30 08:29 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-01-09 14:28 - 2017-12-30 07:42 - 000347328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-01-09 14:28 - 2017-12-29 19:39 - 020274688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-01-09 14:28 - 2017-12-29 19:24 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-01-09 14:28 - 2017-12-29 19:13 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-01-09 14:28 - 2017-12-29 19:13 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-01-09 14:28 - 2017-12-29 19:12 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-01-09 14:28 - 2017-12-29 19:12 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-01-09 14:28 - 2017-12-29 19:11 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-01-09 14:28 - 2017-12-29 19:09 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-01-09 14:28 - 2017-12-29 19:06 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-01-09 14:28 - 2017-12-29 19:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-01-09 14:28 - 2017-12-29 19:04 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-01-09 14:28 - 2017-12-29 18:55 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-01-09 14:28 - 2017-12-29 18:51 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-01-09 14:28 - 2017-12-29 18:50 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-01-09 14:28 - 2017-12-29 18:50 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-01-09 14:28 - 2017-12-29 18:47 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-01-09 14:28 - 2017-12-29 18:47 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-01-09 14:28 - 2017-12-29 18:46 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-01-09 14:28 - 2017-12-29 18:45 - 004508160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-01-09 14:28 - 2017-12-29 18:44 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-01-09 14:28 - 2017-12-29 18:39 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-01-09 14:28 - 2017-12-29 18:38 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-01-09 14:28 - 2017-12-29 18:38 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-01-09 14:28 - 2017-12-29 18:37 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-01-09 14:28 - 2017-12-29 18:36 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-01-09 14:28 - 2017-12-29 18:19 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-01-09 14:28 - 2017-12-29 18:15 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-01-09 14:28 - 2017-12-29 18:13 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-01-09 14:28 - 2017-12-29 10:15 - 025737728 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-01-09 14:28 - 2017-12-29 10:04 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-01-09 14:28 - 2017-12-29 10:04 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-01-09 14:28 - 2017-12-29 09:52 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-01-09 14:28 - 2017-12-29 09:51 - 005796352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-01-09 14:28 - 2017-12-29 09:51 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-01-09 14:28 - 2017-12-29 09:50 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-01-09 14:28 - 2017-12-29 09:44 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-01-09 14:28 - 2017-12-29 09:43 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-01-09 14:28 - 2017-12-29 09:40 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-01-09 14:28 - 2017-12-29 09:39 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-01-09 14:28 - 2017-12-29 09:32 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-01-09 14:28 - 2017-12-29 09:28 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-01-09 14:28 - 2017-12-29 09:22 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-01-09 14:28 - 2017-12-29 09:22 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-01-09 14:28 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-01-09 14:28 - 2017-12-29 09:18 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-01-09 14:28 - 2017-12-29 09:18 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-01-09 14:28 - 2017-12-29 09:16 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-01-09 14:28 - 2017-12-29 09:14 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-01-09 14:28 - 2017-12-29 09:05 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-01-09 14:28 - 2017-12-29 09:04 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-01-09 14:28 - 2017-12-29 09:03 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-01-09 14:28 - 2017-12-29 09:03 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-01-09 14:28 - 2017-12-29 09:01 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-01-09 14:28 - 2017-12-29 09:01 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-01-09 14:28 - 2017-12-29 08:50 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-01-09 14:28 - 2017-12-29 08:39 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-01-09 14:28 - 2017-12-29 08:27 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-01-09 14:28 - 2017-12-21 07:27 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-01-09 14:28 - 2017-12-13 17:31 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-01-09 14:28 - 2017-12-13 17:15 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-01-09 14:28 - 2017-12-13 16:50 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2018-01-09 14:28 - 2017-12-05 18:08 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2018-01-09 14:28 - 2017-12-05 18:08 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2018-01-09 14:28 - 2017-12-05 16:59 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-01-09 14:28 - 2017-12-05 16:49 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2018-01-07 15:03 - 2018-01-07 15:03 - 000001055 _____ C:\Users\PC\Desktop\Cheat Engine.lnk
2018-01-07 15:03 - 2018-01-07 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.7
2018-01-07 15:03 - 2018-01-07 15:03 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.7
2018-01-07 13:51 - 2018-01-09 14:09 - 000000000 ____D C:\Users\PC\Downloads\NHL_07-Razor1911
2018-01-07 13:50 - 2018-01-12 20:08 - 000000000 ____D C:\Users\PC\AppData\LocalLow\BitTorrent
2018-01-07 13:49 - 2018-01-13 15:30 - 000000000 ____D C:\Users\PC\AppData\Roaming\BitTorrent
2018-01-07 13:49 - 2018-01-07 13:49 - 002870880 _____ (BitTorrent Inc.) C:\Users\PC\Downloads\BitTorrent.exe
2018-01-07 13:49 - 2018-01-07 13:49 - 000000834 _____ C:\Users\PC\Desktop\BitTorrent.lnk
2018-01-07 13:49 - 2018-01-07 13:49 - 000000814 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2018-01-07 12:55 - 2018-01-07 12:55 - 000000000 ____D C:\Users\PC\AppData\LocalLow\WARTEAM
2018-01-06 21:04 - 2018-01-06 21:04 - 000000000 ____D C:\Users\PC\AppData\LocalLow\AMD
2018-01-06 20:42 - 2018-01-19 21:39 - 000003146 _____ C:\Windows\System32\Tasks\StartCN
2018-01-06 20:42 - 2018-01-19 21:39 - 000003060 _____ C:\Windows\System32\Tasks\StartDVR
2018-01-06 20:42 - 2018-01-06 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2018-01-06 20:42 - 2018-01-06 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\##ID_STRING16##
2018-01-06 20:40 - 2018-01-06 20:40 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-01-06 20:32 - 2018-01-06 20:32 - 000000000 ____D C:\Users\PC\AppData\Local\RadeonInstaller
2018-01-06 20:31 - 2018-01-06 20:32 - 041035960 _____ (AMD Inc.) C:\Users\PC\Downloads\radeon-software-adrenalin-17.12.2-minimalsetup-171219_web.exe
2018-01-06 20:24 - 2018-01-06 20:24 - 035220872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\SET4E6A.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 001454984 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\SET4A3C.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 001232264 _____ (AMD) C:\Windows\system32\coinst_17.40.dll
2018-01-06 20:24 - 2018-01-06 20:24 - 000223112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDF78.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SET972.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 000034501 _____ C:\Windows\system32\AMDKernelEvents.man
2018-01-06 20:24 - 2017-12-07 00:25 - 000224136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2018-01-06 20:24 - 2017-12-07 00:25 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2018-01-06 20:24 - 2017-12-07 00:24 - 001462664 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2018-01-06 20:24 - 2017-12-07 00:22 - 035687304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2018-01-06 20:23 - 2018-01-06 20:23 - 001077216 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2018-01-06 20:23 - 2018-01-06 20:23 - 000122848 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2018-01-06 20:21 - 2018-01-06 20:21 - 000905736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000201296 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2018-01-06 20:21 - 2018-01-06 20:21 - 000096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000041480 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2018-01-06 20:09 - 2018-01-20 18:43 - 000002874 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (PC)
2018-01-06 20:09 - 2018-01-20 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2018-01-06 20:09 - 2018-01-19 21:39 - 000003242 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2018-01-06 20:09 - 2018-01-19 21:39 - 000002998 _____ C:\Windows\System32\Tasks\ASC11_PerformanceMonitor
2018-01-06 20:09 - 2018-01-19 21:39 - 000002802 _____ C:\Windows\System32\Tasks\ASC11_SkipUac_PC
2018-01-06 20:09 - 2018-01-18 15:02 - 000002222 _____ C:\Users\Public\Desktop\Advanced SystemCare 11.lnk
2018-01-06 20:09 - 2018-01-16 13:48 - 000002234 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2018-01-06 20:09 - 2018-01-06 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2018-01-06 20:07 - 2018-01-06 20:08 - 028486704 _____ (IObit ) C:\Users\PC\Downloads\advanced-systemcare-setup.exe
2018-01-06 20:05 - 2018-01-06 20:05 - 000000000 ____D C:\Users\PC\AppData\Local\AVAST Software
2018-01-06 19:02 - 2018-01-06 19:02 - 000000222 _____ C:\Users\PC\Desktop\WARMODE.url
2018-01-06 14:51 - 2018-01-06 14:51 - 000000000 ____D C:\Users\PC\.cache
2018-01-06 14:05 - 2018-01-06 15:13 - 000000000 ____D C:\Users\PC\AppData\LocalLow\VRChat
2018-01-06 14:05 - 2018-01-06 14:05 - 000000000 ____D C:\Users\PC\AppData\Roaming\.mono
2018-01-06 14:05 - 2018-01-06 14:05 - 000000000 ____D C:\ProgramData\.mono
2018-01-06 12:34 - 2018-01-06 12:34 - 000000222 _____ C:\Users\PC\Desktop\VRChat.url
2018-01-05 20:48 - 2018-01-05 20:48 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-01-05 20:48 - 2018-01-05 20:48 - 000045704 _____ () C:\Windows\system32\Drivers\staport.sys
2018-01-05 20:48 - 2018-01-05 20:46 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-01-02 10:42 - 2018-01-10 15:56 - 000427440 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-01 17:01 - 2018-01-06 20:48 - 000119104 _____ C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-30 19:02 - 2018-01-20 18:36 - 000000000 ____D C:\Users\PC\AppData\Local\Spotify
2017-12-30 19:02 - 2017-12-30 19:02 - 000001752 _____ C:\Users\PC\Desktop\Spotify.lnk
2017-12-30 19:02 - 2017-12-30 19:02 - 000001738 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-12-30 19:01 - 2018-01-20 00:07 - 000000000 ____D C:\Users\PC\AppData\Roaming\Spotify
2017-12-30 19:00 - 2017-12-30 19:00 - 000725488 _____ (Spotify Ltd) C:\Users\PC\Downloads\SpotifySetup.exe
2017-12-30 13:15 - 2017-12-30 13:15 - 012024624 _____ (Cheat Engine ) C:\Users\PC\Downloads\cheat-engine.exe
2017-12-30 01:05 - 2017-12-30 01:05 - 000000069 _____ C:\Users\PC\Desktop\gah.txt
2017-12-28 21:05 - 2017-12-28 21:05 - 000215128 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-12-24 23:57 - 2017-12-24 23:57 - 000000000 ____D C:\Users\PC\Desktop\slaaam

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-20 18:52 - 2009-07-14 05:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-20 18:52 - 2009-07-14 05:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-20 18:50 - 2016-12-25 01:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\Seznam.cz
2018-01-20 18:49 - 2016-12-05 14:39 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Mozilla
2018-01-20 18:48 - 2016-12-24 19:02 - 000000000 ____D C:\Program Files (x86)\Steam
2018-01-20 18:45 - 2017-11-18 17:47 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-01-20 18:39 - 2017-11-16 07:37 - 000003130 _____ C:\Windows\System32\Tasks\GPU Tweak II
2018-01-20 18:38 - 2017-06-30 11:53 - 000000338 _____ C:\Windows\Tasks\Connect.job
2018-01-20 18:38 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-20 18:37 - 2016-12-02 23:24 - 000000000 ____D C:\Users\PC
2018-01-20 18:36 - 2017-10-06 21:19 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2018-01-20 18:36 - 2017-04-03 15:38 - 000000000 ____D C:\Users\PC\Documents\FIFA 17
2018-01-20 18:36 - 2017-01-19 21:20 - 000000000 ____D C:\ProgramData\Origin
2018-01-20 18:36 - 2016-12-24 20:59 - 000000000 ____D C:\ProgramData\ProductData
2018-01-20 18:36 - 2016-12-24 20:58 - 000000000 ____D C:\Users\PC\AppData\LocalLow\IObit
2018-01-20 18:36 - 2016-12-24 20:58 - 000000000 ____D C:\ProgramData\IObit
2018-01-20 18:36 - 2016-12-05 14:44 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-01-20 18:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2018-01-20 18:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-01-20 15:39 - 2017-04-03 13:51 - 000000000 ____D C:\Users\PC\AppData\Roaming\Origin
2018-01-20 00:12 - 2016-12-24 22:01 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-01-19 21:42 - 2016-12-24 19:11 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-19 21:39 - 2017-11-18 17:47 - 000003412 _____ C:\Windows\System32\Tasks\gxx speed launcher
2018-01-19 21:39 - 2017-11-08 17:11 - 000003172 _____ C:\Windows\System32\Tasks\{CCA6CD88-BFEA-4576-B05B-5826D22BF078}
2018-01-19 21:39 - 2017-10-28 22:53 - 000004130 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-01-19 21:39 - 2017-10-28 22:53 - 000002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-01-19 21:39 - 2017-09-13 17:15 - 000003140 _____ C:\Windows\System32\Tasks\{3B3EF065-C53D-46A0-B921-A7982F4CA517}
2018-01-19 21:39 - 2017-09-09 16:10 - 000004016 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1504969798
2018-01-19 21:39 - 2017-06-30 11:53 - 000002710 _____ C:\Windows\System32\Tasks\Connect
2018-01-19 21:39 - 2017-06-04 12:00 - 000003886 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1496574008
2018-01-19 21:39 - 2017-05-13 12:04 - 000006058 _____ C:\Windows\System32\Tasks\Hilisygherlerent Nodifier
2018-01-19 21:39 - 2017-03-15 19:21 - 000002892 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_PC
2018-01-19 21:39 - 2017-01-28 16:53 - 000003064 _____ C:\Windows\System32\Tasks\{9A191130-C8CE-4ED0-81F3-AE993CB8F45D}
2018-01-19 21:39 - 2016-12-29 21:46 - 000003374 _____ C:\Windows\System32\Tasks\SidebarExecute
2018-01-19 21:39 - 2016-12-05 14:42 - 000004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-19 21:39 - 2016-12-05 14:39 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-01-19 21:39 - 2016-12-05 14:33 - 000003064 _____ C:\Windows\System32\Tasks\AURA
2018-01-19 18:01 - 2016-12-05 15:19 - 001561362 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-01-19 18:01 - 2010-11-21 10:27 - 000669580 _____ C:\Windows\system32\perfh005.dat
2018-01-19 18:01 - 2010-11-21 10:27 - 000141738 _____ C:\Windows\system32\perfc005.dat
2018-01-19 18:01 - 2009-07-14 06:13 - 001561362 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-18 20:50 - 2017-06-04 11:56 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-01-16 13:44 - 2017-04-07 06:09 - 072499200 _____ C:\Windows\system32\config\software.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 048177152 _____ C:\Windows\system32\config\components.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 001425408 _____ C:\Windows\system32\config\default.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 000024576 _____ C:\Windows\system32\config\security.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 000024576 _____ C:\Windows\system32\config\sam.iodefrag.bak
2018-01-14 17:21 - 2009-07-14 06:08 - 000032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-01-14 14:26 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2018-01-14 10:35 - 2017-11-19 10:38 - 000000458 _____ C:\Windows\Tasks\gxx speed launcher.job
2018-01-13 14:56 - 2017-10-28 22:28 - 000000000 _____ C:\Windows\System32\Tasks\{0C1F97C7-0118-4E3F-A069-90EB0A8952DF}
2018-01-13 14:53 - 2016-12-24 19:36 - 000000000 ____D C:\Users\PC\AppData\Roaming\TS3Client
2018-01-12 12:49 - 2016-12-05 15:20 - 000000000 ____D C:\ProgramData\Package Cache
2018-01-10 20:48 - 2017-06-04 11:56 - 000457896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-01-10 20:48 - 2017-06-04 11:56 - 000146648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-01-10 16:07 - 2016-12-05 14:42 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-01-10 16:07 - 2016-12-05 14:42 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-10 16:07 - 2016-12-05 14:42 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-10 16:07 - 2016-12-05 14:42 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-09 17:40 - 2016-12-31 01:15 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2018-01-09 14:05 - 2017-10-06 21:19 - 000002107 _____ C:\Users\PC\Desktop\Discord.lnk
2018-01-09 14:05 - 2017-10-06 21:18 - 000000000 ____D C:\Users\PC\AppData\Local\Discord
2018-01-09 14:04 - 2017-10-06 21:19 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-01-07 15:03 - 2017-07-28 22:28 - 000000000 ____D C:\ProgramData\McAfee
2018-01-07 13:50 - 2017-10-17 14:03 - 000000000 ____D C:\Users\PC\AppData\Roaming\Lavasoft
2018-01-06 20:41 - 2016-12-05 14:32 - 000000000 ____D C:\Program Files (x86)\AMD
2018-01-06 20:40 - 2016-12-05 14:32 - 000000000 ____D C:\Users\PC\AppData\Local\AMD
2018-01-06 20:38 - 2016-12-05 14:32 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-01-06 20:33 - 2017-01-19 15:17 - 000000000 ____D C:\AMD
2018-01-06 20:28 - 2017-07-28 22:28 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-01-06 20:27 - 2016-12-05 14:33 - 000000000 ____D C:\Program Files (x86)\ASUS
2018-01-06 20:24 - 2016-12-24 21:11 - 015934280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETB3E7.tmp
2018-01-06 20:24 - 2016-12-24 21:11 - 001931408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETE007.tmp
2018-01-06 20:24 - 2016-12-24 21:11 - 000195888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDF47.tmp
2018-01-06 20:23 - 2016-12-24 21:11 - 000118816 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2018-01-06 20:09 - 2016-12-24 20:58 - 000000000 ____D C:\Program Files (x86)\IObit
2018-01-06 20:05 - 2016-12-05 14:37 - 000001026 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-01-06 12:28 - 2017-09-23 17:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-05 21:37 - 2017-04-28 20:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-05 20:48 - 2017-11-16 23:35 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-01-05 20:47 - 2017-06-04 11:56 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2017-12-28 21:05 - 2017-03-17 10:21 - 000215128 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-12-22 21:26 - 2017-01-09 16:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2017-12-22 21:26 - 2017-01-09 14:31 - 000000000 ____D C:\Program Files\Rockstar Games
2017-12-22 21:25 - 2017-01-09 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-12-22 14:50 - 2017-04-03 13:47 - 000000000 ____D C:\Program Files (x86)\Origin

==================== Files in the root of some directories =======

2017-11-16 20:07 - 2017-09-14 20:31 - 000000429 _____ () C:\Users\PC\update-F12017.bat
2017-11-01 15:16 - 2017-11-01 15:16 - 000086016 _____ (UPDATE CHAIN®) C:\Program Files (x86)\Common Files\atiecls.dll
2017-11-01 15:51 - 2017-11-01 15:51 - 000036864 ___SH (Microsoft® DEVELOPER) C:\Program Files (x86)\Common Files\cnex-demo.exe
2017-11-02 09:46 - 2017-11-02 09:46 - 000143360 ___SH (DEMO BITS) C:\Program Files (x86)\Common Files\cnex.exe
2017-11-08 17:11 - 2017-11-08 17:12 - 000001800 _____ () C:\Program Files (x86)\Common Files\hopatemp.ini
2017-11-02 09:50 - 2017-11-08 17:12 - 000057394 _____ () C:\Program Files (x86)\Common Files\unitemp.exe
2017-01-09 11:01 - 2017-01-09 11:01 - 000000017 _____ () C:\Users\PC\AppData\Local\resmon.resmoncfg
2017-02-25 14:17 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\PC\AppData\Local\TroubleshooterConfig.json

Files to move or delete:
====================
C:\Users\PC\AppData\Local\background_fault\aswRD.exe


Some files in TEMP:
====================
2018-01-11 19:10 - 2018-01-11 19:10 - 000534528 _____ () C:\Users\PC\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\Windows\Tasks\gxx speed launcher.job => C:\Program Files (x86)\Garena\Garena\Garena.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\PC\Desktop" je 1277 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Pomalý internet

Napsal: 20 led 2018 19:39
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Doporučuji odinstalovat AdvancedSystemCare. Tento optimizer občas vidí problémy i tam, kde nejsou a laik si jím snadno může poškodit systém.

Re: Pomalý internet

Napsal: 20 led 2018 19:47
od DannyH
ASC smazán, zde je log

# AdwCleaner 7.0.7.0 - Logfile created on Sat Jan 20 18:41:33 2018
# Updated on 2018/18/01 by Malwarebytes
# Database: 01-16-2018.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

Adware.Elex, WinAppSvr
Adware.Elex, CWASRE
Adware.Elex, CSHMDR
Adware.Elex, snare
PUP.Optional.Legacy, WCAssistantService
Trojan.Frethog, BIT
PUP.Optional.Elex, WinSAPSvc


***** [ Folders ] *****

Adware.Elex, C:\Program Files (x86)\Default Company Name
Adware.Elex, C:\Program Files (x86)\Elex-tech
Adware.Elex, C:\Users\PC\AppData\Roaming\Elex-tech
Adware.Elex, C:\Reimward
Adware.Elex, C:\Cosusp
Adware.Elex, C:\Users\PC\AppData\Local\CWASRE
Adware.Elex, C:\Users\PC\AppData\Local\CSHMDR
Adware.Elex, C:\Users\PC\AppData\Local\snare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\Application Data\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\PC\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\PC\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\Application Data\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\PC\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\PC\AppData\Roaming\IObit\Advanced SystemCare
Adware.Ghokswa, C:\Program Files (x86)\Footjane
Adware.Ghokswa, C:\Users\PC\AppData\Local\Footjane
PUP.Optional.Legacy, C:\Users\PC\AppData\Roaming\Firefox
PUP.Optional.Legacy, C:\ProgramData\Speedbit
PUP.Optional.Legacy, C:\ProgramData\Application Data\Speedbit
PUP.Optional.Legacy, C:\Program Files (x86)\Common Files\Speedbit
PUP.Optional.Legacy, C:\Users\All Users\Speedbit
PUP.Optional.Legacy, C:\Users\PC\AppData\Roaming\Speedbit
PUP.Optional.Legacy, C:\ProgramData\lavasoft\web companion
PUP.Optional.Legacy, C:\ProgramData\Application Data\lavasoft\web companion
PUP.Optional.Legacy, C:\Program Files (x86)\lavasoft\web companion
PUP.Optional.Legacy, C:\Users\All Users\lavasoft\web companion
PUP.Optional.Legacy, C:\Users\PC\AppData\Roaming\lavasoft\web companion
PUP.Optional.Legacy, C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy, C:\ProgramData\Application Data\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Terward
PUP.Optional.Solvusoft, C:\ProgramData\Solvusoft
PUP.Optional.Solvusoft, C:\ProgramData\Application Data\Solvusoft
PUP.Optional.Solvusoft, C:\Users\All Users\Solvusoft
PUP.Optional.Solvusoft, C:\Users\PC\AppData\Roaming\Solvusoft
PUP.Optional.WebCompanion, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
PUP.Optional.Elex, C:\Users\PC\AppData\Roaming\WinSAPSvc
Trojan.Buzus, C:\Program Files (x86)\DAP
PUP.Optional.DriverAgentPlus, C:\Users\PC\AppData\Roaming\DriverAgentPlus
PUP.Optional.DriverAgentPlus, C:\Users\PC\AppData\Roaming\DriverAgentPlus


***** [ Files ] *****

PUP.Optional.AdvancedSystemCare, C:\Windows\SysNative\REGISTRYDEFRAGBOOTTIME.EXE
PUP.Optional.Legacy, C:\Users\All Users\Documents\report.dat
PUP.Optional.Legacy, C:\Users\Public\Documents\report.dat
PUP.Optional.Legacy, C:\Users\All Users\Documents\temp.dat
PUP.Optional.Legacy, C:\Users\Public\Documents\temp.dat
PUP.Optional.Legacy, C:\END
PUP.Optional.Legacy, C:\Windows\SysNative\drivers\iSafeKrnlBoot.sys
PUP.Optional.Legacy, C:\Windows\SysNative\log\iSafeKrnlCall.log
PUP.Optional.Legacy, C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\searchplugins\yahoo-lavasoft.xml
PUP.Optional.Legacy, C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\searchplugins\luck.xml
PUP.Optional.WinBing, C:\Program Files\MOZILLA FIREFOX\DSENGINE.CFG
PUP.Optional.WinBing, C:\Program Files\MOZILLA FIREFOX\DEFAULTS\PREF\DSENGINE.JS


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy, Driver Booster Scheduler


***** [ Registry ] *****

Adware.Elex, [Key] - HKLM\SOFTWARE\Elex-tech
Adware.Elex, [Key] - HKLM\SOFTWARE\{84416237-6490-494D-9AD6-4994DD978971}
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Adware.Elex, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Adware.Elex, [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost | SNARE
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IOBIT\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Advanced SystemCare
Adware.Ghokswa, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {1CDDED36-9082-4F71-8926-D06BC46F383F}
Adware.Ghokswa, [Key] - HKLM\SOFTWARE\Footjane
Adware.Ghokswa, [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Footjane
Adware.Ghokswa, [Key] - HKCU\Software\Footjane
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Ecommfactory
PUP.Optional.Legacy, [Key] - HKCU\Software\Ecommfactory
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKCU\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\ecb`nl
PUP.Optional.Legacy, [Key] - HKU\.DEFAULT\Software\ecb`nl
PUP.Optional.Legacy, [Key] - HKU\S-1-5-18\Software\ecb`nl
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\InterSect Alliance
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2C652C0A-EC71-4797-8077-F67649177AB0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Windows\CurrentVersion\Run | Web Companion
PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Web Companion
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost | WinSAPSvc
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Applications\Setup_WinThruster_2016.exe
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost | BIT
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost | CWASRE
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost | CSHMDR
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Control\iSafeKrnlBoot
PUP.Optional.ByteFence, [Key] - HKU\.DEFAULT\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKU\S-1-5-18\Software\ByteFence
PUP.Optional.ByteFence, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION | ByteFence.exe
PUP.Optional.ByteFence, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
Adware.Elex.SHHKRST, [Key] - HKLM\SOFTWARE\initialpage123Software


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

Re: Pomalý internet

Napsal: 20 led 2018 19:53
od DannyH
Po restartu PC:

# AdwCleaner 7.0.7.0 - Logfile created on Sat Jan 20 18:44:20 2018
# Updated on 2018/18/01 by Malwarebytes
# Running on Windows 7 Home Premium (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

Deleted: WinAppSvr
Deleted: CWASRE
Deleted: CSHMDR
Deleted: snare
Deleted: WCAssistantService
Deleted: BIT
Deleted: WinSAPSvc


***** [ Folders ] *****

Deleted: C:\Program Files (x86)\Default Company Name
Deleted: C:\Program Files (x86)\Elex-tech
Deleted: C:\Users\PC\AppData\Roaming\Elex-tech
Deleted: C:\Reimward
Deleted: C:\Cosusp
Deleted: C:\Users\PC\AppData\Local\CWASRE
Deleted: C:\Users\PC\AppData\Local\CSHMDR
Deleted: C:\Users\PC\AppData\Local\snare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Footjane
Deleted: C:\Users\PC\AppData\Local\Footjane
Deleted: C:\Users\PC\AppData\Roaming\\Firefox
Deleted: C:\ProgramData\Speedbit
Deleted: C:\ProgramData\Application Data\Speedbit
Deleted: C:\Program Files (x86)\Common Files\Speedbit
Deleted: C:\Users\All Users\Speedbit
Deleted: C:\Users\PC\AppData\Roaming\Speedbit
Deleted: C:\ProgramData\lavasoft\web companion
Deleted: C:\ProgramData\Application Data\lavasoft\web companion
Deleted: C:\Program Files (x86)\lavasoft\web companion
Deleted: C:\Users\All Users\lavasoft\web companion
Deleted: C:\Users\PC\AppData\Roaming\lavasoft\web companion
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\Terward
Deleted: C:\ProgramData\Solvusoft
Deleted: C:\ProgramData\Application Data\Solvusoft
Deleted: C:\Users\All Users\Solvusoft
Deleted: C:\Users\PC\AppData\Roaming\Solvusoft
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted: C:\Users\PC\AppData\Roaming\WinSAPSvc
Deleted: C:\Program Files (x86)\DAP
Deleted: C:\Users\PC\AppData\Roaming\DriverAgentPlus
Deleted: C:\Users\PC\AppData\Roaming\DriverAgentPlus


***** [ Files ] *****

Deleted: C:\Windows\SysNative\REGISTRYDEFRAGBOOTTIME.EXE
Deleted: C:\Users\All Users\Documents\\report.dat
Deleted: C:\Users\Public\Documents\\report.dat
Deleted: C:\Users\All Users\Documents\\temp.dat
Deleted: C:\Users\Public\Documents\\temp.dat
Deleted: C:\END
Deleted: C:\Windows\SysNative\drivers\iSafeKrnlBoot.sys
Deleted: C:\Windows\SysNative\log\iSafeKrnlCall.log
Deleted: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\searchplugins\yahoo-lavasoft.xml
Deleted: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\searchplugins\luck.xml
Deleted: C:\Program Files\\MOZILLA FIREFOX\DSENGINE.CFG
Deleted: C:\Program Files\\MOZILLA FIREFOX\DEFAULTS\PREF\DSENGINE.JS


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted: Driver Booster Scheduler


***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\Elex-tech
Deleted: [Key] - HKLM\SOFTWARE\{84416237-6490-494D-9AD6-4994DD978971}
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost|SNARE
Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{1CDDED36-9082-4F71-8926-D06BC46F383F}
Deleted: [Key] - HKLM\SOFTWARE\Footjane
Deleted: [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Footjane
Deleted: [Key] - HKCU\Software\Footjane
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
Deleted: [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Ecommfactory
Deleted: [Key] - HKCU\Software\Ecommfactory
Deleted: [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion
Deleted: [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Lavasoft\Web Companion
Deleted: [Key] - HKCU\Software\Lavasoft\Web Companion
Deleted: [Key] - HKLM\SOFTWARE\ecb`nl
Deleted: [Key] - HKU\.DEFAULT\Software\ecb`nl
Deleted: [Key] - HKU\S-1-5-18\Software\ecb`nl
Deleted: [Key] - HKLM\SOFTWARE\InterSect Alliance
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2C652C0A-EC71-4797-8077-F67649177AB0}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted: [Value] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted: [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost|WinSAPSvc
Deleted: [Key] - HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe
Deleted: [Key] - HKLM\SOFTWARE\Classes\Applications\Setup_WinThruster_2016.exe
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost|BIT
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost|CWASRE
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost|CSHMDR
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Control\iSafeKrnlBoot
Deleted: [Key] - HKU\.DEFAULT\Software\ByteFence
Deleted: [Key] - HKU\S-1-5-18\Software\ByteFence
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|ByteFence.exe
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted: [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\csastats
Deleted: [Key] - HKCU\Software\csastats
Deleted: [Key] - HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\PRODUCTSETUP
Deleted: [Key] - HKCU\Software\PRODUCTSETUP
Deleted: [Key] - HKLM\SOFTWARE\initialpage123Software


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [11059 B] - [2018/1/20 18:41:33]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Re: Pomalý internet

Napsal: 20 led 2018 20:39
od Rudy
Dejte nový log FRST.

Re: Pomalý internet

Napsal: 20 led 2018 20:45
od DannyH
Zde,

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.01.2018 01
Ran by PC (administrator) on PC-PC (20-01-2018 20:42:06)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Garena Online ) C:\Program Files (x86)\Garena\Garena\2.0.1711.1719\gxxsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(DEMO BITS) C:\Program Files (x86)\Common Files\cnex.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
() C:\Users\PC\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Users\PC\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
() C:\Windows\runSW.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(Realtek) C:\Windows\SwUSB.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(Spotify Ltd) C:\Users\PC\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\PC\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-09-09] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-05] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-09-04] (Intel Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\PC\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\PC\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19405824 2017-04-14] ()
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [background_fault] => C:\Users\PC\AppData\Local\background_fault\aswRD.exe [1419576 2017-04-06] (AVAST Software) <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Run: [Spotify Web Helper] => C:\Users\PC\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-01-18] (Spotify Ltd)
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {12d1994a-ca1c-11e6-a92e-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {594b6c4a-bade-11e6-bdd2-806e6f6e6963} - D:\UI.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {f341c7c7-b8d8-11e6-8fab-806e6f6e6963} - D:\UI.exe
HKLM\...\Providers\txxi2plt: C:\Program Files (x86)\Hilisygherlerent Nodifier\local64spl.dll <==== ATTENTION
ShellExecuteHooks: No Name - {6774068A-3611-11E7-B3E6-64006A5CFC23} - -> No File
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 1050 J410 series.lnk [2018-01-20]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{08D853D5-5679-44B6-B11E-E7746426F06B}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{19D7843D-1105-4D6B-98F0-53D7E3920DD0}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaie
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {0516562C-52AA-4C64-9C89-273030F7CF41} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {3AB890AB-8F58-4433-8750-9A16E3862A1B} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {445625C6-83F9-4A14-BEC2-F44D8E60936E} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {46C274D6-9208-4255-BB50-C19E29C6773A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {4B2F72A5-1556-46D9-9751-2D3549985B05} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {7455A749-0742-4729-913C-A6F5E4D8BADA} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {A6356852-B425-42E9-856D-9C39DE2EEE96} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {AFA83328-027B-48D9-9EEE-40A2B0CCEE1F} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10444__180107__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> {D7D92CAA-B1DA-4F7F-9C93-E204D3470234} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-16] (AVAST Software)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-16] (AVAST Software)
BHO-x32: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-29] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File

FireFox:
========
FF DefaultProfile: 5hrvxud6.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default [2018-01-20]
FF Homepage: Mozilla\Firefox\Profiles\5hrvxud6.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaff
FF NewTab: Mozilla\Firefox\Profiles\5hrvxud6.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10444__180107__yaff
FF NewTabOverride: Mozilla\Firefox\Profiles\5hrvxud6.default -> Enabled: "id":"{ea614400-e918-4741-9a97-7a972ff7c30b
FF Extension: (Avast Passwords) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-01-16]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-11-28]
FF Extension: (Steam Inventory Prices) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\ttz91@hotmail.com.xpi [2017-12-09]
FF Extension: (Avast Online Security) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\wrc@avast.com.xpi [2017-10-15]
FF Extension: (Adblock Plus) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-12]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-11-01]
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\features\{16b9c230-cbdf-47b4-86e1-2d1813f1a852}\disable-js-shared-memory@mozilla.org.xpi [2018-01-17] [Legacy]
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\5hrvxud6.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\extensions\arthurj8283@gmail.com
FF Extension: (xRocket Toolbar) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\s72y0pwr.default\extensions\arthurj8283@gmail.com [2017-05-18] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox\Firefox.exe

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.luckysearch123.com?type=hp&ts=14951 ... 9gfg4g3o0c
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.luckysearch123.com?type=hp&ts=14951 ... 9gfg4g3o0c"
CHR NewTab: ChromeDefaultData -> "active": true,
"entry": "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"

CHR DefaultSearchURL: ChromeDefaultData -> hxxps://www.facebook.com/search/top/?q={searchT ... ensearch=1
CHR DefaultSearchKeyword: ChromeDefaultData -> cs-cz.facebook.com
CHR DefaultSuggestURL: ChromeDefaultData -> hxxps://www.facebook.com/search/opensearch/sugg ... earchTerms}
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2018-01-06] <==== ATTENTION
CHR Extension: (Prezentace Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-09]
CHR Extension: (Dokumenty Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-09]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-09]
CHR Extension: (Seznam Lištička - Email) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-23]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-09]
CHR Extension: (Vyhledávání Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-12-09]
CHR Extension: (Dashlane Secure Password Manager) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2017-05-03]
CHR Extension: (Tabulky Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-09]
CHR Extension: (Download Accelerator Plus (DAP)) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb [2017-05-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-24]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-09]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-07]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-05] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1494024 2017-06-27] ()
S2 cnexx; C:\Program Files (x86)\Common Files\cnex-demo.exe [36864 2017-11-01] (Microsoft® DEVELOPER) [File not signed]
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-09-18] (EasyAntiCheat Ltd)
R2 GarenaPlatform; C:\Program Files (x86)\Garena\Garena\2.0.1711.1719\gxxsvc.exe [318296 2017-11-17] (Garena Online )
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2155328 2017-12-22] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3025224 2017-12-22] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2017-04-08] ()
R2 Realtek8723AU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [File not signed]
R2 RunSwUSB; C:\Windows\runSW.exe [44104 2013-05-14] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AIDA64Driver; no ImagePath
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-05] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-05] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-05] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-05] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-05] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-05] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-08] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-10] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-05] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-05] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-10] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-05] (AVAST Software)
S3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-01-20] (CPUID)
S3 DrvAgent64; no ImagePath
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-05-13] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-05-13] (Disc Soft Ltd)
S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [32840 2017-06-20] (ELAN Microelectronic Corp.)
S3 gdrv; no ImagePath
S3 gkernel; no ImagePath
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-12-24] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [41480 2018-01-06] (Intel Corporation)
S1 iSafeNetFilter; no ImagePath <==== ATTENTION
S1 ISODisk; C:\Windows\SysWow64\Drivers\ISODisk.sys [9600 2006-04-26] () [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [201296 2018-01-06] (Intel Corporation)
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2350152 2013-05-07] (Realtek Semiconductor Corporation )
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S1 ESEADriver2; \??\C:\Users\PC\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATTENTION
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
S3 iSafeKrnlBoot; system32\DRIVERS\iSafeKrnlBoot.sys [X] <==== ATTENTION
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-20 19:48 - 2018-01-20 19:48 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-20 19:42 - 2018-01-20 19:42 - 000011059 _____ C:\Users\PC\Desktop\AdwCleaner[S0].txt
2018-01-20 19:40 - 2018-01-20 19:44 - 000000000 ____D C:\AdwCleaner
2018-01-20 19:39 - 2018-01-20 19:40 - 000000049 _____ C:\Users\PC\Desktop\xx.txt
2018-01-20 19:39 - 2018-01-20 19:39 - 008206624 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_7.0.7.0.exe
2018-01-20 19:05 - 2018-01-20 20:42 - 000025296 _____ C:\Users\PC\Desktop\FRST.txt
2018-01-20 19:05 - 2018-01-20 19:05 - 000000000 ____D C:\FRST
2018-01-20 19:04 - 2018-01-20 19:04 - 000112640 _____ (forum.viry.cz) C:\Users\PC\Desktop\FRSTLauncher.exe
2018-01-20 19:02 - 2018-01-20 19:02 - 002393088 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2018-01-20 11:21 - 2018-01-20 11:21 - 000000222 _____ C:\Users\PC\Desktop\Football Manager 2017.url
2018-01-16 13:44 - 2018-01-16 13:44 - 000000000 ____H C:\asc_rdflag
2018-01-14 00:35 - 2018-01-14 00:36 - 002302702 _____ C:\Users\PC\Downloads\game_video_12196524_ajQjdNBLSlEFMAhVFvguSkvhWNU.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 002014448 _____ C:\Users\PC\Downloads\game_video_12194646_jsRp6B42APHQ0JdMwaZTKCxArb4.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001814169 _____ C:\Users\PC\Downloads\game_video_12193699_pe7OFqWmeNotWJjLGaUr8EYfHLk.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001768909 _____ C:\Users\PC\Downloads\game_video_12196053_2_6g_hGGA6IUpChfkDriqeF3qwc.dem.gz
2018-01-14 00:35 - 2018-01-14 00:35 - 001687408 _____ C:\Users\PC\Downloads\game_video_12195285_YFKcS-AqfSXze1vLo51H1tG2KW8.dem.gz
2018-01-14 00:34 - 2018-01-14 00:35 - 002156407 _____ C:\Users\PC\Downloads\game_video_12189091_0W0YCFt68M5FPile1LMjit7oX6A.dem.gz
2018-01-12 12:53 - 2018-01-12 12:55 - 000000000 ____D C:\Users\PC\AppData\Local\CaptureOne
2018-01-12 12:53 - 2018-01-12 12:53 - 000000000 ____D C:\Users\PC\AppData\Local\Phase_One
2018-01-12 12:53 - 2018-01-12 12:53 - 000000000 ____D C:\ProgramData\Phase One
2018-01-12 12:52 - 2018-01-12 12:52 - 000000000 ____D C:\Program Files\DIFX
2018-01-12 12:50 - 2018-01-12 12:50 - 000001010 _____ C:\Users\PC\Desktop\Capture One 11.lnk
2018-01-12 12:50 - 2018-01-12 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phase One
2018-01-12 12:49 - 2018-01-12 12:49 - 000000000 ____D C:\Program Files\Phase One
2018-01-12 12:07 - 2018-01-12 12:10 - 150404192 _____ (Phase One A/S ) C:\Users\PC\Downloads\CaptureOne.Win.11.0.0.exe
2018-01-09 17:40 - 2018-01-09 17:40 - 000001959 _____ C:\Users\Public\Desktop\NHL07.lnk
2018-01-09 17:40 - 2018-01-09 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA SPORTS
2018-01-09 17:38 - 2018-01-09 17:38 - 000000000 ____D C:\Program Files (x86)\EA SPORTS
2018-01-09 14:28 - 2018-01-01 03:21 - 005581544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-01-09 14:28 - 2018-01-01 03:21 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000948968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-01-09 14:28 - 2018-01-01 03:21 - 000288488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-01-09 14:28 - 2018-01-01 03:21 - 000213736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-01-09 14:28 - 2018-01-01 03:21 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2018-01-09 14:28 - 2018-01-01 03:21 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-01-09 14:28 - 2018-01-01 03:19 - 001665384 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 014183936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 002004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001741312 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 001110528 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000705024 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2018-01-09 14:28 - 2018-01-01 03:18 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2018-01-09 14:28 - 2018-01-01 03:18 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2018-01-09 14:28 - 2018-01-01 03:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 03:18 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-01-09 14:28 - 2018-01-01 03:13 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-01-09 14:28 - 2018-01-01 03:04 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2018-01-09 14:28 - 2018-01-01 03:02 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001390080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000304640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-01-09 14:28 - 2018-01-01 03:00 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2018-01-09 14:28 - 2018-01-01 03:00 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\traffic.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-01-09 14:28 - 2018-01-01 03:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:55 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2018-01-09 14:28 - 2018-01-01 02:55 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2018-01-09 14:28 - 2018-01-01 02:54 - 004013800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-01-09 14:28 - 2018-01-01 02:54 - 003959016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-01-09 14:28 - 2018-01-01 02:54 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-01-09 14:28 - 2018-01-01 02:50 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-01-09 14:28 - 2018-01-01 02:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-01-09 14:28 - 2018-01-01 02:49 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-01-09 14:28 - 2018-01-01 02:46 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-01-09 14:28 - 2018-01-01 02:45 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-01-09 14:28 - 2018-01-01 02:43 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2018-01-09 14:28 - 2018-01-01 02:43 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2018-01-09 14:28 - 2018-01-01 02:43 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshqos.dll
2018-01-09 14:28 - 2018-01-01 02:42 - 000460288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-01-09 14:28 - 2018-01-01 02:42 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-01-09 14:28 - 2018-01-01 02:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-01-09 14:28 - 2018-01-01 02:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-01-09 14:28 - 2018-01-01 02:41 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-01-09 14:28 - 2018-01-01 02:39 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-01-09 14:28 - 2018-01-01 02:36 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-01-09 14:28 - 2018-01-01 02:36 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-01-09 14:28 - 2018-01-01 02:35 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-01-09 14:28 - 2018-01-01 02:35 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-01-09 14:28 - 2017-12-30 08:29 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-01-09 14:28 - 2017-12-30 07:42 - 000347328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-01-09 14:28 - 2017-12-29 19:39 - 020274688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-01-09 14:28 - 2017-12-29 19:24 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-01-09 14:28 - 2017-12-29 19:13 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-01-09 14:28 - 2017-12-29 19:13 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-01-09 14:28 - 2017-12-29 19:12 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-01-09 14:28 - 2017-12-29 19:12 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-01-09 14:28 - 2017-12-29 19:11 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-01-09 14:28 - 2017-12-29 19:09 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-01-09 14:28 - 2017-12-29 19:06 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-01-09 14:28 - 2017-12-29 19:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-01-09 14:28 - 2017-12-29 19:04 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-01-09 14:28 - 2017-12-29 19:03 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-01-09 14:28 - 2017-12-29 18:55 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-01-09 14:28 - 2017-12-29 18:51 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-01-09 14:28 - 2017-12-29 18:50 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-01-09 14:28 - 2017-12-29 18:50 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-01-09 14:28 - 2017-12-29 18:47 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-01-09 14:28 - 2017-12-29 18:47 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-01-09 14:28 - 2017-12-29 18:46 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-01-09 14:28 - 2017-12-29 18:45 - 004508160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-01-09 14:28 - 2017-12-29 18:44 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-01-09 14:28 - 2017-12-29 18:39 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-01-09 14:28 - 2017-12-29 18:38 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-01-09 14:28 - 2017-12-29 18:38 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-01-09 14:28 - 2017-12-29 18:37 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-01-09 14:28 - 2017-12-29 18:36 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-01-09 14:28 - 2017-12-29 18:19 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-01-09 14:28 - 2017-12-29 18:15 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-01-09 14:28 - 2017-12-29 18:13 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-01-09 14:28 - 2017-12-29 10:15 - 025737728 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-01-09 14:28 - 2017-12-29 10:04 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-01-09 14:28 - 2017-12-29 10:04 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-01-09 14:28 - 2017-12-29 09:52 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-01-09 14:28 - 2017-12-29 09:51 - 005796352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-01-09 14:28 - 2017-12-29 09:51 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-01-09 14:28 - 2017-12-29 09:50 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-01-09 14:28 - 2017-12-29 09:50 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-01-09 14:28 - 2017-12-29 09:44 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-01-09 14:28 - 2017-12-29 09:43 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-01-09 14:28 - 2017-12-29 09:40 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-01-09 14:28 - 2017-12-29 09:39 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-01-09 14:28 - 2017-12-29 09:39 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-01-09 14:28 - 2017-12-29 09:32 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-01-09 14:28 - 2017-12-29 09:28 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-01-09 14:28 - 2017-12-29 09:22 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-01-09 14:28 - 2017-12-29 09:22 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-01-09 14:28 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-01-09 14:28 - 2017-12-29 09:18 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-01-09 14:28 - 2017-12-29 09:18 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-01-09 14:28 - 2017-12-29 09:16 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-01-09 14:28 - 2017-12-29 09:14 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-01-09 14:28 - 2017-12-29 09:05 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-01-09 14:28 - 2017-12-29 09:04 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-01-09 14:28 - 2017-12-29 09:03 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-01-09 14:28 - 2017-12-29 09:03 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-01-09 14:28 - 2017-12-29 09:01 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-01-09 14:28 - 2017-12-29 09:01 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-01-09 14:28 - 2017-12-29 08:50 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-01-09 14:28 - 2017-12-29 08:39 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-01-09 14:28 - 2017-12-29 08:27 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-01-09 14:28 - 2017-12-21 07:27 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-01-09 14:28 - 2017-12-13 17:31 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-01-09 14:28 - 2017-12-13 17:27 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-01-09 14:28 - 2017-12-13 17:15 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-01-09 14:28 - 2017-12-13 17:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-01-09 14:28 - 2017-12-13 16:50 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2018-01-09 14:28 - 2017-12-05 18:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2018-01-09 14:28 - 2017-12-05 18:08 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2018-01-09 14:28 - 2017-12-05 18:08 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2018-01-09 14:28 - 2017-12-05 16:59 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-01-09 14:28 - 2017-12-05 16:49 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2018-01-07 15:03 - 2018-01-07 15:03 - 000001055 _____ C:\Users\PC\Desktop\Cheat Engine.lnk
2018-01-07 15:03 - 2018-01-07 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.7
2018-01-07 15:03 - 2018-01-07 15:03 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.7
2018-01-07 13:51 - 2018-01-09 14:09 - 000000000 ____D C:\Users\PC\Downloads\NHL_07-Razor1911
2018-01-07 13:50 - 2018-01-12 20:08 - 000000000 ____D C:\Users\PC\AppData\LocalLow\BitTorrent
2018-01-07 13:49 - 2018-01-13 15:30 - 000000000 ____D C:\Users\PC\AppData\Roaming\BitTorrent
2018-01-07 13:49 - 2018-01-07 13:49 - 002870880 _____ (BitTorrent Inc.) C:\Users\PC\Downloads\BitTorrent.exe
2018-01-07 13:49 - 2018-01-07 13:49 - 000000834 _____ C:\Users\PC\Desktop\BitTorrent.lnk
2018-01-07 13:49 - 2018-01-07 13:49 - 000000814 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2018-01-07 12:55 - 2018-01-07 12:55 - 000000000 ____D C:\Users\PC\AppData\LocalLow\WARTEAM
2018-01-06 21:04 - 2018-01-06 21:04 - 000000000 ____D C:\Users\PC\AppData\LocalLow\AMD
2018-01-06 20:42 - 2018-01-20 20:35 - 000003146 _____ C:\Windows\System32\Tasks\StartCN
2018-01-06 20:42 - 2018-01-20 20:35 - 000003060 _____ C:\Windows\System32\Tasks\StartDVR
2018-01-06 20:42 - 2018-01-06 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2018-01-06 20:42 - 2018-01-06 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\##ID_STRING16##
2018-01-06 20:40 - 2018-01-06 20:40 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-01-06 20:32 - 2018-01-06 20:32 - 000000000 ____D C:\Users\PC\AppData\Local\RadeonInstaller
2018-01-06 20:31 - 2018-01-06 20:32 - 041035960 _____ (AMD Inc.) C:\Users\PC\Downloads\radeon-software-adrenalin-17.12.2-minimalsetup-171219_web.exe
2018-01-06 20:24 - 2018-01-06 20:24 - 035220872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\SET4E6A.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 001454984 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\SET4A3C.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 001232264 _____ (AMD) C:\Windows\system32\coinst_17.40.dll
2018-01-06 20:24 - 2018-01-06 20:24 - 000223112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDF78.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SET972.tmp
2018-01-06 20:24 - 2018-01-06 20:24 - 000034501 _____ C:\Windows\system32\AMDKernelEvents.man
2018-01-06 20:24 - 2017-12-07 00:25 - 000224136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2018-01-06 20:24 - 2017-12-07 00:25 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2018-01-06 20:24 - 2017-12-07 00:24 - 001462664 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2018-01-06 20:24 - 2017-12-07 00:22 - 035687304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2018-01-06 20:23 - 2018-01-06 20:23 - 001077216 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2018-01-06 20:23 - 2018-01-06 20:23 - 000122848 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2018-01-06 20:21 - 2018-01-06 20:21 - 000905736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000201296 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2018-01-06 20:21 - 2018-01-06 20:21 - 000096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2018-01-06 20:21 - 2018-01-06 20:21 - 000041480 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2018-01-06 20:09 - 2018-01-20 20:34 - 000002874 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (PC)
2018-01-06 20:09 - 2018-01-16 13:48 - 000002234 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2018-01-06 20:09 - 2018-01-06 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2018-01-06 20:07 - 2018-01-06 20:08 - 028486704 _____ (IObit ) C:\Users\PC\Downloads\advanced-systemcare-setup.exe
2018-01-06 20:05 - 2018-01-06 20:05 - 000000000 ____D C:\Users\PC\AppData\Local\AVAST Software
2018-01-06 19:02 - 2018-01-06 19:02 - 000000222 _____ C:\Users\PC\Desktop\WARMODE.url
2018-01-06 14:51 - 2018-01-06 14:51 - 000000000 ____D C:\Users\PC\.cache
2018-01-06 14:05 - 2018-01-06 15:13 - 000000000 ____D C:\Users\PC\AppData\LocalLow\VRChat
2018-01-06 14:05 - 2018-01-06 14:05 - 000000000 ____D C:\Users\PC\AppData\Roaming\.mono
2018-01-06 14:05 - 2018-01-06 14:05 - 000000000 ____D C:\ProgramData\.mono
2018-01-06 12:34 - 2018-01-06 12:34 - 000000222 _____ C:\Users\PC\Desktop\VRChat.url
2018-01-05 20:48 - 2018-01-05 20:48 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-01-05 20:48 - 2018-01-05 20:48 - 000045704 _____ () C:\Windows\system32\Drivers\staport.sys
2018-01-05 20:48 - 2018-01-05 20:46 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-01-02 10:42 - 2018-01-10 15:56 - 000427440 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-01 17:01 - 2018-01-06 20:48 - 000119104 _____ C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-30 19:02 - 2018-01-20 18:36 - 000000000 ____D C:\Users\PC\AppData\Local\Spotify
2017-12-30 19:02 - 2017-12-30 19:02 - 000001752 _____ C:\Users\PC\Desktop\Spotify.lnk
2017-12-30 19:02 - 2017-12-30 19:02 - 000001738 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-12-30 19:01 - 2018-01-20 00:07 - 000000000 ____D C:\Users\PC\AppData\Roaming\Spotify
2017-12-30 19:00 - 2017-12-30 19:00 - 000725488 _____ (Spotify Ltd) C:\Users\PC\Downloads\SpotifySetup.exe
2017-12-30 13:15 - 2017-12-30 13:15 - 012024624 _____ (Cheat Engine ) C:\Users\PC\Downloads\cheat-engine.exe
2017-12-30 01:05 - 2017-12-30 01:05 - 000000069 _____ C:\Users\PC\Desktop\gah.txt
2017-12-28 21:05 - 2017-12-28 21:05 - 000215128 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-12-24 23:57 - 2017-12-24 23:57 - 000000000 ____D C:\Users\PC\Desktop\slaaam

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-20 20:40 - 2009-07-14 05:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-20 20:40 - 2009-07-14 05:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-20 20:39 - 2016-12-05 14:39 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Mozilla
2018-01-20 20:35 - 2017-11-08 17:11 - 000003172 _____ C:\Windows\System32\Tasks\{CCA6CD88-BFEA-4576-B05B-5826D22BF078}
2018-01-20 20:35 - 2017-09-13 17:15 - 000003140 _____ C:\Windows\System32\Tasks\{3B3EF065-C53D-46A0-B921-A7982F4CA517}
2018-01-20 20:35 - 2017-03-15 19:21 - 000002892 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_PC
2018-01-20 20:35 - 2017-01-28 16:53 - 000003064 _____ C:\Windows\System32\Tasks\{9A191130-C8CE-4ED0-81F3-AE993CB8F45D}
2018-01-20 20:35 - 2016-12-05 14:44 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-01-20 20:34 - 2017-11-18 17:47 - 000003412 _____ C:\Windows\System32\Tasks\gxx speed launcher
2018-01-20 20:34 - 2017-11-16 07:37 - 000003130 _____ C:\Windows\System32\Tasks\GPU Tweak II
2018-01-20 20:34 - 2017-10-28 22:53 - 000004130 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-01-20 20:34 - 2017-10-28 22:53 - 000002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-01-20 20:34 - 2017-09-09 16:10 - 000004016 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1504969798
2018-01-20 20:34 - 2017-06-30 11:53 - 000002710 _____ C:\Windows\System32\Tasks\Connect
2018-01-20 20:34 - 2017-06-30 11:53 - 000000338 _____ C:\Windows\Tasks\Connect.job
2018-01-20 20:34 - 2017-06-04 12:00 - 000003886 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1496574008
2018-01-20 20:34 - 2017-05-13 12:04 - 000006058 _____ C:\Windows\System32\Tasks\Hilisygherlerent Nodifier
2018-01-20 20:34 - 2016-12-29 21:46 - 000003374 _____ C:\Windows\System32\Tasks\SidebarExecute
2018-01-20 20:34 - 2016-12-05 14:42 - 000004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-20 20:34 - 2016-12-05 14:39 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-01-20 20:34 - 2016-12-05 14:33 - 000003064 _____ C:\Windows\System32\Tasks\AURA
2018-01-20 20:31 - 2016-12-24 19:02 - 000000000 ____D C:\Program Files (x86)\Steam
2018-01-20 19:51 - 2017-11-18 17:47 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-01-20 19:51 - 2016-12-25 01:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\Seznam.cz
2018-01-20 19:46 - 2016-12-24 22:01 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-01-20 19:46 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-20 19:44 - 2017-10-17 14:03 - 000000000 ____D C:\Users\PC\AppData\Roaming\Lavasoft
2018-01-20 19:44 - 2017-10-17 14:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2018-01-20 19:44 - 2017-10-17 14:03 - 000000000 ____D C:\ProgramData\Lavasoft
2018-01-20 19:44 - 2017-10-17 14:03 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2018-01-20 19:44 - 2017-09-23 17:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-20 19:44 - 2017-05-16 13:08 - 000000000 ____D C:\Windows\system32\log
2018-01-20 19:44 - 2016-12-24 20:58 - 000000000 ____D C:\ProgramData\IObit
2018-01-20 19:42 - 2016-12-24 20:58 - 000000000 ____D C:\Users\PC\AppData\Roaming\IObit
2018-01-20 19:42 - 2016-12-24 20:58 - 000000000 ____D C:\Users\PC\AppData\LocalLow\IObit
2018-01-20 18:37 - 2016-12-02 23:24 - 000000000 ____D C:\Users\PC
2018-01-20 18:36 - 2017-10-06 21:19 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2018-01-20 18:36 - 2017-04-03 15:38 - 000000000 ____D C:\Users\PC\Documents\FIFA 17
2018-01-20 18:36 - 2017-01-19 21:20 - 000000000 ____D C:\ProgramData\Origin
2018-01-20 18:36 - 2016-12-24 20:59 - 000000000 ____D C:\ProgramData\ProductData
2018-01-20 18:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2018-01-20 18:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-01-20 15:39 - 2017-04-03 13:51 - 000000000 ____D C:\Users\PC\AppData\Roaming\Origin
2018-01-19 21:42 - 2016-12-24 19:11 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-01-19 18:01 - 2016-12-05 15:19 - 001561362 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-01-19 18:01 - 2010-11-21 10:27 - 000669580 _____ C:\Windows\system32\perfh005.dat
2018-01-19 18:01 - 2010-11-21 10:27 - 000141738 _____ C:\Windows\system32\perfc005.dat
2018-01-19 18:01 - 2009-07-14 06:13 - 001561362 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-18 20:50 - 2017-06-04 11:56 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-01-16 13:44 - 2017-04-07 06:09 - 072499200 _____ C:\Windows\system32\config\software.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 048177152 _____ C:\Windows\system32\config\components.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 001425408 _____ C:\Windows\system32\config\default.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 000024576 _____ C:\Windows\system32\config\security.iodefrag.bak
2018-01-16 13:44 - 2017-04-07 06:08 - 000024576 _____ C:\Windows\system32\config\sam.iodefrag.bak
2018-01-14 17:21 - 2009-07-14 06:08 - 000032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-01-14 14:26 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2018-01-14 10:35 - 2017-11-19 10:38 - 000000458 _____ C:\Windows\Tasks\gxx speed launcher.job
2018-01-13 14:56 - 2017-10-28 22:28 - 000000000 _____ C:\Windows\System32\Tasks\{0C1F97C7-0118-4E3F-A069-90EB0A8952DF}
2018-01-13 14:53 - 2016-12-24 19:36 - 000000000 ____D C:\Users\PC\AppData\Roaming\TS3Client
2018-01-12 12:49 - 2016-12-05 15:20 - 000000000 ____D C:\ProgramData\Package Cache
2018-01-10 20:48 - 2017-06-04 11:56 - 000457896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-01-10 20:48 - 2017-06-04 11:56 - 000146648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-01-10 16:07 - 2016-12-05 14:42 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-01-10 16:07 - 2016-12-05 14:42 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-10 16:07 - 2016-12-05 14:42 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-10 16:07 - 2016-12-05 14:42 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-09 17:40 - 2016-12-31 01:15 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2018-01-09 14:05 - 2017-10-06 21:19 - 000002107 _____ C:\Users\PC\Desktop\Discord.lnk
2018-01-09 14:05 - 2017-10-06 21:18 - 000000000 ____D C:\Users\PC\AppData\Local\Discord
2018-01-09 14:04 - 2017-10-06 21:19 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-01-07 15:03 - 2017-07-28 22:28 - 000000000 ____D C:\ProgramData\McAfee
2018-01-06 20:41 - 2016-12-05 14:32 - 000000000 ____D C:\Program Files (x86)\AMD
2018-01-06 20:40 - 2016-12-05 14:32 - 000000000 ____D C:\Users\PC\AppData\Local\AMD
2018-01-06 20:38 - 2016-12-05 14:32 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-01-06 20:33 - 2017-01-19 15:17 - 000000000 ____D C:\AMD
2018-01-06 20:28 - 2017-07-28 22:28 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-01-06 20:27 - 2016-12-05 14:33 - 000000000 ____D C:\Program Files (x86)\ASUS
2018-01-06 20:24 - 2016-12-24 21:11 - 015934280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETB3E7.tmp
2018-01-06 20:24 - 2016-12-24 21:11 - 001931408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETE007.tmp
2018-01-06 20:24 - 2016-12-24 21:11 - 000195888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDF47.tmp
2018-01-06 20:23 - 2016-12-24 21:11 - 000118816 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2018-01-06 20:09 - 2016-12-24 20:58 - 000000000 ____D C:\Program Files (x86)\IObit
2018-01-06 20:05 - 2016-12-05 14:37 - 000001026 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-01-05 21:37 - 2017-04-28 20:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-05 20:48 - 2017-11-16 23:35 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-01-05 20:48 - 2017-06-04 11:56 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-01-05 20:47 - 2017-06-04 11:56 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-01-05 20:46 - 2017-06-04 11:56 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2017-12-28 21:05 - 2017-03-17 10:21 - 000215128 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-12-22 21:26 - 2017-01-09 16:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2017-12-22 21:26 - 2017-01-09 14:31 - 000000000 ____D C:\Program Files\Rockstar Games
2017-12-22 21:25 - 2017-01-09 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-12-22 14:50 - 2017-04-03 13:47 - 000000000 ____D C:\Program Files (x86)\Origin

==================== Files in the root of some directories =======

2017-11-16 20:07 - 2017-09-14 20:31 - 000000429 _____ () C:\Users\PC\update-F12017.bat
2017-11-01 15:16 - 2017-11-01 15:16 - 000086016 _____ (UPDATE CHAIN®) C:\Program Files (x86)\Common Files\atiecls.dll
2017-11-01 15:51 - 2017-11-01 15:51 - 000036864 ___SH (Microsoft® DEVELOPER) C:\Program Files (x86)\Common Files\cnex-demo.exe
2017-11-02 09:46 - 2017-11-02 09:46 - 000143360 ___SH (DEMO BITS) C:\Program Files (x86)\Common Files\cnex.exe
2017-11-08 17:11 - 2017-11-08 17:12 - 000001800 _____ () C:\Program Files (x86)\Common Files\hopatemp.ini
2017-11-02 09:50 - 2017-11-08 17:12 - 000057394 _____ () C:\Program Files (x86)\Common Files\unitemp.exe
2017-01-09 11:01 - 2017-01-09 11:01 - 000000017 _____ () C:\Users\PC\AppData\Local\resmon.resmoncfg
2017-02-25 14:17 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\PC\AppData\Local\TroubleshooterConfig.json

Files to move or delete:
====================
C:\Users\PC\AppData\Local\background_fault\aswRD.exe


Some files in TEMP:
====================
2018-01-11 19:10 - 2018-01-11 19:10 - 000534528 _____ () C:\Users\PC\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\Windows\Tasks\gxx speed launcher.job => C:\Program Files (x86)\Garena\Garena\Garena.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\PC\Desktop" je 1285 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Pomalý internet

Napsal: 20 led 2018 22:11
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {12d1994a-ca1c-11e6-a92e-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {594b6c4a-bade-11e6-bdd2-806e6f6e6963} - D:\UI.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {f341c7c7-b8d8-11e6-8fab-806e6f6e6963} - D:\UI.exe
HKLM\...\Providers\txxi2plt: C:\Program Files (x86)\Hilisygherlerent Nodifier\local64spl.dll <==== ATTENTION
ShellExecuteHooks: No Name - {6774068A-3611-11E7-B3E6-64006A5CFC23} - -> No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
Toolbar: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2018-01-06] <==== ATTENTION
S3 AIDA64Driver; no ImagePath
S3 DrvAgent64; no ImagePath
S3 gdrv; no ImagePath
S3 gkernel; no ImagePath
S1 iSafeNetFilter; no ImagePath <==== ATTENTION
S1 ESEADriver2; \??\C:\Users\PC\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATTENTION
C:\Windows\system32\SET4E6A.tmp
C:\Windows\system32\SET4A3C.tmp
C:\Windows\system32\SETDF78.tmp
C:\Windows\system32\SET972.tmp
C:\Users\PC\AppData\Local\background_fault\aswRD.exe
C:\Users\PC\AppData\Local\Temp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Pomalý internet

Napsal: 20 led 2018 22:26
od DannyH
Hotovo,

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.01.2018 01
Ran by PC (20-01-2018 22:18:13) Run:2
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {12d1994a-ca1c-11e6-a92e-806e6f6e6963} - D:\Setup.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {594b6c4a-bade-11e6-bdd2-806e6f6e6963} - D:\UI.exe
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\...\MountPoints2: {f341c7c7-b8d8-11e6-8fab-806e6f6e6963} - D:\UI.exe
HKLM\...\Providers\txxi2plt: C:\Program Files (x86)\Hilisygherlerent Nodifier\local64spl.dll <==== ATTENTION
ShellExecuteHooks: No Name - {6774068A-3611-11E7-B3E6-64006A5CFC23} - -> No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
BHO-x32: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File
Toolbar: HKU\S-1-5-21-68404608-3496900357-4139737443-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2018-01-06] <==== ATTENTION
S3 AIDA64Driver; no ImagePath
S3 DrvAgent64; no ImagePath
S3 gdrv; no ImagePath
S3 gkernel; no ImagePath
S1 iSafeNetFilter; no ImagePath <==== ATTENTION
S1 ESEADriver2; \??\C:\Users\PC\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATTENTION
C:\Windows\system32\SET4E6A.tmp
C:\Windows\system32\SET4A3C.tmp
C:\Windows\system32\SETDF78.tmp
C:\Windows\system32\SET972.tmp
C:\Users\PC\AppData\Local\background_fault\aswRD.exe
C:\Users\PC\AppData\Local\Temp

EmptyTemp:
End
*****************

"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key not found
"HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NolowDiskSpaceChecks" => not found
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => key not found
"HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{12d1994a-ca1c-11e6-a92e-806e6f6e6963}" => removed successfully
HKLM\Software\Classes\CLSID\{12d1994a-ca1c-11e6-a92e-806e6f6e6963} => key not found
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{594b6c4a-bade-11e6-bdd2-806e6f6e6963} => key not found
HKLM\Software\Classes\CLSID\{594b6c4a-bade-11e6-bdd2-806e6f6e6963} => key not found
HKU\S-1-5-21-68404608-3496900357-4139737443-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f341c7c7-b8d8-11e6-8fab-806e6f6e6963} => key not found
HKLM\Software\Classes\CLSID\{f341c7c7-b8d8-11e6-8fab-806e6f6e6963} => key not found
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\txxi2plt => key not found
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order txxi2plt" => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{6774068A-3611-11E7-B3E6-64006A5CFC23}" => not found
HKLM\Software\Classes\CLSID\{6774068A-3611-11E7-B3E6-64006A5CFC23} => key not found
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => key not found
HKLM\Software\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => key not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => key not found
HKLM\Software\Wow6432Node\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => key not found
"HKU\S-1-5-21-68404608-3496900357-4139737443-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => not found
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => key not found
"HKLM\Software\Classes\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5}" => removed successfully
"HKLM\Software\Mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}" => removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
"HKLM\System\CurrentControlSet\Services\AIDA64Driver" => removed successfully
AIDA64Driver => service removed successfully
"HKLM\System\CurrentControlSet\Services\DrvAgent64" => removed successfully
DrvAgent64 => service removed successfully
"HKLM\System\CurrentControlSet\Services\gdrv" => removed successfully
gdrv => service removed successfully
"HKLM\System\CurrentControlSet\Services\gkernel" => removed successfully
gkernel => service removed successfully
"HKLM\System\CurrentControlSet\Services\iSafeNetFilter" => removed successfully
iSafeNetFilter => service removed successfully
"HKLM\System\CurrentControlSet\Services\ESEADriver2" => removed successfully
ESEADriver2 => service removed successfully
C:\Windows\system32\SET4E6A.tmp => moved successfully
C:\Windows\system32\SET4A3C.tmp => moved successfully
C:\Windows\system32\SETDF78.tmp => moved successfully
C:\Windows\system32\SET972.tmp => moved successfully
C:\Users\PC\AppData\Local\background_fault\aswRD.exe => moved successfully

"C:\Users\PC\AppData\Local\Temp" folder move:

Could not move "C:\Users\PC\AppData\Local\Temp" => Scheduled to move on reboot.


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7004800 B
Java, Flash, Steam htmlcache => 67612198 B
Windows/system/drivers => 29103232 B
Edge => 0 B
Chrome => 0 B
Firefox => 395833059 B
Opera => 167936 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 71104 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558406 B
systemprofile32 => 126549 B
LocalService => 66228 B
NetworkService => 66228 B
PC => 125383123 B

RecycleBin => 0 B
EmptyTemp: => 660.3 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 20-01-2018 22:22:38)

C:\Users\PC\AppData\Local\Temp => moved successfully

==== End of Fixlog 22:22:38 ====

Re: Pomalý internet

Napsal: 21 led 2018 11:39
od Rudy
Smazáno. Nastala nějaká změna?

Re: Pomalý internet

Napsal: 21 led 2018 12:29
od DannyH
Včera se mi zdálo, že už je to v pořádku, dnes je to skoro na praktické stejné koleji, jako předtím. Nejdřív šlape jak má, potom tam přijde ta kosa a stojí to za úplné kulový jako předtím. Nevím, jestli mě nešidí poskytovatel s nestabilním internetem, který dřív šlapal 24/7 jak měl a nebo tam může ještě něco být. Každopádně zlepšení tam určitě je, už to nestojí za úplný bobánek jako předtím, kdy jsem nemohl prakticky načíst skoro ani nic.

Re: Pomalý internet

Napsal: 21 led 2018 14:54
od Rudy
Zkuste si zde: www.dsl.cz změřit rychlost připojení k internetu a porovnejte se smlouvou o připojení. V průběhu měření se odpojte od všech webů, kromě tohoto a zrušte všechna stahování.

Re: Pomalý internet

Napsal: 21 led 2018 16:51
od DannyH
Měření mi ukazuje zhruba půlku z toho, co bych měl mít, takže tam určitě zavolám. Každopádně si cením Vaši pomoci, jelikož to více než pomohlo :)

Každopádně bych měl ještě mimo to jiný dotaz a to takový, zda se dají přebytečné/nepotřebné soubory v mém počítači odhalit a poslat je pryč. V opačném připadě, pokud k tomuto stačí normální CCleaner, tak bych Vám poté rád poděkoval za Váš čas a za úspěšné vyřešení problému(zpomalení) mého internetu a popřání hodně štěstí ve Vaši práci zde na webu. :idea: :| :28:



e.: Nebo odhalení nějakého toho nepřizpůsobivého viru, ale osobně nevidím nic, co by mělo dokazovat existenci nějakého viru.

Re: Pomalý internet

Napsal: 21 led 2018 17:21
od Rudy
Máte antivir AVAST. Ten by měl virus ukázat. Na běžné odstranění nepotřebných (dočasných) souborů a zbytečných registry klíčů CCleaner postačí.

Re: Pomalý internet

Napsal: 21 led 2018 17:35
od DannyH
V tom případě děkuji za Váš čas a hodně štěstí do budoucna zde na webu :)

Pěkný zbytek dne. :happy: :closed:

Re: Pomalý internet

Napsal: 21 led 2018 18:58
od Rudy
Hezký den i vám a nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz