Právě je 05 dub 2020 16:20

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz



Odeslat nové téma Odpovědět na téma  [ Příspěvků: 9 ] 
Autor Zpráva
 Předmět příspěvku: Prosim o preventivku
PříspěvekNapsal: 10 kvě 2019 14:51 
Offline
Návštěvník
Návštěvník

Registrován: 26 čer 2009 14:21
Příspěvky: 51
Dobry den,
rad bych poprosil o preventivku po dlouhe dobe.
Dekuji Stoupa

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05.2019
Ran by stoupa101 (administrator) on JAGUAR (Dell Inc. Latitude E7440) (10-05-2019 15:38:39)
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1903.21.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe
(Dell -> Dell Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe
(Dell -> Dell, Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe
(Dimension Engineering LLC -> Evolv LLC) C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ecigstats.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LLC Mail.Ru -> ) C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\stoupa101\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Viber Media S.à r.l. -> ) C:\Users\stoupa101\AppData\Local\Viber\ViberSandbox.exe
(Viber Media S.à r.l. -> Viber Media S.à r.l.) C:\Users\stoupa101\AppData\Local\Viber\Viber.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CSFTrayApp] => C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe [232288 2014-09-11] (Dell -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8474880 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [609200 2015-03-01] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1203856 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Viber] => C:\Users\stoupa101\AppData\Local\Viber\Viber.exe [37775944 2019-04-29] (Viber Media S.à r.l. -> Viber Media S.à r.l.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [uTorrent] => C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe [1816808 2019-05-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [1990144 2017-03-21] (ownCloud) [File not signed]
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [584320 2017-01-31] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Spotify] => C:\Users\stoupa101\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Discord] => C:\Users\stoupa101\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe [1809480 2019-03-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ECigStats] => C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [159368 2018-11-30] (Dimension Engineering LLC -> Evolv LLC)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [icq.desktop] => C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe [55756952 2019-04-26] (LLC Mail.Ru -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A58485D1-79F3-4BC9-A358-E239C6C047BA}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2015-01-27]
ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {123EA742-1270-4B96-A631-BED7DD534436} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {1B367677-9224-4E40-B21E-3A46AB84F6C6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {2093D3AA-4591-44EA-8E5D-B3D78DB9FFB7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {376A7F53-9934-49CD-8AC1-A0F1A3ED4E06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {56A1ABD3-4B4E-4603-9872-2238BF3BFF68} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {57F55D03-DAB3-4805-BE99-37245E3C2BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {605E7F6B-06B9-4F37-B179-024C663DCDFE} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {64DE71ED-C1A2-4DF9-8744-579AFC9AEB46} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [149272 2018-12-15] (Johannes Schindelin -> The Git Development Community)
Task: {789F5AAA-D918-4F12-ABD8-2F7846806ADD} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-04-10] (Dell Inc. -> Dell Inc.)
Task: {7D98AC2A-6888-4DE6-9FD2-870584062E92} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {85A7B4D2-BB57-4289-8ED0-D4FC3580A9A7} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {89104F0D-0B4B-45B6-B25E-D71421DC8B66} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {903C4852-8D57-46B5-A2D9-2C604530AAC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {960CB4BE-85F0-4735-82E9-8159AE84A6D2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [131129288 2019-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {96C14B06-1724-4117-9565-19FEE1C90923} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {AAF724B8-145B-4245-B998-C7E7F6ADBCBB} - \WPD\SqmUpload_S-1-5-21-1044220912-1926083053-1571816506-1001 -> No File <==== ATTENTION
Task: {C26FA183-0A1F-46BD-A6FB-89F6FC9CABEB} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {C8F5767C-50A9-47EC-9543-F67D46A833EB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {C9FD2F9A-5048-469A-B6C8-84C8A8CFDDFA} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {CE581081-EBD7-43CB-A5CF-9FF861E47C06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe)
Task: {D7777CC9-4E37-49B9-9ACB-EC294A43D40D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EBEA05F0-7AF7-4406-94F8-DC995008D6D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EE897583-B2E7-4E0F-9970-AA80684D30B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F0CF467F-ACC7-4938-BF5A-3A26D690FAFC} - System32\Tasks\Dell\Command Update => C:\Program Files (x86)\Dell\CommandUpdate\DellCommandUpdate.exe [2930824 2018-06-01] (Dell Inc -> Dell Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => cmd /c sc start Dell Foundation ServicesWORKGROUP JAGUAR

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{252f3261-7469-4b62-88d0-78c4b8dda1a2}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3cc28684-cf6d-4a33-97c3-e69fa7125ad6}: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{f4be8427-d92e-496e-ac1c-beec55ecf05f}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
BHO: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\X64\InvRedirHostIE64.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\InvRedirHostIE.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF DefaultProfile: 4jltx1yr.default
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default [2015-08-11]
FF Extension: (Emulator) - C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-08-11] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default [2019-05-10]
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (Avast Online Security) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\wrc@avast.com.xpi [2019-03-20]
FF Extension: (No Name) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-27]
FF SearchPlugin: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome
FF Extension: (Dell Data Protection | Security Tools) - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome [2014-12-30] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=http ... ne&group=0
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default [2019-05-10]
CHR Extension: (QR kód) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm [2014-12-30]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2018-05-24]
CHR Extension: (Disk Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (TV) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-12-30]
CHR Extension: (YouTube) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Star Legends) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2018-09-06]
CHR Extension: (Vyhledávání Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (AutoCAD 360) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-12-30]
CHR Extension: (Box) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-05-03]
CHR Extension: (PicMonkey) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2017-10-28]
CHR Extension: (Hodiny) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-12-30]
CHR Extension: (AdBlock) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-02]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-26]
CHR Extension: (Pixlr Editor) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2015-10-09]
CHR Extension: (Dropbox) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-03-23]
CHR Extension: (Top Eleven) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2018-05-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (HTML Validator) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbelhhnfhfjnaehkcnnaknldmnocglk [2019-03-01]
CHR Extension: (Hangouts Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Picasa) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-30]
CHR Extension: (Psykopaint) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-19]
CHR Extension: (Gmail) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-27]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-02]
CHR HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome.crx [2014-03-17]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [34976 2018-12-05] (Dell Inc -> )
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell Inc -> Dell)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-27] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R2 DellMgmtAgent; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe [255328 2014-09-11] (Dell -> Dell Inc.)
R2 DellMgmtLoader; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe [26464 2014-09-11] (Dell -> )
R2 DellMgmtServer; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe [33632 2014-09-11] (Dell -> Dell, Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Leader Technologies Inc -> Aviata, Inc.)
R2 DpHost; C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe [472912 2014-03-19] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19424 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-12-22] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [5701256 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> )
S3 OpenVpnService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [87040 2006-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [299776 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [198792 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 SDIOAssist; C:\Windows\System32\SDIOAssist.exe [95744 2014-06-18] (BayHubTech/O2Micro ) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39896 2019-04-10] (Dell Inc. -> Dell Inc.)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.35\bin\httpd.exe [29696 2018-09-19] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; c:\wamp\bin\mariadb\mariadb10.3.9\bin\mysqld.exe [15788968 2018-08-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.7.23\bin\mysqld.exe [39626752 2018-06-08] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation)
R2 postgresql-x64-9.6; "C:\PostgreSQL\9.6\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.6" -D "C:\PostgreSQL\9.6\data" -w

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 CredFltL; C:\WINDOWS\System32\DRIVERS\CredFltL.sys [37120 2014-09-11] (Dell -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2540800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [89224 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33928 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1561600 2016-08-23] (Creative Technology Ltd -> Creative Technology Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521032 2017-10-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro )
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [204424 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R0 SEDFilter; C:\WINDOWS\System32\DRIVERS\SEDFilter.sys [61184 2014-09-11] (Dell -> Dell Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [146512 2015-07-02] (Microsoft Windows Hardware Compatibility Publisher -> STMicroelectronics)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [216080 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [227008 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [37920 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-25] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [166912 2017-12-19] (Yamaha Corporation -> Yamaha Corporation)
U4 npcap_wifi; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-10 15:38 - 2019-05-10 15:39 - 000050153 ____C C:\Users\stoupa101\Desktop\FRST.txt
2019-05-10 15:36 - 2019-05-10 15:36 - 002430976 _____ (Farbar) C:\Users\stoupa101\Desktop\FRST64.exe
2019-05-10 15:32 - 2019-05-10 15:32 - 000000000 ___HD C:\OneDriveTemp
2019-05-10 15:31 - 2019-05-10 15:31 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-10 15:19 - 2019-05-10 15:19 - 000519080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-10 14:47 - 2019-05-10 14:47 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2019-05-10 14:47 - 2019-05-10 14:47 - 000001116 _____ C:\Users\Public\Desktop\WinSCP.lnk
2019-05-10 14:46 - 2019-05-10 14:46 - 009834432 _____ (Martin Prikryl ) C:\Users\stoupa101\Downloads\WinSCP-5.15.1-Setup.exe
2019-05-10 09:18 - 2019-05-10 13:30 - 000000000 ____D C:\Users\stoupa101\Downloads\iZombie.S05E02.WEB.h264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 11:11 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Cloak.And.Dagger.S02E07.WEB.x264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 07:02 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E22.HDTV.x264-SVA[rarbg]
2019-05-09 16:35 - 2019-05-09 16:35 - 000011339 _____ C:\Users\stoupa101\.bash_history
2019-05-09 10:44 - 2019-05-09 10:43 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-05-09 10:03 - 2019-05-09 13:25 - 000000000 ____D C:\Users\stoupa101\Downloads\Into.The.Badlands.S03.WEBRip.x264-ION10
2019-05-09 09:38 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Happy.2017.S02E07.WEB.x264-TBS[rarbg]
2019-05-09 09:34 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Whiskey.Cavalier.S01E11.HDTV.x264-KILLERS[rarbg]
2019-05-09 09:29 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E06.WEB.x264-STRiFE[rarbg]
2019-05-09 05:22 - 2019-05-09 12:50 - 000000000 ____D C:\Users\stoupa101\Downloads\Shadowhunters.S03.WEBRip.x264-ION10
2019-05-09 04:53 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E05.WEB.x264-STRiFE[rarbg]
2019-05-09 02:44 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E10.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-09 02:09 - 2019-05-09 10:41 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E08.WEB.h264-STRiFE[rarbg]
2019-05-08 19:24 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E07.WEB.x264-STRiFE[rarbg]
2019-05-08 15:54 - 2019-05-08 15:54 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.WEB.x264-STRiFE[rarbg]
2019-05-08 15:30 - 2019-05-08 15:30 - 000023234 _____ C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E21 (1).zip
2019-05-08 15:27 - 2019-05-08 15:27 - 000039354 _____ C:\Users\stoupa101\Downloads\4x19.zip
2019-05-08 09:39 - 2019-05-08 21:28 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E02.WEB.x264-STRiFE[rarbg]
2019-05-08 09:36 - 2019-05-09 10:41 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E03.WEB.x264-STRiFE[rarbg]
2019-05-08 09:36 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E04.WEB.x264-STRiFE[rarbg]
2019-05-08 09:29 - 2019-05-08 11:16 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E01.WEB.x264-STRiFE[rarbg]
2019-05-08 09:23 - 2019-05-08 10:55 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-08 07:24 - 2019-05-08 12:26 - 000000000 ____D C:\Users\stoupa101\Downloads\The.100.S06E02.WEB.h264-TBS[rarbg]
2019-05-08 07:24 - 2019-05-08 08:18 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Flash.2014.S05E21.WEB.h264-TBS[rarbg]
2019-05-07 22:24 - 2019-05-07 22:53 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S02.WEBRip.x264-ION10
2019-05-07 22:23 - 2019-05-07 22:59 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S03.WEBRip.x264-ION10
2019-05-07 21:26 - 2019-05-07 21:26 - 000023234 _____ C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E21.zip
2019-05-07 04:45 - 2019-05-07 04:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2019-05-06 15:51 - 2019-05-06 15:51 - 000043796 _____ C:\Users\stoupa101\Downloads\rozpocet 2019.xlsx
2019-05-06 05:56 - 2019-05-10 15:32 - 000000000 ___DC C:\Users\stoupa101\AppData\LocalLow\uTorrent
2019-05-05 17:06 - 2019-05-05 17:06 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-05 17:05 - 2019-05-05 17:05 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-05 17:05 - 2019-05-05 17:05 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-03 10:55 - 2019-05-03 10:55 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Viber
2019-05-02 15:06 - 2019-05-02 15:06 - 000000000 _____ C:\WINDOWS\invcol.tmp
2019-05-02 11:05 - 2019-05-02 11:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-05-02 10:20 - 2019-05-09 00:00 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-02 10:19 - 2019-05-02 10:19 - 021254208 _____ (Piriform Software Ltd) C:\Users\stoupa101\Downloads\ccsetup556.exe
2019-05-02 10:16 - 2019-05-09 00:00 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044220912-1926083053-1571816506-1001
2019-05-02 10:16 - 2019-05-02 10:16 - 000002417 ____C C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-27 21:25 - 2019-04-27 21:25 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-04-26 12:01 - 2019-04-26 12:01 - 000002081 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002079 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002069 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-04-25 06:45 - 2019-04-25 06:45 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-25 06:42 - 2019-05-10 06:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-25 06:42 - 2019-04-25 06:42 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-25 06:42 - 2019-04-25 06:42 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-25 06:42 - 2019-03-20 15:12 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-04-24 12:50 - 2019-04-24 12:50 - 000147483 _____ C:\Users\stoupa101\Downloads\Smlouva o Bankovní IDentitě - David Stopka.pdf
2019-04-16 13:51 - 2019-04-16 13:51 - 000056174 _____ C:\Users\stoupa101\Downloads\LostVapeDefault75Theme.ecigtheme
2019-04-16 13:50 - 2019-04-16 13:50 - 000058332 _____ C:\Users\stoupa101\Downloads\Gauges-2.2.0.ecigtheme
2019-04-12 13:28 - 2019-04-12 13:28 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-12 13:28 - 2019-04-12 13:28 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:28 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-12 13:27 - 2019-04-12 13:27 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-12 13:27 - 2019-04-12 13:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002033152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-11 09:23 - 2019-04-10 17:24 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-11 09:23 - 2019-04-10 17:24 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-10 15:39 - 2018-10-01 15:49 - 000000000 __HDC C:\Users\stoupa101\Desktop\.tmp.drivedownload
2019-05-10 15:38 - 2016-07-14 09:06 - 000000000 ____D C:\FRST
2019-05-10 15:38 - 2015-09-17 12:34 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\uTorrent
2019-05-10 15:36 - 2019-03-20 16:07 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2019-05-10 15:34 - 2018-06-27 18:53 - 000000000 __HDC C:\Users\stoupa101\Documents\.tmp.drivedownload
2019-05-10 15:32 - 2018-10-01 14:28 - 000000000 ___RD C:\Users\stoupa101\Disk Google
2019-05-10 15:32 - 2014-12-30 09:01 - 000000000 ___RD C:\Users\stoupa101\OneDrive
2019-05-10 15:31 - 2015-01-29 13:20 - 000000000 __SHD C:\Users\stoupa101\IntelGraphicsProfiles
2019-05-10 15:29 - 2019-03-14 14:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-10 15:29 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-10 15:23 - 2019-03-14 14:23 - 001843772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-10 15:23 - 2018-09-15 19:32 - 000752190 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-10 15:23 - 2018-09-15 19:32 - 000162630 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-10 15:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-10 15:23 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-10 15:20 - 2014-12-30 15:33 - 000131072 ___SH C:\CredSED.dat
2019-05-10 15:19 - 2019-03-14 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-10 15:18 - 2019-03-14 14:15 - 000000000 ____D C:\Users\stoupa101
2019-05-10 15:18 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-05-10 14:47 - 2014-12-31 15:38 - 000000600 ____C C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2019-05-10 14:47 - 2014-12-31 15:36 - 000000000 ____D C:\Program Files (x86)\WinSCP
2019-05-10 13:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-10 06:23 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\Documents\ViberDownloads
2019-05-09 14:44 - 2018-05-21 10:36 - 000000407 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt
2019-05-09 14:21 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Dell
2019-05-09 14:00 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-09 10:44 - 2016-11-15 10:05 - 000000000 ____D C:\Program Files (x86)\Java
2019-05-09 10:44 - 2014-12-30 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-09 10:44 - 2014-12-30 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-05-09 10:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-05-09 00:00 - 2019-03-20 15:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog
2019-05-09 00:00 - 2019-03-14 14:21 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-09 00:00 - 2019-03-14 14:21 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-09 00:00 - 2019-03-14 14:21 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-09 00:00 - 2019-03-14 14:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-09 00:00 - 2019-03-14 14:21 - 000003296 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2019-05-09 00:00 - 2019-03-14 14:21 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-09 00:00 - 2019-03-14 14:21 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-05-09 00:00 - 2019-03-14 14:21 - 000002854 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com
2019-05-09 00:00 - 2019-03-14 14:21 - 000002806 _____ C:\WINDOWS\System32\Tasks\Git for Windows Updater
2019-05-09 00:00 - 2019-03-14 14:21 - 000002638 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-05-09 00:00 - 2019-03-14 14:21 - 000002602 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2019-05-09 00:00 - 2019-03-14 14:21 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-05-09 00:00 - 2019-03-14 14:21 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-09 00:00 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-05-07 04:22 - 2017-08-24 16:38 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Spotify
2019-05-07 04:12 - 2017-08-24 16:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Spotify
2019-05-06 05:15 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\ViberPC
2019-05-06 05:14 - 2017-06-28 07:50 - 000000000 ____D C:\Program Files\DellTPad
2019-05-06 05:14 - 2014-12-19 05:13 - 000017768 _____ C:\WINDOWS\system32\results.xml
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-05 17:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-05 16:04 - 2015-01-06 13:02 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\CrashDumps
2019-05-02 20:15 - 2014-12-30 15:58 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\MPC-HC
2019-05-02 10:48 - 2019-03-14 12:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-02 10:21 - 2017-12-07 09:17 - 000000000 ___DC C:\Users\stoupa101\Desktop\Nová složka
2019-05-02 10:20 - 2018-05-02 16:32 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-02 10:15 - 2014-12-31 12:16 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\TSVNCache
2019-05-01 00:27 - 2017-12-11 23:39 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Packages
2019-04-30 22:59 - 2014-12-30 15:13 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 10:53 - 2019-04-01 15:00 - 000000000 ____D C:\Users\stoupa101\AppData\Roaming\ICQ
2019-04-27 11:03 - 2014-12-30 09:01 - 000000000 ____D C:\ProgramData\PCDr
2019-04-27 11:02 - 2014-12-19 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-27 10:02 - 2017-06-25 13:38 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-26 12:34 - 2014-12-31 09:18 - 000000000 ____D C:\NIX
2019-04-26 12:01 - 2018-06-27 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-04-25 06:42 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-24 15:28 - 2019-02-22 12:33 - 000000000 ____D C:\Program Files\Symfony
2019-04-24 10:16 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-23 12:37 - 2018-05-22 12:36 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt
2019-04-22 13:50 - 2018-11-06 12:03 - 000000000 ____D C:\Users\stoupa101\Downloads\__old
2019-04-21 14:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-19 14:54 - 2016-10-03 17:08 - 000000000 ____D C:\Users\stoupa101\Downloads\_RDY(no_tit)
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-14 19:13 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-14 12:25 - 2019-03-26 19:25 - 000000000 ____D C:\Users\stoupa101\AppData\Local\BitTorrentHelper
2019-04-13 16:03 - 2015-06-24 14:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\vlc
2019-04-12 16:08 - 2019-01-30 12:31 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\pgAdmin
2019-04-12 11:12 - 2015-01-12 17:25 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Composer
2019-04-11 11:39 - 2019-02-13 19:56 - 000000065 _____ C:\Users\stoupa101\.pgAdmin4.427924103.addr
2019-04-10 17:24 - 2014-12-31 09:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-10 17:12 - 2014-12-31 09:43 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-10 17:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-04-10 17:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2014-12-31 15:38 - 2019-05-10 14:47 - 000000600 ____C () C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2018-09-29 13:33 - 2018-09-29 13:33 - 000000000 ____C () C:\Users\stoupa101\AppData\Local\oobelibMkey.log
2014-12-30 16:58 - 2018-04-17 12:02 - 000000600 ____C () C:\Users\stoupa101\AppData\Local\PUTTY.RND
2015-07-23 09:51 - 2017-08-08 16:30 - 000007678 ____C () C:\Users\stoupa101\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================


Přílohy:
Addition.rar [18.94 KiB]
30 krát
Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 10 kvě 2019 14:54 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1833
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 10 kvě 2019 21:01 
Offline
Návštěvník
Návštěvník

Registrován: 26 čer 2009 14:21
Příspěvky: 51
2x zkouseno - pokazde zelena obrazovka a neco s Windows Insider. Po spusteni jsem nasel 2 totozne logy:

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-10-2019
# Duration: 00:00:18
# OS: Windows 10 Home
# Scanned: 27335
# Detected: 7


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy C:\Windows\Tasks\DRIVERTOOLKIT AUTORUN.JOB

***** [ Registry ] *****

PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion
PUP.Winlogon.Heuristic HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit

***** [ Chromium (and derivatives) ] *****

PUP.Optional.DefaultSearch.ShrtCln Adaware Secure Search

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1665 octets] - [10/05/2019 21:19:44]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 12 kvě 2019 15:24 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1833
Poprosim o nove logy FRST a ADDITION

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 12 kvě 2019 17:20 
Offline
Návštěvník
Návštěvník

Registrován: 26 čer 2009 14:21
Příspěvky: 51
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05.2019
Ran by stoupa101 (administrator) on JAGUAR (Dell Inc. Latitude E7440) (12-05-2019 18:14:36)
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1903.21.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe
(Dell -> Dell Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe
(Dell -> Dell, Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe
(Dimension Engineering LLC -> Evolv LLC) C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ecigstats.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LLC Mail.Ru -> ) C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\stoupa101\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Viber Media S.à r.l. -> Viber Media S.à r.l.) C:\Users\stoupa101\AppData\Local\Viber\Viber.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CSFTrayApp] => C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe [232288 2014-09-11] (Dell -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8474880 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [609200 2015-03-01] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1203856 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Viber] => C:\Users\stoupa101\AppData\Local\Viber\Viber.exe [37775944 2019-04-29] (Viber Media S.à r.l. -> Viber Media S.à r.l.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [uTorrent] => C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe [1816808 2019-05-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [1990144 2017-03-21] (ownCloud) [File not signed]
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [584320 2017-01-31] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Spotify] => C:\Users\stoupa101\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Discord] => C:\Users\stoupa101\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe [1809480 2019-03-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ECigStats] => C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [159368 2018-11-30] (Dimension Engineering LLC -> Evolv LLC)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [icq.desktop] => C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe [55756952 2019-04-26] (LLC Mail.Ru -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A58485D1-79F3-4BC9-A358-E239C6C047BA}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2015-01-27]
ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {123EA742-1270-4B96-A631-BED7DD534436} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {1B367677-9224-4E40-B21E-3A46AB84F6C6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {2093D3AA-4591-44EA-8E5D-B3D78DB9FFB7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {376A7F53-9934-49CD-8AC1-A0F1A3ED4E06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {56A1ABD3-4B4E-4603-9872-2238BF3BFF68} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {57F55D03-DAB3-4805-BE99-37245E3C2BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {605E7F6B-06B9-4F37-B179-024C663DCDFE} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {64DE71ED-C1A2-4DF9-8744-579AFC9AEB46} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [149272 2018-12-15] (Johannes Schindelin -> The Git Development Community)
Task: {789F5AAA-D918-4F12-ABD8-2F7846806ADD} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-04-10] (Dell Inc. -> Dell Inc.)
Task: {7D98AC2A-6888-4DE6-9FD2-870584062E92} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {85A7B4D2-BB57-4289-8ED0-D4FC3580A9A7} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {89104F0D-0B4B-45B6-B25E-D71421DC8B66} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {903C4852-8D57-46B5-A2D9-2C604530AAC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {960CB4BE-85F0-4735-82E9-8159AE84A6D2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [131129288 2019-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {96C14B06-1724-4117-9565-19FEE1C90923} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {AAF724B8-145B-4245-B998-C7E7F6ADBCBB} - \WPD\SqmUpload_S-1-5-21-1044220912-1926083053-1571816506-1001 -> No File <==== ATTENTION
Task: {C26FA183-0A1F-46BD-A6FB-89F6FC9CABEB} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {C8F5767C-50A9-47EC-9543-F67D46A833EB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {C9FD2F9A-5048-469A-B6C8-84C8A8CFDDFA} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {CE581081-EBD7-43CB-A5CF-9FF861E47C06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe)
Task: {D7777CC9-4E37-49B9-9ACB-EC294A43D40D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EBEA05F0-7AF7-4406-94F8-DC995008D6D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EE897583-B2E7-4E0F-9970-AA80684D30B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F0CF467F-ACC7-4938-BF5A-3A26D690FAFC} - System32\Tasks\Dell\Command Update => C:\Program Files (x86)\Dell\CommandUpdate\DellCommandUpdate.exe [2930824 2018-06-01] (Dell Inc -> Dell Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => cmd /c sc start Dell Foundation ServicesWORKGROUP JAGUAR

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{252f3261-7469-4b62-88d0-78c4b8dda1a2}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3cc28684-cf6d-4a33-97c3-e69fa7125ad6}: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{f4be8427-d92e-496e-ac1c-beec55ecf05f}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
BHO: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\X64\InvRedirHostIE64.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\InvRedirHostIE.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF DefaultProfile: 4jltx1yr.default
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default [2015-08-11]
FF Extension: (Emulator) - C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-08-11] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default [2019-05-12]
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (Avast Online Security) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\wrc@avast.com.xpi [2019-03-20]
FF Extension: (No Name) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-27]
FF SearchPlugin: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome
FF Extension: (Dell Data Protection | Security Tools) - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome [2014-12-30] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=http ... ne&group=0
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default [2019-05-12]
CHR Extension: (QR kód) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm [2014-12-30]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2018-05-24]
CHR Extension: (Disk Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (TV) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-12-30]
CHR Extension: (YouTube) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Star Legends) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2018-09-06]
CHR Extension: (Vyhledávání Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (AutoCAD 360) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-12-30]
CHR Extension: (Box) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-05-03]
CHR Extension: (PicMonkey) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2017-10-28]
CHR Extension: (Hodiny) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-12-30]
CHR Extension: (AdBlock) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-02]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-26]
CHR Extension: (Pixlr Editor) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2015-10-09]
CHR Extension: (Dropbox) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-03-23]
CHR Extension: (Top Eleven) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2018-05-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (HTML Validator) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbelhhnfhfjnaehkcnnaknldmnocglk [2019-03-01]
CHR Extension: (Hangouts Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Picasa) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-30]
CHR Extension: (Psykopaint) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-19]
CHR Extension: (Gmail) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-27]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-02]
CHR HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome.crx [2014-03-17]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [34976 2018-12-05] (Dell Inc -> )
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell Inc -> Dell)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-27] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R2 DellMgmtAgent; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe [255328 2014-09-11] (Dell -> Dell Inc.)
R2 DellMgmtLoader; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe [26464 2014-09-11] (Dell -> )
R2 DellMgmtServer; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe [33632 2014-09-11] (Dell -> Dell, Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Leader Technologies Inc -> Aviata, Inc.)
R2 DpHost; C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe [472912 2014-03-19] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19424 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-12-22] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [5701256 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> )
S3 OpenVpnService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [87040 2006-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [299776 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [198792 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 SDIOAssist; C:\Windows\System32\SDIOAssist.exe [95744 2014-06-18] (BayHubTech/O2Micro ) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39896 2019-04-10] (Dell Inc. -> Dell Inc.)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.35\bin\httpd.exe [29696 2018-09-19] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; c:\wamp\bin\mariadb\mariadb10.3.9\bin\mysqld.exe [15788968 2018-08-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.7.23\bin\mysqld.exe [39626752 2018-06-08] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation)
R2 postgresql-x64-9.6; "C:\PostgreSQL\9.6\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.6" -D "C:\PostgreSQL\9.6\data" -w

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 CredFltL; C:\WINDOWS\System32\DRIVERS\CredFltL.sys [37120 2014-09-11] (Dell -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2540800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [89224 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33928 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1561600 2016-08-23] (Creative Technology Ltd -> Creative Technology Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521032 2017-10-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro )
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [204424 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R0 SEDFilter; C:\WINDOWS\System32\DRIVERS\SEDFilter.sys [61184 2014-09-11] (Dell -> Dell Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [146512 2015-07-02] (Microsoft Windows Hardware Compatibility Publisher -> STMicroelectronics)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [216080 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [227008 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [37920 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-25] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [166912 2017-12-19] (Yamaha Corporation -> Yamaha Corporation)
U4 npcap_wifi; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-12 18:14 - 2019-05-12 18:14 - 002430976 _____ (Farbar) C:\Users\stoupa101\Desktop\FRST64.exe
2019-05-12 18:14 - 2019-05-12 18:14 - 000000000 ___DC C:\Users\stoupa101\Desktop\FRST-OlderVersion
2019-05-12 13:54 - 2019-05-12 15:45 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-12 13:34 - 2019-05-12 15:55 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.720p.WEB.x264-STRiFE[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E17.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E16.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S04E09.WEB.H264-MEMENTO[rarbg]
2019-05-11 09:09 - 2019-05-12 12:52 - 000000000 ____D C:\Users\stoupa101\Downloads\MacGyver.2016.S03E22.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 14:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Agents.of.S.H.I.E.L.D.S06E01.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 08:34 - 000000000 ____D C:\Users\stoupa101\Downloads\Hawaii.Five-0.2010.S09E24.HDTV.x264-KILLERS[rarbg]
2019-05-11 07:55 - 2019-05-11 08:16 - 000000000 ____D C:\Users\stoupa101\Downloads\Warrior.S01E06.WEB.h264-TBS[rarbg]
2019-05-10 22:53 - 2019-05-10 22:53 - 000024532 _____ C:\Users\stoupa101\Downloads\ECI(2019)000001-receipt.pdf
2019-05-10 21:30 - 2019-05-11 07:55 - 000000000 ____D C:\WINDOWS\Minidump
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-10 21:26 - 2019-05-10 21:26 - 000000000 ____D C:\Users\stoupa101\Downloads\Doom.Patrol.S01E13.WEBRip.x264-ION10
2019-05-10 21:14 - 2019-05-10 21:17 - 007025360 _____ (Malwarebytes) C:\Users\stoupa101\Desktop\adwcleaner_7.3.exe
2019-05-10 15:50 - 2019-05-10 15:50 - 000019391 ____C C:\Users\stoupa101\Desktop\Addition.rar
2019-05-10 15:40 - 2019-05-10 15:41 - 000082809 ____C C:\Users\stoupa101\Desktop\Addition.txt
2019-05-10 15:38 - 2019-05-12 18:15 - 000050996 ____C C:\Users\stoupa101\Desktop\FRST.txt
2019-05-10 15:32 - 2019-05-10 15:32 - 000000000 ___HD C:\OneDriveTemp
2019-05-10 15:19 - 2019-05-10 15:19 - 000519080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-10 14:47 - 2019-05-10 14:47 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2019-05-10 14:47 - 2019-05-10 14:47 - 000001116 _____ C:\Users\Public\Desktop\WinSCP.lnk
2019-05-10 14:46 - 2019-05-10 14:46 - 009834432 _____ (Martin Prikryl ) C:\Users\stoupa101\Downloads\WinSCP-5.15.1-Setup.exe
2019-05-10 09:18 - 2019-05-10 13:30 - 000000000 ____D C:\Users\stoupa101\Downloads\iZombie.S05E02.WEB.h264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 11:11 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Cloak.And.Dagger.S02E07.WEB.x264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 07:02 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E22.HDTV.x264-SVA[rarbg]
2019-05-09 16:35 - 2019-05-09 16:35 - 000011339 _____ C:\Users\stoupa101\.bash_history
2019-05-09 10:44 - 2019-05-09 10:43 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-05-09 10:03 - 2019-05-09 13:25 - 000000000 ____D C:\Users\stoupa101\Downloads\Into.The.Badlands.S03.WEBRip.x264-ION10
2019-05-09 09:38 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Happy.2017.S02E07.WEB.x264-TBS[rarbg]
2019-05-09 09:34 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Whiskey.Cavalier.S01E11.HDTV.x264-KILLERS[rarbg]
2019-05-09 05:22 - 2019-05-09 12:50 - 000000000 ____D C:\Users\stoupa101\Downloads\Shadowhunters.S03.WEBRip.x264-ION10
2019-05-08 07:24 - 2019-05-08 12:26 - 000000000 ____D C:\Users\stoupa101\Downloads\The.100.S06E02.WEB.h264-TBS[rarbg]
2019-05-07 22:24 - 2019-05-07 22:53 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S02.WEBRip.x264-ION10
2019-05-07 22:23 - 2019-05-07 22:59 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S03.WEBRip.x264-ION10
2019-05-07 04:45 - 2019-05-07 04:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2019-05-06 15:51 - 2019-05-06 15:51 - 000043796 _____ C:\Users\stoupa101\Downloads\rozpocet 2019.xlsx
2019-05-06 05:56 - 2019-05-10 21:31 - 000000000 ___DC C:\Users\stoupa101\AppData\LocalLow\uTorrent
2019-05-05 17:06 - 2019-05-05 17:06 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-05 17:05 - 2019-05-05 17:05 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-05 17:05 - 2019-05-05 17:05 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-03 10:55 - 2019-05-03 10:55 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Viber
2019-05-02 15:06 - 2019-05-02 15:06 - 000000000 _____ C:\WINDOWS\invcol.tmp
2019-05-02 11:05 - 2019-05-02 11:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-05-02 10:20 - 2019-05-12 18:01 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-02 10:19 - 2019-05-02 10:19 - 021254208 _____ (Piriform Software Ltd) C:\Users\stoupa101\Downloads\ccsetup556.exe
2019-05-02 10:16 - 2019-05-12 18:01 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044220912-1926083053-1571816506-1001
2019-05-02 10:16 - 2019-05-02 10:16 - 000002417 ____C C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-27 21:25 - 2019-04-27 21:25 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-04-26 12:01 - 2019-04-26 12:01 - 000002081 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002079 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002069 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-04-25 06:45 - 2019-04-25 06:45 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-25 06:42 - 2019-05-10 06:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-25 06:42 - 2019-04-25 06:42 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-25 06:42 - 2019-04-25 06:42 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-25 06:42 - 2019-03-20 15:12 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-04-24 12:50 - 2019-04-24 12:50 - 000147483 _____ C:\Users\stoupa101\Downloads\Smlouva o Bankovní IDentitě - David Stopka.pdf
2019-04-16 13:51 - 2019-04-16 13:51 - 000056174 _____ C:\Users\stoupa101\Downloads\LostVapeDefault75Theme.ecigtheme
2019-04-16 13:50 - 2019-04-16 13:50 - 000058332 _____ C:\Users\stoupa101\Downloads\Gauges-2.2.0.ecigtheme
2019-04-12 13:28 - 2019-04-12 13:28 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-12 13:28 - 2019-04-12 13:28 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:28 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-12 13:27 - 2019-04-12 13:27 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-12 13:27 - 2019-04-12 13:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002033152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-12 18:15 - 2018-10-01 15:49 - 000000000 __HDC C:\Users\stoupa101\Desktop\.tmp.drivedownload
2019-05-12 18:15 - 2015-09-17 12:34 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\uTorrent
2019-05-12 18:14 - 2016-07-14 09:06 - 000000000 ____D C:\FRST
2019-05-12 18:01 - 2019-03-20 15:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog
2019-05-12 18:01 - 2019-03-14 14:21 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-12 18:01 - 2019-03-14 14:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000003296 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2019-05-12 18:01 - 2019-03-14 14:21 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-12 18:01 - 2019-03-14 14:21 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-05-12 18:01 - 2019-03-14 14:21 - 000002854 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com
2019-05-12 18:01 - 2019-03-14 14:21 - 000002806 _____ C:\WINDOWS\System32\Tasks\Git for Windows Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000002638 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-05-12 18:01 - 2019-03-14 14:21 - 000002602 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2019-05-12 18:01 - 2019-03-14 14:21 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-05-12 18:01 - 2019-03-14 14:21 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-12 17:57 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-05-12 17:44 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-12 15:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-12 15:52 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-12 15:52 - 2017-12-11 23:39 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Packages
2019-05-12 12:19 - 2019-03-14 14:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-12 11:44 - 2018-05-16 16:27 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\PlaceholderTileLogoFolder
2019-05-12 00:22 - 2014-12-30 15:33 - 000131072 ___SH C:\CredSED.dat
2019-05-11 21:47 - 2019-03-20 16:07 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2019-05-10 21:34 - 2019-03-14 14:23 - 001843772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-10 21:34 - 2018-09-15 19:32 - 000752190 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-10 21:34 - 2018-09-15 19:32 - 000162630 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-10 21:34 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-10 21:31 - 2018-10-01 14:28 - 000000000 ___RD C:\Users\stoupa101\Disk Google
2019-05-10 21:31 - 2014-12-30 09:01 - 000000000 ___RD C:\Users\stoupa101\OneDrive
2019-05-10 21:30 - 2019-03-14 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-10 21:30 - 2015-01-29 13:20 - 000000000 __SHD C:\Users\stoupa101\IntelGraphicsProfiles
2019-05-10 21:23 - 2019-03-14 14:15 - 000000000 ____D C:\Users\stoupa101
2019-05-10 21:19 - 2016-07-12 20:05 - 000000000 ____D C:\AdwCleaner
2019-05-10 18:46 - 2018-06-27 18:53 - 000000000 __HDC C:\Users\stoupa101\Documents\.tmp.drivedownload
2019-05-10 18:46 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\Documents\ViberDownloads
2019-05-10 15:18 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-05-10 14:47 - 2014-12-31 15:38 - 000000600 ____C C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2019-05-10 14:47 - 2014-12-31 15:36 - 000000000 ____D C:\Program Files (x86)\WinSCP
2019-05-10 13:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-09 14:44 - 2018-05-21 10:36 - 000000407 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt
2019-05-09 14:21 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Dell
2019-05-09 10:44 - 2016-11-15 10:05 - 000000000 ____D C:\Program Files (x86)\Java
2019-05-09 10:44 - 2014-12-30 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-09 10:44 - 2014-12-30 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-05-09 10:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-05-07 04:22 - 2017-08-24 16:38 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Spotify
2019-05-07 04:12 - 2017-08-24 16:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Spotify
2019-05-06 05:15 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\ViberPC
2019-05-06 05:14 - 2017-06-28 07:50 - 000000000 ____D C:\Program Files\DellTPad
2019-05-06 05:14 - 2014-12-19 05:13 - 000017768 _____ C:\WINDOWS\system32\results.xml
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-05 17:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-05 16:04 - 2015-01-06 13:02 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\CrashDumps
2019-05-02 20:15 - 2014-12-30 15:58 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\MPC-HC
2019-05-02 10:48 - 2019-03-14 12:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-02 10:21 - 2017-12-07 09:17 - 000000000 ___DC C:\Users\stoupa101\Desktop\Nová složka
2019-05-02 10:20 - 2018-05-02 16:32 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-02 10:15 - 2014-12-31 12:16 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\TSVNCache
2019-04-30 22:59 - 2014-12-30 15:13 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 10:53 - 2019-04-01 15:00 - 000000000 ____D C:\Users\stoupa101\AppData\Roaming\ICQ
2019-04-27 11:03 - 2014-12-30 09:01 - 000000000 ____D C:\ProgramData\PCDr
2019-04-27 11:02 - 2014-12-19 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-27 10:02 - 2017-06-25 13:38 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-26 12:34 - 2014-12-31 09:18 - 000000000 ____D C:\NIX
2019-04-26 12:01 - 2018-06-27 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-04-25 06:42 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-24 15:28 - 2019-02-22 12:33 - 000000000 ____D C:\Program Files\Symfony
2019-04-24 10:16 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-23 12:37 - 2018-05-22 12:36 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt
2019-04-22 13:50 - 2018-11-06 12:03 - 000000000 ____D C:\Users\stoupa101\Downloads\__old
2019-04-21 14:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-19 14:54 - 2016-10-03 17:08 - 000000000 ____D C:\Users\stoupa101\Downloads\_RDY(no_tit)
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-14 19:13 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-14 12:25 - 2019-03-26 19:25 - 000000000 ____D C:\Users\stoupa101\AppData\Local\BitTorrentHelper
2019-04-13 16:03 - 2015-06-24 14:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\vlc
2019-04-12 16:08 - 2019-01-30 12:31 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\pgAdmin
2019-04-12 11:12 - 2015-01-12 17:25 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Composer

==================== Files in the root of some directories =======

2014-12-31 15:38 - 2019-05-10 14:47 - 000000600 ____C () C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2018-09-29 13:33 - 2018-09-29 13:33 - 000000000 ____C () C:\Users\stoupa101\AppData\Local\oobelibMkey.log
2014-12-30 16:58 - 2018-04-17 12:02 - 000000600 ____C () C:\Users\stoupa101\AppData\Local\PUTTY.RND
2015-07-23 09:51 - 2017-08-08 16:30 - 000007678 ____C () C:\Users\stoupa101\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 12 kvě 2019 17:21 
Offline
Návštěvník
Návštěvník

Registrován: 26 čer 2009 14:21
Příspěvky: 51
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05.2019
Ran by stoupa101 (12-05-2019 18:16:15)
Running from C:\Users\stoupa101\Desktop
Windows 10 Home Version 1809 17763.475 (X64) (2019-03-14 12:22:07)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1044220912-1926083053-1571816506-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1044220912-1926083053-1571816506-503 - Limited - Disabled)
Guest (S-1-5-21-1044220912-1926083053-1571816506-501 - Limited - Disabled)
stoupa101 (S-1-5-21-1044220912-1926083053-1571816506-1001 - Administrator - Enabled) => C:\Users\stoupa101
WDAGUtilityAccount (S-1-5-21-1044220912-1926083053-1571816506-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\uTorrent) (Version: 3.5.5.45225 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{4E97C234-3F6C-4AA9-BFAF-0166F3050A68}) (Version: 4.4.11.2412 - Open Media LLC)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.171 - Adobe)
Altap Salamander 3.07 (x86) (HKLM-x32\...\Altap Salamander 3.07 (x86)) (Version: 3.07 - ALTAP)
Altap Salamander 3.08 (x64) (HKLM\...\Altap Salamander 3.08 (x64)) (Version: 3.08 - ALTAP)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{2f5f8f8e-11d9-4c64-b002-b60607ac3a29}) (Version: 20.10.1 - Intel Corporation)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{9F429DF7-F8DD-4980-9673-E6DACA012F6C}) (Version: 3.3 - Microsoft Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.4.2374 - AVAST Software)
Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Backup and Sync from Google (HKLM\...\{F9EEDE46-6409-4ECC-8AB6-7062464987A4}) (Version: 3.43.4275.9540 - Google, Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) HDC (11/17/2015 14.8.1.1043) (HKLM\...\C3968081C27DE5E6D26026C92CEE47C38A86ADE8) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) SCSIAdapter (11/17/2015 14.8.1.1043) (HKLM\...\A0A971B6BB8AC48E328E1BA665EEE9B5663C890C) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
CDisplayEx 1.10.29 (HKLM-x32\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
CmgMasterPrerequisites (HKLM-x32\...\{EE34FA4E-715A-46FA-9CAF-06E26AE4217D}) (Version: 1.4.1.777 - Credant Technologies Inc.) Hidden
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.2.1 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.4.0 - Dell Inc.)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{74117219-F4F7-4CB7-98A2-AAF9D6D9928C}) (Version: 3.4.8.14 - Broadcom Corporation)
Dell Data Protection | Client Security Framework (HKLM\...\{05FDD00D-1C45-44D1-AB3F-C24D45C39457}) (Version: 8.4.1.1717 - Dell, Inc.)
Dell Data Protection | Security Tools (HKLM-x32\...\{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.) Hidden
Dell Data Protection | Security Tools (HKLM-x32\...\InstallShield_{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.)
Dell Data Protection | Security Tools Authentication (HKLM\...\{0B72160B-9F67-47C0-858F-5A0074162148}) (Version: 1.3.1.433 - DigitalPersona, Inc.)
Dell Digital Delivery Services (HKLM-x32\...\{A646748A-7A2A-495F-9EE5-90B3646FEB7E}) (Version: 4.0.15.0 - Dell Inc.)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 6.2.24499 - Invincea, Inc.)
Dell SupportAssist (HKLM\...\{0309AC01-330F-494C-B27D-58E297E4674F}) (Version: 3.2.1.94 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.121 - ALPS ELECTRIC CO., LTD.)
Discord (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.18.1 (HKLM-x32\...\{9890DF1A-10E9-4236-94B1-1EFAA4099F13}) (Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
ECigStats (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ECigStats) (Version: - Evolv)
Enterprise Architect (HKLM-x32\...\{71A2AAC1-8DB5-40B4-AEF5-99C23238D37C}) (Version: 12.0.1210.14 - Sparx Systems)
EScribe Suite (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\EScribe) (Version: - Evolv)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DG0-EverQuest II) (Version: - Sony Online Entertainment)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DGC-EverQuest II) (Version: 1.0.3.195 - Daybreak Game Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeStyler (HKLM-x32\...\FreeStyler 1024_is1) (Version: - Raphaël Wellekens)
Git version 2.20.1 (HKLM\...\Git_is1) (Version: 2.20.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
ICQ (verze 10.0.35724) (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\icq.desktop) (Version: 10.0.35724 - ICQ)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{E8EB0A84-C19C-4520-8671-56D4D4123D37}) (Version: 3.0.0.25 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1423.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.1.1043 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
JetBrains PhpStorm 2018.3.3 (HKLM-x32\...\PhpStorm 2018.3.3) (Version: 183.5153.36 - JetBrains s.r.o.)
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6005.4 - Waves Audio Ltd.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{F0DB2786-18C8-4B0D-9DC2-BA58856A2821}) (Version: 2.1.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{50b32652-69d2-4b93-9316-edcd12067b8b}) (Version: 14.0.23107.10 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 65.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 65.0.2 (x64 cs)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 65.0.2.6995 - Mozilla)
Mozilla Thunderbird 60.6.1 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.6.1 (x86 cs)) (Version: 60.6.1 - Mozilla)
Mp3tag v2.72 (HKLM-x32\...\Mp3tag) (Version: v2.72 - Florian Heidenreich)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MySQL Workbench 6.3 CE (HKLM\...\{E90FE565-E4A2-49E7-94D9-5B8025C972A1}) (Version: 6.3.10 - Oracle Corporation)
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Node.js (HKLM\...\{2909C9DF-9236-4733-8CE5-0BAFCFD78DBB}) (Version: 11.10.0 - Node.js Foundation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.0 - Duodian Technology Co. Ltd.)
Npcap 0.99-r9 (HKLM-x32\...\NpcapInst) (Version: 0.99-r9 - Nmap Project)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.)
OpenVPN 2.4.0-I602 (HKLM\...\OpenVPN) (Version: 2.4.0-I602 - OpenVPN Technologies, Inc.)
Oracle VM VirtualBox 5.2.26 (HKLM\...\{28CBFD88-CBF3-482C-978E-DB437CCEDFC8}) (Version: 5.2.26 - Oracle Corporation)
ownCloud (HKLM-x32\...\ownCloud) (Version: 2.3.1.6824 - ownCloud)
pgAdmin 4 version 4.2 (HKLM-x32\...\pgAdmin 4v4_is1) (Version: 4.2 - The pgAdmin Development Team)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.13.0 - )
PostgreSQL 9.6 (HKLM\...\PostgreSQL 9.6) (Version: 9.6 - PostgreSQL Global Development Group)
Postman-win64-6.7.4 (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Postman) (Version: 6.7.4 - Postman)
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.1.312 - Jan Fiala)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6070 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{5B47029B-1E62-30FF-906E-694851C22782}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Sample Production Bit Checker x64 (HKLM\...\{1FFA19A6-D46D-4993-B39E-394EB92781A4}) (Version: 1.0.7.0 - Intel Corporation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Skipper (HKLM-x32\...\Skipper) (Version: 3.2.14.1430 - Inventic s.r.o.)
SmartFTP Client (HKLM\...\{3BE3116C-6A01-4E4A-992E-1E64CD5D3120}) (Version: 8.0.2234.0 - SmartSoft Ltd.)
Spotify (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
SQLite ODBC Driver (remove only) (HKLM-x32\...\SQLite ODBC Driver) (Version: - )
SQLite ODBC Driver for Win64 (remove only) (HKLM-x32\...\SQLite ODBC Driver for Win64) (Version: - )
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0067 - ST Microelectronics)
Star Realms version 1.13 (HKLM-x32\...\{F4DEB22F-AC61-4111-89B2-CF434A2BABFB}_is1) (Version: 1.13 - White Wizard Games)
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Symfony version 1.1.3 (HKLM\...\Symfony_is1) (Version: 1.1.3 - Symfony)
Synology Cloud Station (HKLM-x32\...\{102406C7-6BD4-47AA-A858-A54C7002E32E}) (Version: 3.1.3320 - Synology)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{791295AE-3B0A-3222-9E69-26C8C106E8D1}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
TortoiseSVN 1.9.4.27285 (64 bit) (HKLM\...\{62C19AB2-8485-4E18-A9D3-EFA612B8AE74}) (Version: 1.9.27285 - TortoiseSVN)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
USB Sound Blaster HD (HKLM-x32\...\{3BE06146-8ADC-47D7-9AD5-E5CABF1FF90C}) (Version: 1.0 - Creative Technology Limited)
Vagrant (HKLM-x32\...\{56BD544C-6113-42A4-B84C-1310DC50DFAF}) (Version: 2.2.4 - HashiCorp)
Viber (HKLM-x32\...\{D65DDA75-2C0A-46BA-807D-127BD5638490}) (Version: 6.0.1.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\{acc83058-83b0-41e2-b372-266672a1af16}) (Version: 6.0.1.5 - Viber Media Inc.)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vivaldi (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Vivaldi) (Version: 2.3.1440.61 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinSCP 5.15.1 (HKLM-x32\...\winscp3_is1) (Version: 5.15.1 - Martin Prikryl)
Wireshark 3.0.0 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.0 - The Wireshark developer community, hxxps://www.wireshark.org)
Yamaha Steinberg USB Driver (HKLM\...\{1AE66176-C480-4A76-AEFB-5E59942D134A}) (Version: 1.10.0 - Yamaha Corporation) Hidden
Yamaha Steinberg USB Driver (HKLM-x32\...\yUninstall_{2938B185-2D57-47B0-9FC8-C90A67BA9277}) (Version: 1.10.0 - Yamaha Corporation)
Yarn (HKLM-x32\...\{80411C38-7663-4EB4-B8D6-6A6973139536}) (Version: 1.13.0 - Yarn Contributors)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\stoupa101\AppData\Local\Vivaldi\Application\2.3.1440.61\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C78B614E-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [SmartFTP Drop] -> {EA5A76F7-8138-4B53-B0F5-ADCC730CAFBD} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files (x86)\ownCloud\shellext\OCContextMenu_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2018-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll [2015-01-11] () [File not signed]
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Install Additional Tools for Node.js.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /d /c "C:\Program Files\nodejs\install_tools.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files\nodejs\nodevars.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a3a1d6b8109861c5\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=nckgahadagoaajjgafhacjanaoiihapd

==================== Loaded Modules (Whitelisted) ==============

2019-01-30 12:27 - 2018-11-06 06:13 - 000183296 _____ () [File not signed] C:\PostgreSQL\9.6\bin\LIBPQ.dll
2019-01-30 12:29 - 2016-08-01 13:29 - 002264576 _____ () [File not signed] C:\PostgreSQL\9.6\bin\libxml2.dll
2018-12-05 15:38 - 2018-12-05 15:38 - 000018432 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000061952 _____ () [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCUtil_x64.dll
2017-03-06 12:31 - 2016-12-27 17:15 - 000261120 _____ () [File not signed] C:\Program Files\Altap Salamander\lang\czech.slg
2017-03-06 12:31 - 2016-12-27 17:15 - 000056832 _____ () [File not signed] C:\Program Files\Altap Salamander\plugins\zip\lang\czech.slg
2019-02-18 10:37 - 2019-02-18 10:37 - 046111232 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.dll
2019-02-18 10:37 - 2019-02-18 10:37 - 000019968 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 000113664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ctypes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000173568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_elementtree.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001792512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_hashlib.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000032256 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_multiprocessing.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000046080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_psutil_windows.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000047616 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_socket.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 002224640 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ssl.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026112 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_yappi.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000080896 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\bz2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 005752320 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\cello.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000014848 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\common.time34.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000007680 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\hashobjs_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000301568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\PIL._imaging.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000169472 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pyexpat.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001084416 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pysqlite2._sqlite.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000548864 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pythoncom27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137728 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pywintypes27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000010752 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\select.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\thumbnails_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000689664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\unicodedata.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000118784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\usb_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000128512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32api.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000438784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32com.shell.shell.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000011776 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32crypt.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000023040 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32event.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000149504 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32file.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000223232 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32gui.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000048128 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32inet.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000029696 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pdh.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000027648 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pipe.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000044032 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32process.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32profile.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000136192 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32security.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026624 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32ts.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000034304 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.conditional.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000038400 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.connectivity.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000073216 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.device_monitor.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000110080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.volumes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.winwrap.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001325056 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._controls_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001489408 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._core_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001007104 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._gdi_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000103424 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._html2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000916992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._misc_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001039872 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._windows_.pyd
2017-03-06 12:31 - 2016-12-27 16:36 - 000331776 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\plugins\zip\zip.spl
2017-03-06 12:31 - 2016-12-27 12:42 - 000605184 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\SALRTL9.DLL
2017-03-06 12:31 - 2016-12-27 16:36 - 000013312 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\utils\salextx64.dll
2017-01-21 17:11 - 2014-06-18 18:34 - 000095744 _____ (BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
2016-12-27 18:44 - 2010-02-12 11:23 - 000286720 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
2019-01-30 12:29 - 2016-01-12 12:14 - 001690490 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libiconv-2.dll
2019-01-30 12:29 - 2016-01-14 05:34 - 000685747 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libintl-8.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 000335872 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
2015-03-16 14:19 - 2015-03-16 14:19 - 000068096 _____ (Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
2017-12-25 22:50 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\Newtonsoft.Json.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000172544 _____ (ownCloud Inc.) [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll
2019-01-30 12:27 - 2018-11-06 06:19 - 000095232 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
2019-01-30 12:29 - 2018-11-06 06:16 - 006510592 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\python27.dll
2018-07-13 14:59 - 2018-07-13 14:59 - 001478144 _____ (SQLite Development Team) [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\sqlite3.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 001666048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\LIBEAY32.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 000352768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\SSLEAY32.dll
2015-01-11 14:01 - 2015-01-11 14:01 - 002595328 ____C (TODO: <Company name>) [File not signed] C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000088064 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCollect.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000200192 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCommon.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_net_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_adv_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_core_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_html_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-08 13:46 - 2019-01-21 13:25 - 000000914 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost nix.lo blava.nix.lo 2017.nix.lo www.nix.lo nasto.lo
192.168.10.236 ipa.xcoin.cz.local
127.0.0.1 localhost

2015-08-10 22:43 - 2018-07-04 14:44 - 000000728 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

720
192.168.137.1 jaguar.mshome.net # 2022 11 4 10 12 12 23 720
11 33 15 448
192.168.137.1 jaguar.mshome.net # 2022 9 1 19 15 34 12 72
43 4 834
192.168.137.1 jaguar.mshome.net # 2022 9 1 12 14 43 26 815
3 19 31 14 236
192.168.137.1 jaguar.mshome.net # 2022 8 5 26 19 41 23 99

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\App\instantclient_12_1;%ANT_HOME%\bin;C:\Program Files (x86)\Windows Live\Shared;C:\App\Putty;C:\Program Files\TortoiseSVN\bin;C:\ProgramData\ComposerSetup\bin;C:\Program Files\OpenVPN\bin;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Git\cmd;C:\Program Files\nodejs\;C:\Program Files (x86)\Yarn\bin\;C:\Program Files\Symfony;C:\App\Vagrant\bin
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\stoupa101\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\alone-constantine_00396941.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "VolPanel"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Serviio.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_ADF39C3253FCD0951CADB08AD48F1E6A"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "DellSystemDetect"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "ownCloud"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "LINE"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "vidnotifier.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{AED79715-9071-45CE-A15B-BCA2C3145B0E}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{ED3965BD-A9F4-416E-A570-AA2993E83F7D}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{C4E9C60B-0D86-45AF-9185-F633ED4AFFAA}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [TCP Query User{9130CEB5-A95E-4815-902A-225E68ECE868}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [UDP Query User{83D41350-F276-4416-92A3-D75FFC4F1DAC}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{3FF598BC-6EDF-491C-A16F-7C76B05F2194}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{0189E472-82D2-40E3-99D9-016815A775A1}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{05A6ED94-570F-4F8E-9F3B-3D8703EC86DA}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{E2E8D917-4951-46F2-AE61-54FC6AD41CA3}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{D159E14D-E272-4AB4-976B-F54D3341407E}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{03D8422D-3B41-4317-AA6C-937E4E9941CF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6C97802B-C84F-4A68-8F40-4C17B6781A1D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [UDP Query User{21B05366-5083-4E0D-9A31-F67A2BEB08C3}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{CD2DE159-21CA-4903-93A8-98A9D8344F06}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{313D31D1-AED9-47B2-928A-62DF13EB767D}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [TCP Query User{035D18FF-AD3A-4F12-95BC-DEA4A68386CD}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [UDP Query User{9CAF2426-168D-471B-8E78-ED8809F570FD}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [TCP Query User{9D8222B2-E320-44C5-B904-D8736282CBF5}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [UDP Query User{3E71AEFB-E6A7-4D11-87C3-E6A353BA4841}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [TCP Query User{3AE27575-E489-4E60-8929-85B525EE2861}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [{1E80A210-8044-41A0-B619-420F48213F05}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
FirewallRules: [{1B8381B1-434C-4D78-9F21-19103CE3DED7}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> Duodian Technology Co. Ltd.)
FirewallRules: [UDP Query User{B59FA5B4-5C9B-47EA-BFDC-5D1EB48C2A95}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{65E1E5B0-5905-4A2B-A6EF-3CCA4F442B77}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8A577A68-EF4C-4B37-8959-1075AC193D5F}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{AA0FD7B5-86A5-4079-9CB7-F1918081C089}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{66537DD6-3836-484E-83B4-3C1960B3A80D}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{D26DF449-7E7D-45D7-8218-FB9D344D6E4A}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{C42CCCFD-5A2F-4762-9EA4-580C6AA13EB9}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{0394D805-B2C0-4606-830E-5C1874D76EAF}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{2C010C0F-D6B6-4288-A777-32362EF79AC5}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{8ED5B660-DBA1-4FB3-BA21-CB470CC6AF24}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{62B563F1-CC26-4CE3-B630-6F2684BD703A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{63B89700-37DD-42AC-A313-555210C51490}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{C4ACE99C-35F8-4CE6-9E17-8C330D52EC3F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{24EBE80D-0E02-4E6C-986C-A56EC123FE97}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{46122640-547A-4D94-BFD1-31E242916013}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{11298C87-F067-45C4-9DE7-1F10A4E08487}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{BEA7F847-B76B-4F95-82CF-767E269C9481}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{9E8132CE-8A42-4B9D-B474-90164AD479EA}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{AD96E64E-8B4F-4928-A3FB-CD0D15AC03DA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F0961D36-F049-4760-98C2-F74C76D7A2D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BB9C8E13-D5EC-4103-889A-008CAD627C53}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{32C61771-5243-48E0-B957-DFEEA17F0BC7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DCFD23DA-30F2-45D7-86C5-73AFE8BCBFB5}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [TCP Query User{D6CC89DF-BFF1-41CA-A130-1654D152C211}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{0E1BD52D-C186-4F19-AD6A-1D8E284F0D0A}] => (Allow) LPort=1900
FirewallRules: [{8D1A7A99-29EC-407C-BAFC-AE3123183EF0}] => (Allow) LPort=2869
FirewallRules: [{2D035829-CC65-41B2-83F0-D904EA185E71}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74A67AB-F978-4107-95A7-6DC7A6D9A7E6}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{79A02E28-3398-4312-AD83-857B1F203C28}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B54CFC1-8959-4EB8-9570-493053FB07AA}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CE91CC95-5164-4E47-963F-ADA76648401B}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{718C2A72-55E1-4E25-B6D4-5335F1AEB3A2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3DA82C48-162B-4756-BC89-557E634A0104}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C33FBD14-646B-4853-B523-BFADCE4D4F66}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A14A3DED-C7A2-4DE4-980C-5A89ADC845D4}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85B03F01-3183-4A1C-BE76-4726F3774277}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{11C94AB5-9FB1-43E5-A2B1-01632CD50997}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6517E279-D99C-4921-A3A7-60DC6B5C35AA}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2FFDC26D-2FBC-440A-BC9B-DB9F43154763}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7BB2F27E-CFA6-4FF9-BFAE-758FDF46CDF4}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6DAEFCA6-2641-40D1-9046-4AFD363D3890}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EA19B13-731C-4F14-BC32-65F8F0249E5B}] => (Allow) C:\Program Files\SmartFTP Client\SmartFTP.exe (SmartSoft Ltd -> SmartSoft Ltd.)
FirewallRules: [{4E9037CA-D397-44F0-9D07-6B5DC4E663C0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C7C9BE88-E1A4-4794-85FF-38DEB25FD096}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1BEA15C9-4D3D-4EEB-AE8E-96C738A22CBF}] => (Allow) LPort=2799
FirewallRules: [{EA30E81D-78BD-4748-960A-E761FCCC8704}] => (Allow) LPort=2799
FirewallRules: [TCP Query User{49C5CE43-D028-45A8-87F6-057B4AE665F4}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [UDP Query User{BF26F24B-9DA2-4015-94DF-A668059184FA}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [{28297D88-F5B2-4774-8DE7-23887FD79077}] => (Allow) LPort=3935
FirewallRules: [{DEF86B07-42B5-42EC-8DF3-ACE555EDD80D}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{587F3212-448E-4658-82B0-E25094F813A8}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{9C11AB64-92DC-4705-A274-793E8DA50E21}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{252B33F3-84BA-4C64-8B60-20D411902F5A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{3FDD3611-49E8-49E3-AA0E-39E4F3C0A9BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{494ACF02-D119-4716-86AA-232354E8A7C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{FA07ED92-F6DC-4975-AAC4-976E55F6D529}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{4B53DF7B-FFB5-42A9-96BD-28E4A76A5BD2}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{D1E5EAA7-E511-45B0-A03F-A99B2403902A}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [UDP Query User{0A390E7F-A49A-46D6-9176-87D7886C0827}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [{B2DDC34C-EB27-4F01-AC6C-8BD4AF4981DE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/10/2019 09:30:18 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/10/2019 09:22:57 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/10/2019 03:19:12 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/09/2019 10:46:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (05/09/2019 10:45:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (05/09/2019 10:40:39 AM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellCommandPowerManager.exe
Message: Unable to query WMI for Power Setting changes.
Error: (System.Runtime.InteropServices.COMException) at SYS-WBE6
Oprávnění přidat, odebrat nebo konfigurovat software serveru během vzdálené relace Terminálové služby má pouze správce. Chcete-li instalovat nebo konfigurovat software na serveru, obraťte se na správce sítě. (Výjimka na základě hodnoty HRESULT: 0x80070668)

Error: (05/09/2019 10:35:25 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/07/2019 09:45:12 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (4752,G,0) Pokus o otevření souboru C:\Users\stoupa101\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (05/12/2019 12:13:29 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače SOPRANO,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{252F3261-7469-4B62-88D0-78C4B8DDA1A2}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (05/12/2019 10:45:35 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/12/2019 10:45:34 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (05/11/2019 07:54:19 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.


Windows Defender:
===================================
Date: 2019-03-16 16:13:04.563
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {54CB2C01-F67E-40AF-992E-6CBD70DFD3A6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-16 15:30:50.403
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {55AF482B-AB8D-48F7-9C22-584A65048F65}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-16 15:17:51.692
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1131608F-E7B9-485C-BEC6-27756C307371}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-16 09:22:34.379
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {01093D01-D05A-4E49-9452-5FAD98B90687}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-16 09:05:36.582
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5986D34A-6147-46B5-BEBB-86D7508D310F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2019-05-10 21:30:22.432
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:30:22.427
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:30:22.412
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:30:22.408
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:23:01.796
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:23:01.792
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:23:01.778
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-10 21:23:01.773
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Dell Inc. A27 10/09/2018
Motherboard: Dell Inc. 0WK2DM
Processor: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz
Percentage of memory in use: 45%
Total physical RAM: 16289.39 MB
Available physical RAM: 8828.39 MB
Total Virtual: 18721.39 MB
Available Virtual: 9355.36 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:230.28 GB) (Free:6 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1397.23 GB) (Free:196.52 GB) NTFS

\\?\Volume{a4b0d577-c769-4421-bc82-e4a1cd272aa1}\ (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.31 GB) NTFS
\\?\Volume{cec041b7-b60d-40dc-98cc-f1bfbbd37e08}\ (PBR Image) (Fixed) (Total:6.81 GB) (Free:0.31 GB) NTFS
\\?\Volume{a3f0ce99-0dd9-4934-859d-23b49badf502}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.43 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (Size: 1397.2 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt ============================


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 14 kvě 2019 15:43 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1833
Do poznamkoveho bloku skopirujte obsah dole:

Kód:
CloseProcesses:
CreateRestorePoint:

VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
U4 npcap_wifi; no ImagePath
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

EmptyTemp:



Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 14 kvě 2019 22:11 
Offline
Návštěvník
Návštěvník

Registrován: 26 čer 2009 14:21
Příspěvky: 51
Fix result of Farbar Recovery Scan Tool (x64) Version: 13-05.2019 01
Ran by stoupa101 (14-05-2019 23:05:01) Run:1
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:

VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
U4 npcap_wifi; no ImagePath
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll => https://www.virustotal.com/file/bffc595 ... 488870444/
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => value restored successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3138edec-3a64-11e7-846d-ecf4bb139676} => removed successfully
HKLM\Software\Classes\CLSID\{3138edec-3a64-11e7-846d-ecf4bb139676} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\WINDOWS\Tasks\DriverToolkit Autorun.job => moved successfully
"HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => removed successfully
HKLM\Software\Classes\CLSID\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => not found
"Firefox homepage" => removed successfully
"Firefox newtab" => removed successfully
C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com => path removed successfully
HKLM\System\CurrentControlSet\Services\npcap_wifi => removed successfully
npcap_wifi => service removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\WINDOWS\SysWOW64\MSIHANDLE => ":148" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":156" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":222" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":230" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":298" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":306" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":96" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56897435 B
Java, Flash, Steam htmlcache => 188869965 B
Windows/system/drivers => 1756960 B
Edge => 546561 B
Chrome => 263284548 B
Firefox => 25583477 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7218 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
stoupa101 => 93470998 B

RecycleBin => 2054626 B
EmptyTemp: => 612.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:06:15 ====


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Prosim o preventivku
PříspěvekNapsal: 02 črc 2019 09:23 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1833
Ako je na tom pocitac?

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
Odpovědět s citací  
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Odpovědět na téma  [ Příspěvků: 9 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?