Dobry den,
rad bych poprosil o preventivku po dlouhe dobe.
Dekuji Stoupa
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05.2019
Ran by stoupa101 (administrator) on JAGUAR (Dell Inc. Latitude E7440) (10-05-2019 15:38:39)
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1903.21.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe
(Dell -> Dell Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe
(Dell -> Dell, Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe
(Dimension Engineering LLC -> Evolv LLC) C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ecigstats.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LLC Mail.Ru -> ) C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\stoupa101\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Viber Media S.à r.l. -> ) C:\Users\stoupa101\AppData\Local\Viber\ViberSandbox.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\stoupa101\AppData\Local\Viber\Viber.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CSFTrayApp] => C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe [232288 2014-09-11] (Dell -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8474880 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [609200 2015-03-01] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1203856 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Viber] => C:\Users\stoupa101\AppData\Local\Viber\Viber.exe [37775944 2019-04-29] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [uTorrent] => C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe [1816808 2019-05-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [1990144 2017-03-21] (ownCloud) [File not signed]
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [584320 2017-01-31] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Spotify] => C:\Users\stoupa101\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Discord] => C:\Users\stoupa101\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe [1809480 2019-03-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ECigStats] => C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [159368 2018-11-30] (Dimension Engineering LLC -> Evolv LLC)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [icq.desktop] => C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe [55756952 2019-04-26] (LLC Mail.Ru -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A58485D1-79F3-4BC9-A358-E239C6C047BA}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2015-01-27]
ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {123EA742-1270-4B96-A631-BED7DD534436} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {1B367677-9224-4E40-B21E-3A46AB84F6C6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {2093D3AA-4591-44EA-8E5D-B3D78DB9FFB7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {376A7F53-9934-49CD-8AC1-A0F1A3ED4E06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {56A1ABD3-4B4E-4603-9872-2238BF3BFF68} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {57F55D03-DAB3-4805-BE99-37245E3C2BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {605E7F6B-06B9-4F37-B179-024C663DCDFE} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {64DE71ED-C1A2-4DF9-8744-579AFC9AEB46} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [149272 2018-12-15] (Johannes Schindelin -> The Git Development Community)
Task: {789F5AAA-D918-4F12-ABD8-2F7846806ADD} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-04-10] (Dell Inc. -> Dell Inc.)
Task: {7D98AC2A-6888-4DE6-9FD2-870584062E92} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {85A7B4D2-BB57-4289-8ED0-D4FC3580A9A7} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {89104F0D-0B4B-45B6-B25E-D71421DC8B66} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {903C4852-8D57-46B5-A2D9-2C604530AAC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {960CB4BE-85F0-4735-82E9-8159AE84A6D2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [131129288 2019-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {96C14B06-1724-4117-9565-19FEE1C90923} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {AAF724B8-145B-4245-B998-C7E7F6ADBCBB} - \WPD\SqmUpload_S-1-5-21-1044220912-1926083053-1571816506-1001 -> No File <==== ATTENTION
Task: {C26FA183-0A1F-46BD-A6FB-89F6FC9CABEB} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {C8F5767C-50A9-47EC-9543-F67D46A833EB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {C9FD2F9A-5048-469A-B6C8-84C8A8CFDDFA} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {CE581081-EBD7-43CB-A5CF-9FF861E47C06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe)
Task: {D7777CC9-4E37-49B9-9ACB-EC294A43D40D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EBEA05F0-7AF7-4406-94F8-DC995008D6D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EE897583-B2E7-4E0F-9970-AA80684D30B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F0CF467F-ACC7-4938-BF5A-3A26D690FAFC} - System32\Tasks\Dell\Command Update => C:\Program Files (x86)\Dell\CommandUpdate\DellCommandUpdate.exe [2930824 2018-06-01] (Dell Inc -> Dell Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => cmd /c sc start Dell Foundation ServicesWORKGROUP JAGUAR
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{252f3261-7469-4b62-88d0-78c4b8dda1a2}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3cc28684-cf6d-4a33-97c3-e69fa7125ad6}: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{f4be8427-d92e-496e-ac1c-beec55ecf05f}: [DhcpNameServer] 192.168.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180524__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
BHO: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\X64\InvRedirHostIE64.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\InvRedirHostIE.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FireFox:
========
FF DefaultProfile: 4jltx1yr.default
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default [2015-08-11]
FF Extension: (Emulator) - C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-08-11] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default [2019-05-10]
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF Extension: (Avast Online Security) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\wrc@avast.com.xpi [2019-03-20]
FF Extension: (No Name) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-27]
FF SearchPlugin: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome
FF Extension: (Dell Data Protection | Security Tools) - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome [2014-12-30] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=https%3A%2F%2Fmt.peeringdays.eu%2Flogin&charset=%28detect+automatically%29&doctype=Inline&group=0
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default [2019-05-10]
CHR Extension: (QR kód) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm [2014-12-30]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2018-05-24]
CHR Extension: (Disk Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (TV) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-12-30]
CHR Extension: (YouTube) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Star Legends) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2018-09-06]
CHR Extension: (Vyhledávání Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (AutoCAD 360) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-12-30]
CHR Extension: (Box) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-05-03]
CHR Extension: (PicMonkey) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2017-10-28]
CHR Extension: (Hodiny) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-12-30]
CHR Extension: (AdBlock) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-02]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-26]
CHR Extension: (Pixlr Editor) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2015-10-09]
CHR Extension: (Dropbox) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-03-23]
CHR Extension: (Top Eleven) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2018-05-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (HTML Validator) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbelhhnfhfjnaehkcnnaknldmnocglk [2019-03-01]
CHR Extension: (Hangouts Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Picasa) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-30]
CHR Extension: (Psykopaint) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-19]
CHR Extension: (Gmail) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-27]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-02]
CHR HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome.crx [2014-03-17]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [34976 2018-12-05] (Dell Inc -> )
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell Inc -> Dell)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-27] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R2 DellMgmtAgent; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe [255328 2014-09-11] (Dell -> Dell Inc.)
R2 DellMgmtLoader; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe [26464 2014-09-11] (Dell -> )
R2 DellMgmtServer; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe [33632 2014-09-11] (Dell -> Dell, Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Leader Technologies Inc -> Aviata, Inc.)
R2 DpHost; C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe [472912 2014-03-19] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19424 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-12-22] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [5701256 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> )
S3 OpenVpnService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [87040 2006-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [299776 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [198792 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 SDIOAssist; C:\Windows\System32\SDIOAssist.exe [95744 2014-06-18] (BayHubTech/O2Micro ) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39896 2019-04-10] (Dell Inc. -> Dell Inc.)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.35\bin\httpd.exe [29696 2018-09-19] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; c:\wamp\bin\mariadb\mariadb10.3.9\bin\mysqld.exe [15788968 2018-08-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.7.23\bin\mysqld.exe [39626752 2018-06-08] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation)
R2 postgresql-x64-9.6; "C:\PostgreSQL\9.6\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.6" -D "C:\PostgreSQL\9.6\data" -w
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 CredFltL; C:\WINDOWS\System32\DRIVERS\CredFltL.sys [37120 2014-09-11] (Dell -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2540800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [89224 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33928 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1561600 2016-08-23] (Creative Technology Ltd -> Creative Technology Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521032 2017-10-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro )
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [204424 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R0 SEDFilter; C:\WINDOWS\System32\DRIVERS\SEDFilter.sys [61184 2014-09-11] (Dell -> Dell Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [146512 2015-07-02] (Microsoft Windows Hardware Compatibility Publisher -> STMicroelectronics)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [216080 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [227008 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [37920 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-25] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [166912 2017-12-19] (Yamaha Corporation -> Yamaha Corporation)
U4 npcap_wifi; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-10 15:38 - 2019-05-10 15:39 - 000050153 ____C C:\Users\stoupa101\Desktop\FRST.txt
2019-05-10 15:36 - 2019-05-10 15:36 - 002430976 _____ (Farbar) C:\Users\stoupa101\Desktop\FRST64.exe
2019-05-10 15:32 - 2019-05-10 15:32 - 000000000 ___HD C:\OneDriveTemp
2019-05-10 15:31 - 2019-05-10 15:31 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-10 15:19 - 2019-05-10 15:19 - 000519080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-10 14:47 - 2019-05-10 14:47 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2019-05-10 14:47 - 2019-05-10 14:47 - 000001116 _____ C:\Users\Public\Desktop\WinSCP.lnk
2019-05-10 14:46 - 2019-05-10 14:46 - 009834432 _____ (Martin Prikryl ) C:\Users\stoupa101\Downloads\WinSCP-5.15.1-Setup.exe
2019-05-10 09:18 - 2019-05-10 13:30 - 000000000 ____D C:\Users\stoupa101\Downloads\iZombie.S05E02.WEB.h264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 11:11 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Cloak.And.Dagger.S02E07.WEB.x264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 07:02 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E22.HDTV.x264-SVA[rarbg]
2019-05-09 16:35 - 2019-05-09 16:35 - 000011339 _____ C:\Users\stoupa101\.bash_history
2019-05-09 10:44 - 2019-05-09 10:43 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-05-09 10:03 - 2019-05-09 13:25 - 000000000 ____D C:\Users\stoupa101\Downloads\Into.The.Badlands.S03.WEBRip.x264-ION10
2019-05-09 09:38 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Happy.2017.S02E07.WEB.x264-TBS[rarbg]
2019-05-09 09:34 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Whiskey.Cavalier.S01E11.HDTV.x264-KILLERS[rarbg]
2019-05-09 09:29 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E06.WEB.x264-STRiFE[rarbg]
2019-05-09 05:22 - 2019-05-09 12:50 - 000000000 ____D C:\Users\stoupa101\Downloads\Shadowhunters.S03.WEBRip.x264-ION10
2019-05-09 04:53 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E05.WEB.x264-STRiFE[rarbg]
2019-05-09 02:44 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E10.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-09 02:09 - 2019-05-09 10:41 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E08.WEB.h264-STRiFE[rarbg]
2019-05-08 19:24 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E07.WEB.x264-STRiFE[rarbg]
2019-05-08 15:54 - 2019-05-08 15:54 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.WEB.x264-STRiFE[rarbg]
2019-05-08 15:30 - 2019-05-08 15:30 - 000023234 _____ C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E21 (1).zip
2019-05-08 15:27 - 2019-05-08 15:27 - 000039354 _____ C:\Users\stoupa101\Downloads\4x19.zip
2019-05-08 09:39 - 2019-05-08 21:28 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E02.WEB.x264-STRiFE[rarbg]
2019-05-08 09:36 - 2019-05-09 10:41 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E03.WEB.x264-STRiFE[rarbg]
2019-05-08 09:36 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E04.WEB.x264-STRiFE[rarbg]
2019-05-08 09:29 - 2019-05-08 11:16 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E01.WEB.x264-STRiFE[rarbg]
2019-05-08 09:23 - 2019-05-08 10:55 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-08 07:24 - 2019-05-08 12:26 - 000000000 ____D C:\Users\stoupa101\Downloads\The.100.S06E02.WEB.h264-TBS[rarbg]
2019-05-08 07:24 - 2019-05-08 08:18 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Flash.2014.S05E21.WEB.h264-TBS[rarbg]
2019-05-07 22:24 - 2019-05-07 22:53 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S02.WEBRip.x264-ION10
2019-05-07 22:23 - 2019-05-07 22:59 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S03.WEBRip.x264-ION10
2019-05-07 21:26 - 2019-05-07 21:26 - 000023234 _____ C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E21.zip
2019-05-07 04:45 - 2019-05-07 04:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2019-05-06 15:51 - 2019-05-06 15:51 - 000043796 _____ C:\Users\stoupa101\Downloads\rozpocet 2019.xlsx
2019-05-06 05:56 - 2019-05-10 15:32 - 000000000 ___DC C:\Users\stoupa101\AppData\LocalLow\uTorrent
2019-05-05 17:06 - 2019-05-05 17:06 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-05 17:05 - 2019-05-05 17:05 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-05 17:05 - 2019-05-05 17:05 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-03 10:55 - 2019-05-03 10:55 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Viber
2019-05-02 15:06 - 2019-05-02 15:06 - 000000000 _____ C:\WINDOWS\invcol.tmp
2019-05-02 11:05 - 2019-05-02 11:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-05-02 10:20 - 2019-05-09 00:00 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-02 10:19 - 2019-05-02 10:19 - 021254208 _____ (Piriform Software Ltd) C:\Users\stoupa101\Downloads\ccsetup556.exe
2019-05-02 10:16 - 2019-05-09 00:00 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044220912-1926083053-1571816506-1001
2019-05-02 10:16 - 2019-05-02 10:16 - 000002417 ____C C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-27 21:25 - 2019-04-27 21:25 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-04-26 12:01 - 2019-04-26 12:01 - 000002081 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002079 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002069 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-04-25 06:45 - 2019-04-25 06:45 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-25 06:42 - 2019-05-10 06:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-25 06:42 - 2019-04-25 06:42 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-25 06:42 - 2019-04-25 06:42 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-25 06:42 - 2019-03-20 15:12 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-04-24 12:50 - 2019-04-24 12:50 - 000147483 _____ C:\Users\stoupa101\Downloads\Smlouva o Bankovní IDentitě - David Stopka.pdf
2019-04-16 13:51 - 2019-04-16 13:51 - 000056174 _____ C:\Users\stoupa101\Downloads\LostVapeDefault75Theme.ecigtheme
2019-04-16 13:50 - 2019-04-16 13:50 - 000058332 _____ C:\Users\stoupa101\Downloads\Gauges-2.2.0.ecigtheme
2019-04-12 13:28 - 2019-04-12 13:28 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-12 13:28 - 2019-04-12 13:28 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:28 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-12 13:27 - 2019-04-12 13:27 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-12 13:27 - 2019-04-12 13:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002033152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-11 09:23 - 2019-04-10 17:24 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-11 09:23 - 2019-04-10 17:24 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-10 15:39 - 2018-10-01 15:49 - 000000000 __HDC C:\Users\stoupa101\Desktop\.tmp.drivedownload
2019-05-10 15:38 - 2016-07-14 09:06 - 000000000 ____D C:\FRST
2019-05-10 15:38 - 2015-09-17 12:34 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\uTorrent
2019-05-10 15:36 - 2019-03-20 16:07 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2019-05-10 15:34 - 2018-06-27 18:53 - 000000000 __HDC C:\Users\stoupa101\Documents\.tmp.drivedownload
2019-05-10 15:32 - 2018-10-01 14:28 - 000000000 ___RD C:\Users\stoupa101\Disk Google
2019-05-10 15:32 - 2014-12-30 09:01 - 000000000 ___RD C:\Users\stoupa101\OneDrive
2019-05-10 15:31 - 2015-01-29 13:20 - 000000000 __SHD C:\Users\stoupa101\IntelGraphicsProfiles
2019-05-10 15:29 - 2019-03-14 14:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-10 15:29 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-10 15:23 - 2019-03-14 14:23 - 001843772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-10 15:23 - 2018-09-15 19:32 - 000752190 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-10 15:23 - 2018-09-15 19:32 - 000162630 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-10 15:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-10 15:23 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-10 15:20 - 2014-12-30 15:33 - 000131072 ___SH C:\CredSED.dat
2019-05-10 15:19 - 2019-03-14 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-10 15:18 - 2019-03-14 14:15 - 000000000 ____D C:\Users\stoupa101
2019-05-10 15:18 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-05-10 14:47 - 2014-12-31 15:38 - 000000600 ____C C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2019-05-10 14:47 - 2014-12-31 15:36 - 000000000 ____D C:\Program Files (x86)\WinSCP
2019-05-10 13:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-10 06:23 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\Documents\ViberDownloads
2019-05-09 14:44 - 2018-05-21 10:36 - 000000407 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt
2019-05-09 14:21 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Dell
2019-05-09 14:00 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-09 10:44 - 2016-11-15 10:05 - 000000000 ____D C:\Program Files (x86)\Java
2019-05-09 10:44 - 2014-12-30 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-09 10:44 - 2014-12-30 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-05-09 10:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-05-09 00:00 - 2019-03-20 15:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog
2019-05-09 00:00 - 2019-03-14 14:21 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-09 00:00 - 2019-03-14 14:21 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-09 00:00 - 2019-03-14 14:21 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-09 00:00 - 2019-03-14 14:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-09 00:00 - 2019-03-14 14:21 - 000003296 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2019-05-09 00:00 - 2019-03-14 14:21 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-09 00:00 - 2019-03-14 14:21 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-05-09 00:00 - 2019-03-14 14:21 - 000002854 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com
2019-05-09 00:00 - 2019-03-14 14:21 - 000002806 _____ C:\WINDOWS\System32\Tasks\Git for Windows Updater
2019-05-09 00:00 - 2019-03-14 14:21 - 000002638 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-05-09 00:00 - 2019-03-14 14:21 - 000002602 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2019-05-09 00:00 - 2019-03-14 14:21 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-05-09 00:00 - 2019-03-14 14:21 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-09 00:00 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-05-07 04:22 - 2017-08-24 16:38 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Spotify
2019-05-07 04:12 - 2017-08-24 16:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Spotify
2019-05-06 05:15 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\ViberPC
2019-05-06 05:14 - 2017-06-28 07:50 - 000000000 ____D C:\Program Files\DellTPad
2019-05-06 05:14 - 2014-12-19 05:13 - 000017768 _____ C:\WINDOWS\system32\results.xml
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-05 17:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-05 16:04 - 2015-01-06 13:02 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\CrashDumps
2019-05-02 20:15 - 2014-12-30 15:58 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\MPC-HC
2019-05-02 10:48 - 2019-03-14 12:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-02 10:21 - 2017-12-07 09:17 - 000000000 ___DC C:\Users\stoupa101\Desktop\Nová složka
2019-05-02 10:20 - 2018-05-02 16:32 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-02 10:15 - 2014-12-31 12:16 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\TSVNCache
2019-05-01 00:27 - 2017-12-11 23:39 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Packages
2019-04-30 22:59 - 2014-12-30 15:13 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 10:53 - 2019-04-01 15:00 - 000000000 ____D C:\Users\stoupa101\AppData\Roaming\ICQ
2019-04-27 11:03 - 2014-12-30 09:01 - 000000000 ____D C:\ProgramData\PCDr
2019-04-27 11:02 - 2014-12-19 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-27 10:02 - 2017-06-25 13:38 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-26 12:34 - 2014-12-31 09:18 - 000000000 ____D C:\NIX
2019-04-26 12:01 - 2018-06-27 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-04-25 06:42 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-24 15:28 - 2019-02-22 12:33 - 000000000 ____D C:\Program Files\Symfony
2019-04-24 10:16 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-23 12:37 - 2018-05-22 12:36 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt
2019-04-22 13:50 - 2018-11-06 12:03 - 000000000 ____D C:\Users\stoupa101\Downloads\__old
2019-04-21 14:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-19 14:54 - 2016-10-03 17:08 - 000000000 ____D C:\Users\stoupa101\Downloads\_RDY(no_tit)
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-14 19:13 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-14 12:25 - 2019-03-26 19:25 - 000000000 ____D C:\Users\stoupa101\AppData\Local\BitTorrentHelper
2019-04-13 16:03 - 2015-06-24 14:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\vlc
2019-04-12 16:08 - 2019-01-30 12:31 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\pgAdmin
2019-04-12 11:12 - 2015-01-12 17:25 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Composer
2019-04-11 11:39 - 2019-02-13 19:56 - 000000065 _____ C:\Users\stoupa101\.pgAdmin4.427924103.addr
2019-04-10 17:24 - 2014-12-31 09:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-10 17:12 - 2014-12-31 09:43 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-10 17:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-04-10 17:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
==================== Files in the root of some directories =======
2014-12-31 15:38 - 2019-05-10 14:47 - 000000600 ____C () C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2018-09-29 13:33 - 2018-09-29 13:33 - 000000000 ____C () C:\Users\stoupa101\AppData\Local\oobelibMkey.log
2014-12-30 16:58 - 2018-04-17 12:02 - 000000600 ____C () C:\Users\stoupa101\AppData\Local\PUTTY.RND
2015-07-23 09:51 - 2017-08-08 16:30 - 000007678 ____C () C:\Users\stoupa101\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosim o preventivku
- Přílohy
-
- Addition.rar
- (18.94 KiB) Staženo 86 x
Re: Prosim o preventivku
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosim o preventivku
2x zkouseno - pokazde zelena obrazovka a neco s Windows Insider. Po spusteni jsem nasel 2 totozne logy:
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-10-2019
# Duration: 00:00:18
# OS: Windows 10 Home
# Scanned: 27335
# Detected: 7
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy C:\Windows\Tasks\DRIVERTOOLKIT AUTORUN.JOB
***** [ Registry ] *****
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion
PUP.Winlogon.Heuristic HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
***** [ Chromium (and derivatives) ] *****
PUP.Optional.DefaultSearch.ShrtCln Adaware Secure Search
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
AdwCleaner[S00].txt - [1665 octets] - [10/05/2019 21:19:44]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-10-2019
# Duration: 00:00:18
# OS: Windows 10 Home
# Scanned: 27335
# Detected: 7
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy C:\Windows\Tasks\DRIVERTOOLKIT AUTORUN.JOB
***** [ Registry ] *****
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion
PUP.Winlogon.Heuristic HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
***** [ Chromium (and derivatives) ] *****
PUP.Optional.DefaultSearch.ShrtCln Adaware Secure Search
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
AdwCleaner[S00].txt - [1665 octets] - [10/05/2019 21:19:44]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
Re: Prosim o preventivku
Poprosim o nove logy FRST a ADDITION
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosim o preventivku
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05.2019
Ran by stoupa101 (administrator) on JAGUAR (Dell Inc. Latitude E7440) (12-05-2019 18:14:36)
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1903.21.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe
(Dell -> Dell Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe
(Dell -> Dell, Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe
(Dimension Engineering LLC -> Evolv LLC) C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ecigstats.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LLC Mail.Ru -> ) C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\stoupa101\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\stoupa101\AppData\Local\Viber\Viber.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CSFTrayApp] => C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe [232288 2014-09-11] (Dell -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8474880 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [609200 2015-03-01] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1203856 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Viber] => C:\Users\stoupa101\AppData\Local\Viber\Viber.exe [37775944 2019-04-29] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [uTorrent] => C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe [1816808 2019-05-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [1990144 2017-03-21] (ownCloud) [File not signed]
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [584320 2017-01-31] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Spotify] => C:\Users\stoupa101\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Discord] => C:\Users\stoupa101\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe [1809480 2019-03-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ECigStats] => C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [159368 2018-11-30] (Dimension Engineering LLC -> Evolv LLC)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [icq.desktop] => C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe [55756952 2019-04-26] (LLC Mail.Ru -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A58485D1-79F3-4BC9-A358-E239C6C047BA}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2015-01-27]
ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {123EA742-1270-4B96-A631-BED7DD534436} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {1B367677-9224-4E40-B21E-3A46AB84F6C6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {2093D3AA-4591-44EA-8E5D-B3D78DB9FFB7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {376A7F53-9934-49CD-8AC1-A0F1A3ED4E06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {56A1ABD3-4B4E-4603-9872-2238BF3BFF68} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {57F55D03-DAB3-4805-BE99-37245E3C2BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {605E7F6B-06B9-4F37-B179-024C663DCDFE} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {64DE71ED-C1A2-4DF9-8744-579AFC9AEB46} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [149272 2018-12-15] (Johannes Schindelin -> The Git Development Community)
Task: {789F5AAA-D918-4F12-ABD8-2F7846806ADD} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-04-10] (Dell Inc. -> Dell Inc.)
Task: {7D98AC2A-6888-4DE6-9FD2-870584062E92} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {85A7B4D2-BB57-4289-8ED0-D4FC3580A9A7} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {89104F0D-0B4B-45B6-B25E-D71421DC8B66} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {903C4852-8D57-46B5-A2D9-2C604530AAC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {960CB4BE-85F0-4735-82E9-8159AE84A6D2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [131129288 2019-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {96C14B06-1724-4117-9565-19FEE1C90923} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {AAF724B8-145B-4245-B998-C7E7F6ADBCBB} - \WPD\SqmUpload_S-1-5-21-1044220912-1926083053-1571816506-1001 -> No File <==== ATTENTION
Task: {C26FA183-0A1F-46BD-A6FB-89F6FC9CABEB} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {C8F5767C-50A9-47EC-9543-F67D46A833EB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {C9FD2F9A-5048-469A-B6C8-84C8A8CFDDFA} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {CE581081-EBD7-43CB-A5CF-9FF861E47C06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe)
Task: {D7777CC9-4E37-49B9-9ACB-EC294A43D40D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EBEA05F0-7AF7-4406-94F8-DC995008D6D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EE897583-B2E7-4E0F-9970-AA80684D30B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F0CF467F-ACC7-4938-BF5A-3A26D690FAFC} - System32\Tasks\Dell\Command Update => C:\Program Files (x86)\Dell\CommandUpdate\DellCommandUpdate.exe [2930824 2018-06-01] (Dell Inc -> Dell Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => cmd /c sc start Dell Foundation ServicesWORKGROUP JAGUAR
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{252f3261-7469-4b62-88d0-78c4b8dda1a2}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3cc28684-cf6d-4a33-97c3-e69fa7125ad6}: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{f4be8427-d92e-496e-ac1c-beec55ecf05f}: [DhcpNameServer] 192.168.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180524__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
BHO: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\X64\InvRedirHostIE64.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\InvRedirHostIE.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FireFox:
========
FF DefaultProfile: 4jltx1yr.default
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default [2015-08-11]
FF Extension: (Emulator) - C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-08-11] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default [2019-05-12]
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF Extension: (Avast Online Security) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\wrc@avast.com.xpi [2019-03-20]
FF Extension: (No Name) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-27]
FF SearchPlugin: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome
FF Extension: (Dell Data Protection | Security Tools) - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome [2014-12-30] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=https%3A%2F%2Fmt.peeringdays.eu%2Flogin&charset=%28detect+automatically%29&doctype=Inline&group=0
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default [2019-05-12]
CHR Extension: (QR kód) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm [2014-12-30]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2018-05-24]
CHR Extension: (Disk Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (TV) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-12-30]
CHR Extension: (YouTube) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Star Legends) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2018-09-06]
CHR Extension: (Vyhledávání Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (AutoCAD 360) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-12-30]
CHR Extension: (Box) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-05-03]
CHR Extension: (PicMonkey) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2017-10-28]
CHR Extension: (Hodiny) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-12-30]
CHR Extension: (AdBlock) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-02]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-26]
CHR Extension: (Pixlr Editor) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2015-10-09]
CHR Extension: (Dropbox) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-03-23]
CHR Extension: (Top Eleven) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2018-05-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (HTML Validator) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbelhhnfhfjnaehkcnnaknldmnocglk [2019-03-01]
CHR Extension: (Hangouts Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Picasa) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-30]
CHR Extension: (Psykopaint) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-19]
CHR Extension: (Gmail) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-27]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-02]
CHR HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome.crx [2014-03-17]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [34976 2018-12-05] (Dell Inc -> )
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell Inc -> Dell)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-27] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R2 DellMgmtAgent; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe [255328 2014-09-11] (Dell -> Dell Inc.)
R2 DellMgmtLoader; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe [26464 2014-09-11] (Dell -> )
R2 DellMgmtServer; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe [33632 2014-09-11] (Dell -> Dell, Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Leader Technologies Inc -> Aviata, Inc.)
R2 DpHost; C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe [472912 2014-03-19] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19424 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-12-22] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [5701256 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> )
S3 OpenVpnService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [87040 2006-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [299776 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [198792 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 SDIOAssist; C:\Windows\System32\SDIOAssist.exe [95744 2014-06-18] (BayHubTech/O2Micro ) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39896 2019-04-10] (Dell Inc. -> Dell Inc.)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.35\bin\httpd.exe [29696 2018-09-19] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; c:\wamp\bin\mariadb\mariadb10.3.9\bin\mysqld.exe [15788968 2018-08-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.7.23\bin\mysqld.exe [39626752 2018-06-08] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation)
R2 postgresql-x64-9.6; "C:\PostgreSQL\9.6\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.6" -D "C:\PostgreSQL\9.6\data" -w
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 CredFltL; C:\WINDOWS\System32\DRIVERS\CredFltL.sys [37120 2014-09-11] (Dell -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2540800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [89224 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33928 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1561600 2016-08-23] (Creative Technology Ltd -> Creative Technology Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521032 2017-10-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro )
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [204424 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R0 SEDFilter; C:\WINDOWS\System32\DRIVERS\SEDFilter.sys [61184 2014-09-11] (Dell -> Dell Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [146512 2015-07-02] (Microsoft Windows Hardware Compatibility Publisher -> STMicroelectronics)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [216080 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [227008 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [37920 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-25] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [166912 2017-12-19] (Yamaha Corporation -> Yamaha Corporation)
U4 npcap_wifi; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 18:14 - 2019-05-12 18:14 - 002430976 _____ (Farbar) C:\Users\stoupa101\Desktop\FRST64.exe
2019-05-12 18:14 - 2019-05-12 18:14 - 000000000 ___DC C:\Users\stoupa101\Desktop\FRST-OlderVersion
2019-05-12 13:54 - 2019-05-12 15:45 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-12 13:34 - 2019-05-12 15:55 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.720p.WEB.x264-STRiFE[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E17.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E16.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S04E09.WEB.H264-MEMENTO[rarbg]
2019-05-11 09:09 - 2019-05-12 12:52 - 000000000 ____D C:\Users\stoupa101\Downloads\MacGyver.2016.S03E22.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 14:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Agents.of.S.H.I.E.L.D.S06E01.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 08:34 - 000000000 ____D C:\Users\stoupa101\Downloads\Hawaii.Five-0.2010.S09E24.HDTV.x264-KILLERS[rarbg]
2019-05-11 07:55 - 2019-05-11 08:16 - 000000000 ____D C:\Users\stoupa101\Downloads\Warrior.S01E06.WEB.h264-TBS[rarbg]
2019-05-10 22:53 - 2019-05-10 22:53 - 000024532 _____ C:\Users\stoupa101\Downloads\ECI(2019)000001-receipt.pdf
2019-05-10 21:30 - 2019-05-11 07:55 - 000000000 ____D C:\WINDOWS\Minidump
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-10 21:26 - 2019-05-10 21:26 - 000000000 ____D C:\Users\stoupa101\Downloads\Doom.Patrol.S01E13.WEBRip.x264-ION10
2019-05-10 21:14 - 2019-05-10 21:17 - 007025360 _____ (Malwarebytes) C:\Users\stoupa101\Desktop\adwcleaner_7.3.exe
2019-05-10 15:50 - 2019-05-10 15:50 - 000019391 ____C C:\Users\stoupa101\Desktop\Addition.rar
2019-05-10 15:40 - 2019-05-10 15:41 - 000082809 ____C C:\Users\stoupa101\Desktop\Addition.txt
2019-05-10 15:38 - 2019-05-12 18:15 - 000050996 ____C C:\Users\stoupa101\Desktop\FRST.txt
2019-05-10 15:32 - 2019-05-10 15:32 - 000000000 ___HD C:\OneDriveTemp
2019-05-10 15:19 - 2019-05-10 15:19 - 000519080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-10 14:47 - 2019-05-10 14:47 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2019-05-10 14:47 - 2019-05-10 14:47 - 000001116 _____ C:\Users\Public\Desktop\WinSCP.lnk
2019-05-10 14:46 - 2019-05-10 14:46 - 009834432 _____ (Martin Prikryl ) C:\Users\stoupa101\Downloads\WinSCP-5.15.1-Setup.exe
2019-05-10 09:18 - 2019-05-10 13:30 - 000000000 ____D C:\Users\stoupa101\Downloads\iZombie.S05E02.WEB.h264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 11:11 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Cloak.And.Dagger.S02E07.WEB.x264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 07:02 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E22.HDTV.x264-SVA[rarbg]
2019-05-09 16:35 - 2019-05-09 16:35 - 000011339 _____ C:\Users\stoupa101\.bash_history
2019-05-09 10:44 - 2019-05-09 10:43 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-05-09 10:03 - 2019-05-09 13:25 - 000000000 ____D C:\Users\stoupa101\Downloads\Into.The.Badlands.S03.WEBRip.x264-ION10
2019-05-09 09:38 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Happy.2017.S02E07.WEB.x264-TBS[rarbg]
2019-05-09 09:34 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Whiskey.Cavalier.S01E11.HDTV.x264-KILLERS[rarbg]
2019-05-09 05:22 - 2019-05-09 12:50 - 000000000 ____D C:\Users\stoupa101\Downloads\Shadowhunters.S03.WEBRip.x264-ION10
2019-05-08 07:24 - 2019-05-08 12:26 - 000000000 ____D C:\Users\stoupa101\Downloads\The.100.S06E02.WEB.h264-TBS[rarbg]
2019-05-07 22:24 - 2019-05-07 22:53 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S02.WEBRip.x264-ION10
2019-05-07 22:23 - 2019-05-07 22:59 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S03.WEBRip.x264-ION10
2019-05-07 04:45 - 2019-05-07 04:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2019-05-06 15:51 - 2019-05-06 15:51 - 000043796 _____ C:\Users\stoupa101\Downloads\rozpocet 2019.xlsx
2019-05-06 05:56 - 2019-05-10 21:31 - 000000000 ___DC C:\Users\stoupa101\AppData\LocalLow\uTorrent
2019-05-05 17:06 - 2019-05-05 17:06 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-05 17:05 - 2019-05-05 17:05 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-05 17:05 - 2019-05-05 17:05 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-03 10:55 - 2019-05-03 10:55 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Viber
2019-05-02 15:06 - 2019-05-02 15:06 - 000000000 _____ C:\WINDOWS\invcol.tmp
2019-05-02 11:05 - 2019-05-02 11:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-05-02 10:20 - 2019-05-12 18:01 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-02 10:19 - 2019-05-02 10:19 - 021254208 _____ (Piriform Software Ltd) C:\Users\stoupa101\Downloads\ccsetup556.exe
2019-05-02 10:16 - 2019-05-12 18:01 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044220912-1926083053-1571816506-1001
2019-05-02 10:16 - 2019-05-02 10:16 - 000002417 ____C C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-27 21:25 - 2019-04-27 21:25 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-04-26 12:01 - 2019-04-26 12:01 - 000002081 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002079 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002069 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-04-25 06:45 - 2019-04-25 06:45 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-25 06:42 - 2019-05-10 06:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-25 06:42 - 2019-04-25 06:42 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-25 06:42 - 2019-04-25 06:42 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-25 06:42 - 2019-03-20 15:12 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-04-24 12:50 - 2019-04-24 12:50 - 000147483 _____ C:\Users\stoupa101\Downloads\Smlouva o Bankovní IDentitě - David Stopka.pdf
2019-04-16 13:51 - 2019-04-16 13:51 - 000056174 _____ C:\Users\stoupa101\Downloads\LostVapeDefault75Theme.ecigtheme
2019-04-16 13:50 - 2019-04-16 13:50 - 000058332 _____ C:\Users\stoupa101\Downloads\Gauges-2.2.0.ecigtheme
2019-04-12 13:28 - 2019-04-12 13:28 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-12 13:28 - 2019-04-12 13:28 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:28 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-12 13:27 - 2019-04-12 13:27 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-12 13:27 - 2019-04-12 13:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002033152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 18:15 - 2018-10-01 15:49 - 000000000 __HDC C:\Users\stoupa101\Desktop\.tmp.drivedownload
2019-05-12 18:15 - 2015-09-17 12:34 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\uTorrent
2019-05-12 18:14 - 2016-07-14 09:06 - 000000000 ____D C:\FRST
2019-05-12 18:01 - 2019-03-20 15:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog
2019-05-12 18:01 - 2019-03-14 14:21 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-12 18:01 - 2019-03-14 14:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000003296 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2019-05-12 18:01 - 2019-03-14 14:21 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-12 18:01 - 2019-03-14 14:21 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-05-12 18:01 - 2019-03-14 14:21 - 000002854 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com
2019-05-12 18:01 - 2019-03-14 14:21 - 000002806 _____ C:\WINDOWS\System32\Tasks\Git for Windows Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000002638 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-05-12 18:01 - 2019-03-14 14:21 - 000002602 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2019-05-12 18:01 - 2019-03-14 14:21 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-05-12 18:01 - 2019-03-14 14:21 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-12 17:57 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-05-12 17:44 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-12 15:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-12 15:52 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-12 15:52 - 2017-12-11 23:39 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Packages
2019-05-12 12:19 - 2019-03-14 14:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-12 11:44 - 2018-05-16 16:27 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\PlaceholderTileLogoFolder
2019-05-12 00:22 - 2014-12-30 15:33 - 000131072 ___SH C:\CredSED.dat
2019-05-11 21:47 - 2019-03-20 16:07 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2019-05-10 21:34 - 2019-03-14 14:23 - 001843772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-10 21:34 - 2018-09-15 19:32 - 000752190 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-10 21:34 - 2018-09-15 19:32 - 000162630 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-10 21:34 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-10 21:31 - 2018-10-01 14:28 - 000000000 ___RD C:\Users\stoupa101\Disk Google
2019-05-10 21:31 - 2014-12-30 09:01 - 000000000 ___RD C:\Users\stoupa101\OneDrive
2019-05-10 21:30 - 2019-03-14 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-10 21:30 - 2015-01-29 13:20 - 000000000 __SHD C:\Users\stoupa101\IntelGraphicsProfiles
2019-05-10 21:23 - 2019-03-14 14:15 - 000000000 ____D C:\Users\stoupa101
2019-05-10 21:19 - 2016-07-12 20:05 - 000000000 ____D C:\AdwCleaner
2019-05-10 18:46 - 2018-06-27 18:53 - 000000000 __HDC C:\Users\stoupa101\Documents\.tmp.drivedownload
2019-05-10 18:46 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\Documents\ViberDownloads
2019-05-10 15:18 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-05-10 14:47 - 2014-12-31 15:38 - 000000600 ____C C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2019-05-10 14:47 - 2014-12-31 15:36 - 000000000 ____D C:\Program Files (x86)\WinSCP
2019-05-10 13:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-09 14:44 - 2018-05-21 10:36 - 000000407 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt
2019-05-09 14:21 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Dell
2019-05-09 10:44 - 2016-11-15 10:05 - 000000000 ____D C:\Program Files (x86)\Java
2019-05-09 10:44 - 2014-12-30 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-09 10:44 - 2014-12-30 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-05-09 10:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-05-07 04:22 - 2017-08-24 16:38 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Spotify
2019-05-07 04:12 - 2017-08-24 16:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Spotify
2019-05-06 05:15 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\ViberPC
2019-05-06 05:14 - 2017-06-28 07:50 - 000000000 ____D C:\Program Files\DellTPad
2019-05-06 05:14 - 2014-12-19 05:13 - 000017768 _____ C:\WINDOWS\system32\results.xml
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-05 17:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-05 16:04 - 2015-01-06 13:02 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\CrashDumps
2019-05-02 20:15 - 2014-12-30 15:58 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\MPC-HC
2019-05-02 10:48 - 2019-03-14 12:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-02 10:21 - 2017-12-07 09:17 - 000000000 ___DC C:\Users\stoupa101\Desktop\Nová složka
2019-05-02 10:20 - 2018-05-02 16:32 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-02 10:15 - 2014-12-31 12:16 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\TSVNCache
2019-04-30 22:59 - 2014-12-30 15:13 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 10:53 - 2019-04-01 15:00 - 000000000 ____D C:\Users\stoupa101\AppData\Roaming\ICQ
2019-04-27 11:03 - 2014-12-30 09:01 - 000000000 ____D C:\ProgramData\PCDr
2019-04-27 11:02 - 2014-12-19 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-27 10:02 - 2017-06-25 13:38 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-26 12:34 - 2014-12-31 09:18 - 000000000 ____D C:\NIX
2019-04-26 12:01 - 2018-06-27 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-04-25 06:42 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-24 15:28 - 2019-02-22 12:33 - 000000000 ____D C:\Program Files\Symfony
2019-04-24 10:16 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-23 12:37 - 2018-05-22 12:36 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt
2019-04-22 13:50 - 2018-11-06 12:03 - 000000000 ____D C:\Users\stoupa101\Downloads\__old
2019-04-21 14:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-19 14:54 - 2016-10-03 17:08 - 000000000 ____D C:\Users\stoupa101\Downloads\_RDY(no_tit)
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-14 19:13 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-14 12:25 - 2019-03-26 19:25 - 000000000 ____D C:\Users\stoupa101\AppData\Local\BitTorrentHelper
2019-04-13 16:03 - 2015-06-24 14:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\vlc
2019-04-12 16:08 - 2019-01-30 12:31 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\pgAdmin
2019-04-12 11:12 - 2015-01-12 17:25 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Composer
==================== Files in the root of some directories =======
2014-12-31 15:38 - 2019-05-10 14:47 - 000000600 ____C () C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2018-09-29 13:33 - 2018-09-29 13:33 - 000000000 ____C () C:\Users\stoupa101\AppData\Local\oobelibMkey.log
2014-12-30 16:58 - 2018-04-17 12:02 - 000000600 ____C () C:\Users\stoupa101\AppData\Local\PUTTY.RND
2015-07-23 09:51 - 2017-08-08 16:30 - 000007678 ____C () C:\Users\stoupa101\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Ran by stoupa101 (administrator) on JAGUAR (Dell Inc. Latitude E7440) (12-05-2019 18:14:36)
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1903.21.0_x64__8wekyb3d8bbwe\Calculator.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\updates\3.5.5_45225\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe
(Dell -> ) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe
(Dell -> Dell Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe
(Dell -> Dell, Inc.) C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe
(Dimension Engineering LLC -> Evolv LLC) C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ecigstats.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LLC Mail.Ru -> ) C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\stoupa101\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\stoupa101\AppData\Local\Viber\Viber.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CSFTrayApp] => C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.SystrayApp.exe [232288 2014-09-11] (Dell -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8474880 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [609200 2015-03-01] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1203856 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Viber] => C:\Users\stoupa101\AppData\Local\Viber\Viber.exe [37775944 2019-04-29] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [uTorrent] => C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe [1816808 2019-05-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [1990144 2017-03-21] (ownCloud) [File not signed]
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [584320 2017-01-31] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Spotify] => C:\Users\stoupa101\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Discord] => C:\Users\stoupa101\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\stoupa101\AppData\Local\Vivaldi\Application\update_notifier.exe [1809480 2019-03-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [ECigStats] => C:\Users\stoupa101\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [159368 2018-11-30] (Dimension Engineering LLC -> Evolv LLC)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Run: [icq.desktop] => C:\Users\stoupa101\AppData\Roaming\ICQ\bin\icq.exe [55756952 2019-04-26] (LLC Mail.Ru -> )
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A58485D1-79F3-4BC9-A358-E239C6C047BA}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov2.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2015-01-27]
ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {123EA742-1270-4B96-A631-BED7DD534436} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {1B367677-9224-4E40-B21E-3A46AB84F6C6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [157216 2014-10-31] (Leader Technologies Inc -> Aviata Inc)
Task: {2093D3AA-4591-44EA-8E5D-B3D78DB9FFB7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {376A7F53-9934-49CD-8AC1-A0F1A3ED4E06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {56A1ABD3-4B4E-4603-9872-2238BF3BFF68} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {57F55D03-DAB3-4805-BE99-37245E3C2BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {605E7F6B-06B9-4F37-B179-024C663DCDFE} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {64DE71ED-C1A2-4DF9-8744-579AFC9AEB46} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [149272 2018-12-15] (Johannes Schindelin -> The Git Development Community)
Task: {789F5AAA-D918-4F12-ABD8-2F7846806ADD} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-04-10] (Dell Inc. -> Dell Inc.)
Task: {7D98AC2A-6888-4DE6-9FD2-870584062E92} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {85A7B4D2-BB57-4289-8ED0-D4FC3580A9A7} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {89104F0D-0B4B-45B6-B25E-D71421DC8B66} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {903C4852-8D57-46B5-A2D9-2C604530AAC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {960CB4BE-85F0-4735-82E9-8159AE84A6D2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [131129288 2019-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {96C14B06-1724-4117-9565-19FEE1C90923} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {AAF724B8-145B-4245-B998-C7E7F6ADBCBB} - \WPD\SqmUpload_S-1-5-21-1044220912-1926083053-1571816506-1001 -> No File <==== ATTENTION
Task: {C26FA183-0A1F-46BD-A6FB-89F6FC9CABEB} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {C8F5767C-50A9-47EC-9543-F67D46A833EB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {C9FD2F9A-5048-469A-B6C8-84C8A8CFDDFA} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {CE581081-EBD7-43CB-A5CF-9FF861E47C06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe)
Task: {D7777CC9-4E37-49B9-9ACB-EC294A43D40D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EBEA05F0-7AF7-4406-94F8-DC995008D6D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EE897583-B2E7-4E0F-9970-AA80684D30B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F0CF467F-ACC7-4938-BF5A-3A26D690FAFC} - System32\Tasks\Dell\Command Update => C:\Program Files (x86)\Dell\CommandUpdate\DellCommandUpdate.exe [2930824 2018-06-01] (Dell Inc -> Dell Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => cmd /c sc start Dell Foundation ServicesWORKGROUP JAGUAR
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{252f3261-7469-4b62-88d0-78c4b8dda1a2}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3cc28684-cf6d-4a33-97c3-e69fa7125ad6}: [DhcpNameServer] 192.168.10.1 81.19.47.242
Tcpip\..\Interfaces\{f4be8427-d92e-496e-ac1c-beec55ecf05f}: [DhcpNameServer] 192.168.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180524__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
BHO: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\X64\InvRedirHostIE64.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Invincea Web Redirector -> {1C52FA7C-51B7-4621-9D5A-11101BA13134} -> C:\Program Files (x86)\Invincea\Enterprise\InvRedirHostIE.dll [2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FireFox:
========
FF DefaultProfile: 4jltx1yr.default
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default [2015-08-11]
FF Extension: (Emulator) - C:\Users\stoupa101\AppData\Roaming\TomTom\HOME\Profiles\qh8s841m.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-08-11] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default [2019-05-12]
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF Extension: (Avast Online Security) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\wrc@avast.com.xpi [2019-03-20]
FF Extension: (No Name) - C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-27]
FF SearchPlugin: C:\Users\stoupa101\AppData\Roaming\Mozilla\Firefox\Profiles\4jltx1yr.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome
FF Extension: (Dell Data Protection | Security Tools) - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome [2014-12-30] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-03-17] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=https%3A%2F%2Fmt.peeringdays.eu%2Flogin&charset=%28detect+automatically%29&doctype=Inline&group=0
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default [2019-05-12]
CHR Extension: (QR kód) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm [2014-12-30]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2018-05-24]
CHR Extension: (Disk Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (TV) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-12-30]
CHR Extension: (YouTube) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Star Legends) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2018-09-06]
CHR Extension: (Vyhledávání Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (AutoCAD 360) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-12-30]
CHR Extension: (Box) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-05-03]
CHR Extension: (PicMonkey) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2017-10-28]
CHR Extension: (Hodiny) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-12-30]
CHR Extension: (AdBlock) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-02]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-26]
CHR Extension: (Pixlr Editor) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2015-10-09]
CHR Extension: (Dropbox) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-03-23]
CHR Extension: (Top Eleven) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2018-05-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-06-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (HTML Validator) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbelhhnfhfjnaehkcnnaknldmnocglk [2019-03-01]
CHR Extension: (Hangouts Google) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Picasa) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-30]
CHR Extension: (Psykopaint) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-19]
CHR Extension: (Gmail) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-27]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR Profile: C:\Users\stoupa101\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-02]
CHR HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\BrowserExt\dpchrome.crx [2014-03-17]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [34976 2018-12-05] (Dell Inc -> )
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell Inc -> Dell)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-27] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{9F9F2EBA-889C-4676-ABDD-C2B58CF31F1C} [21304 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R2 DellMgmtAgent; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.exe [255328 2014-09-11] (Dell -> Dell Inc.)
R2 DellMgmtLoader; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.Loader.exe [26464 2014-09-11] (Dell -> )
R2 DellMgmtServer; C:\Program Files\Dell\Dell Data Protection\Client Security Framework\Dell.SecurityManager.MgmtServer.exe [33632 2014-09-11] (Dell -> Dell, Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Leader Technologies Inc -> Aviata, Inc.)
R2 DpHost; C:\Program Files\Dell\Dell Data Protection\Security Tools\Authentication\Bin\DpHostW.exe [472912 2014-03-19] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19424 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-12-22] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [5701256 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> )
S3 OpenVpnService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [70272 2017-01-31] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [87040 2006-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [299776 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [198792 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R2 SDIOAssist; C:\Windows\System32\SDIOAssist.exe [95744 2014-06-18] (BayHubTech/O2Micro ) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39896 2019-04-10] (Dell Inc. -> Dell Inc.)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.35\bin\httpd.exe [29696 2018-09-19] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; c:\wamp\bin\mariadb\mariadb10.3.9\bin\mysqld.exe [15788968 2018-08-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.7.23\bin\mysqld.exe [39626752 2018-06-08] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-10-24] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation)
R2 postgresql-x64-9.6; "C:\PostgreSQL\9.6\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.6" -D "C:\PostgreSQL\9.6\data" -w
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
R0 CredFltL; C:\WINDOWS\System32\DRIVERS\CredFltL.sys [37120 2014-09-11] (Dell -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2540800 2015-05-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [89224 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
S3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33928 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1561600 2016-08-23] (Creative Technology Ltd -> Creative Technology Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521032 2017-10-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro )
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [204424 2017-03-15] (Invincea, Inc. -> Invincea, Inc.)
R0 SEDFilter; C:\WINDOWS\System32\DRIVERS\SEDFilter.sys [61184 2014-09-11] (Dell -> Dell Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [146512 2015-07-02] (Microsoft Windows Hardware Compatibility Publisher -> STMicroelectronics)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [216080 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [227008 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [37920 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-02] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-25] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [166912 2017-12-19] (Yamaha Corporation -> Yamaha Corporation)
U4 npcap_wifi; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 18:14 - 2019-05-12 18:14 - 002430976 _____ (Farbar) C:\Users\stoupa101\Desktop\FRST64.exe
2019-05-12 18:14 - 2019-05-12 18:14 - 000000000 ___DC C:\Users\stoupa101\Desktop\FRST-OlderVersion
2019-05-12 13:54 - 2019-05-12 15:45 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.REPACK.WEB.x264-STRiFE[rarbg]
2019-05-12 13:34 - 2019-05-12 15:55 - 000000000 ____D C:\Users\stoupa101\Downloads\Lucifer.S04E09.720p.WEB.x264-STRiFE[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E17.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Guardians.of.the.Galaxy.S03E16.WEB.x264-TBS[rarbg]
2019-05-12 11:00 - 2019-05-12 11:00 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S04E09.WEB.H264-MEMENTO[rarbg]
2019-05-11 09:09 - 2019-05-12 12:52 - 000000000 ____D C:\Users\stoupa101\Downloads\MacGyver.2016.S03E22.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 14:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Agents.of.S.H.I.E.L.D.S06E01.HDTV.x264-SVA[rarbg]
2019-05-11 07:55 - 2019-05-11 08:34 - 000000000 ____D C:\Users\stoupa101\Downloads\Hawaii.Five-0.2010.S09E24.HDTV.x264-KILLERS[rarbg]
2019-05-11 07:55 - 2019-05-11 08:16 - 000000000 ____D C:\Users\stoupa101\Downloads\Warrior.S01E06.WEB.h264-TBS[rarbg]
2019-05-10 22:53 - 2019-05-10 22:53 - 000024532 _____ C:\Users\stoupa101\Downloads\ECI(2019)000001-receipt.pdf
2019-05-10 21:30 - 2019-05-11 07:55 - 000000000 ____D C:\WINDOWS\Minidump
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-10 21:26 - 2019-05-10 21:26 - 000000000 ____D C:\Users\stoupa101\Downloads\Doom.Patrol.S01E13.WEBRip.x264-ION10
2019-05-10 21:14 - 2019-05-10 21:17 - 007025360 _____ (Malwarebytes) C:\Users\stoupa101\Desktop\adwcleaner_7.3.exe
2019-05-10 15:50 - 2019-05-10 15:50 - 000019391 ____C C:\Users\stoupa101\Desktop\Addition.rar
2019-05-10 15:40 - 2019-05-10 15:41 - 000082809 ____C C:\Users\stoupa101\Desktop\Addition.txt
2019-05-10 15:38 - 2019-05-12 18:15 - 000050996 ____C C:\Users\stoupa101\Desktop\FRST.txt
2019-05-10 15:32 - 2019-05-10 15:32 - 000000000 ___HD C:\OneDriveTemp
2019-05-10 15:19 - 2019-05-10 15:19 - 000519080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-10 14:47 - 2019-05-10 14:47 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2019-05-10 14:47 - 2019-05-10 14:47 - 000001116 _____ C:\Users\Public\Desktop\WinSCP.lnk
2019-05-10 14:46 - 2019-05-10 14:46 - 009834432 _____ (Martin Prikryl ) C:\Users\stoupa101\Downloads\WinSCP-5.15.1-Setup.exe
2019-05-10 09:18 - 2019-05-10 13:30 - 000000000 ____D C:\Users\stoupa101\Downloads\iZombie.S05E02.WEB.h264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 11:11 - 000000000 ____D C:\Users\stoupa101\Downloads\Marvels.Cloak.And.Dagger.S02E07.WEB.x264-TBS[rarbg]
2019-05-10 06:37 - 2019-05-10 07:02 - 000000000 ____D C:\Users\stoupa101\Downloads\The.Big.Bang.Theory.S12E22.HDTV.x264-SVA[rarbg]
2019-05-09 16:35 - 2019-05-09 16:35 - 000011339 _____ C:\Users\stoupa101\.bash_history
2019-05-09 10:44 - 2019-05-09 10:43 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-05-09 10:03 - 2019-05-09 13:25 - 000000000 ____D C:\Users\stoupa101\Downloads\Into.The.Badlands.S03.WEBRip.x264-ION10
2019-05-09 09:38 - 2019-05-09 10:39 - 000000000 ____D C:\Users\stoupa101\Downloads\Happy.2017.S02E07.WEB.x264-TBS[rarbg]
2019-05-09 09:34 - 2019-05-09 10:38 - 000000000 ____D C:\Users\stoupa101\Downloads\Whiskey.Cavalier.S01E11.HDTV.x264-KILLERS[rarbg]
2019-05-09 05:22 - 2019-05-09 12:50 - 000000000 ____D C:\Users\stoupa101\Downloads\Shadowhunters.S03.WEBRip.x264-ION10
2019-05-08 07:24 - 2019-05-08 12:26 - 000000000 ____D C:\Users\stoupa101\Downloads\The.100.S06E02.WEB.h264-TBS[rarbg]
2019-05-07 22:24 - 2019-05-07 22:53 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S02.WEBRip.x264-ION10
2019-05-07 22:23 - 2019-05-07 22:59 - 000000000 ____D C:\Users\stoupa101\Downloads\Billions.S03.WEBRip.x264-ION10
2019-05-07 04:45 - 2019-05-07 04:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2019-05-06 15:51 - 2019-05-06 15:51 - 000043796 _____ C:\Users\stoupa101\Downloads\rozpocet 2019.xlsx
2019-05-06 05:56 - 2019-05-10 21:31 - 000000000 ___DC C:\Users\stoupa101\AppData\LocalLow\uTorrent
2019-05-05 17:06 - 2019-05-05 17:06 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-05 17:06 - 2019-05-05 17:06 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-05 17:05 - 2019-05-05 17:05 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-05 17:05 - 2019-05-05 17:05 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-05 17:05 - 2019-05-05 17:05 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-05 17:05 - 2019-05-05 17:05 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-05 17:05 - 2019-05-05 17:05 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-05 17:04 - 2019-05-05 17:04 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-05 17:04 - 2019-05-05 17:04 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-05 17:04 - 2019-05-05 17:04 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-03 10:55 - 2019-05-03 10:55 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Viber
2019-05-02 15:06 - 2019-05-02 15:06 - 000000000 _____ C:\WINDOWS\invcol.tmp
2019-05-02 11:05 - 2019-05-02 11:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-05-02 10:20 - 2019-05-12 18:01 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-02 10:19 - 2019-05-02 10:19 - 021254208 _____ (Piriform Software Ltd) C:\Users\stoupa101\Downloads\ccsetup556.exe
2019-05-02 10:16 - 2019-05-12 18:01 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044220912-1926083053-1571816506-1001
2019-05-02 10:16 - 2019-05-02 10:16 - 000002417 ____C C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-27 21:25 - 2019-04-27 21:25 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-04-26 12:01 - 2019-04-26 12:01 - 000002081 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002079 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-04-26 12:01 - 2019-04-26 12:01 - 000002069 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-04-25 06:45 - 2019-04-25 06:45 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-25 06:44 - 2019-04-25 06:44 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-25 06:42 - 2019-05-10 06:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-25 06:42 - 2019-04-25 06:42 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-25 06:42 - 2019-04-25 06:42 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-25 06:42 - 2019-04-25 06:42 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-25 06:42 - 2019-03-20 15:12 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-04-24 12:50 - 2019-04-24 12:50 - 000147483 _____ C:\Users\stoupa101\Downloads\Smlouva o Bankovní IDentitě - David Stopka.pdf
2019-04-16 13:51 - 2019-04-16 13:51 - 000056174 _____ C:\Users\stoupa101\Downloads\LostVapeDefault75Theme.ecigtheme
2019-04-16 13:50 - 2019-04-16 13:50 - 000058332 _____ C:\Users\stoupa101\Downloads\Gauges-2.2.0.ecigtheme
2019-04-12 13:28 - 2019-04-12 13:28 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-12 13:28 - 2019-04-12 13:28 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-12 13:28 - 2019-04-12 13:28 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-12 13:28 - 2019-04-12 13:28 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:28 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-12 13:27 - 2019-04-12 13:27 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-12 13:27 - 2019-04-12 13:27 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-12 13:27 - 2019-04-12 13:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-12 13:27 - 2019-04-12 13:27 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-12 13:27 - 2019-04-12 13:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-12 13:27 - 2019-04-12 13:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-12 13:27 - 2019-04-12 13:27 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002033152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-12 13:26 - 2019-04-12 13:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-12 13:26 - 2019-04-12 13:26 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-12 13:26 - 2019-04-12 13:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 18:15 - 2018-10-01 15:49 - 000000000 __HDC C:\Users\stoupa101\Desktop\.tmp.drivedownload
2019-05-12 18:15 - 2015-09-17 12:34 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\uTorrent
2019-05-12 18:14 - 2016-07-14 09:06 - 000000000 ____D C:\FRST
2019-05-12 18:01 - 2019-03-20 15:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog
2019-05-12 18:01 - 2019-03-14 14:21 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-12 18:01 - 2019-03-14 14:21 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-12 18:01 - 2019-03-14 14:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000003296 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2019-05-12 18:01 - 2019-03-14 14:21 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-12 18:01 - 2019-03-14 14:21 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-05-12 18:01 - 2019-03-14 14:21 - 000002854 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-stoupa101@hotmail.com
2019-05-12 18:01 - 2019-03-14 14:21 - 000002806 _____ C:\WINDOWS\System32\Tasks\Git for Windows Updater
2019-05-12 18:01 - 2019-03-14 14:21 - 000002638 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-05-12 18:01 - 2019-03-14 14:21 - 000002602 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2019-05-12 18:01 - 2019-03-14 14:21 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-05-12 18:01 - 2019-03-14 14:21 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-12 17:57 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-05-12 17:44 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-12 15:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-12 15:52 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-12 15:52 - 2017-12-11 23:39 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Packages
2019-05-12 12:19 - 2019-03-14 14:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-12 11:44 - 2018-05-16 16:27 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\PlaceholderTileLogoFolder
2019-05-12 00:22 - 2014-12-30 15:33 - 000131072 ___SH C:\CredSED.dat
2019-05-11 21:47 - 2019-03-20 16:07 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2019-05-10 21:34 - 2019-03-14 14:23 - 001843772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-10 21:34 - 2018-09-15 19:32 - 000752190 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-10 21:34 - 2018-09-15 19:32 - 000162630 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-10 21:34 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-10 21:31 - 2018-10-01 14:28 - 000000000 ___RD C:\Users\stoupa101\Disk Google
2019-05-10 21:31 - 2014-12-30 09:01 - 000000000 ___RD C:\Users\stoupa101\OneDrive
2019-05-10 21:30 - 2019-03-14 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-10 21:30 - 2015-01-29 13:20 - 000000000 __SHD C:\Users\stoupa101\IntelGraphicsProfiles
2019-05-10 21:23 - 2019-03-14 14:15 - 000000000 ____D C:\Users\stoupa101
2019-05-10 21:19 - 2016-07-12 20:05 - 000000000 ____D C:\AdwCleaner
2019-05-10 18:46 - 2018-06-27 18:53 - 000000000 __HDC C:\Users\stoupa101\Documents\.tmp.drivedownload
2019-05-10 18:46 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\Documents\ViberDownloads
2019-05-10 15:18 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2019-05-10 14:47 - 2014-12-31 15:38 - 000000600 ____C C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2019-05-10 14:47 - 2014-12-31 15:36 - 000000000 ____D C:\Program Files (x86)\WinSCP
2019-05-10 13:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-09 14:44 - 2018-05-21 10:36 - 000000407 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt
2019-05-09 14:21 - 2019-03-14 14:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Dell
2019-05-09 10:44 - 2016-11-15 10:05 - 000000000 ____D C:\Program Files (x86)\Java
2019-05-09 10:44 - 2014-12-30 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-09 10:44 - 2014-12-30 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-05-09 10:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-05-07 04:22 - 2017-08-24 16:38 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\Spotify
2019-05-07 04:12 - 2017-08-24 16:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Spotify
2019-05-06 05:15 - 2015-08-26 14:36 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\ViberPC
2019-05-06 05:14 - 2017-06-28 07:50 - 000000000 ____D C:\Program Files\DellTPad
2019-05-06 05:14 - 2014-12-19 05:13 - 000017768 _____ C:\WINDOWS\system32\results.xml
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-06 05:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-05 17:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-05 16:04 - 2015-01-06 13:02 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\CrashDumps
2019-05-02 20:15 - 2014-12-30 15:58 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\MPC-HC
2019-05-02 10:48 - 2019-03-14 12:13 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-02 10:21 - 2017-12-07 09:17 - 000000000 ___DC C:\Users\stoupa101\Desktop\Nová složka
2019-05-02 10:20 - 2018-05-02 16:32 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-02 10:15 - 2014-12-31 12:16 - 000000000 ___DC C:\Users\stoupa101\AppData\Local\TSVNCache
2019-04-30 22:59 - 2014-12-30 15:13 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 10:53 - 2019-04-01 15:00 - 000000000 ____D C:\Users\stoupa101\AppData\Roaming\ICQ
2019-04-27 11:03 - 2014-12-30 09:01 - 000000000 ____D C:\ProgramData\PCDr
2019-04-27 11:02 - 2014-12-19 05:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-27 10:02 - 2017-06-25 13:38 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-26 12:34 - 2014-12-31 09:18 - 000000000 ____D C:\NIX
2019-04-26 12:01 - 2018-06-27 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-04-25 06:42 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-24 15:28 - 2019-02-22 12:33 - 000000000 ____D C:\Program Files\Symfony
2019-04-24 10:16 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-23 12:37 - 2018-05-22 12:36 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt
2019-04-22 13:50 - 2018-11-06 12:03 - 000000000 ____D C:\Users\stoupa101\Downloads\__old
2019-04-21 14:01 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-19 14:54 - 2016-10-03 17:08 - 000000000 ____D C:\Users\stoupa101\Downloads\_RDY(no_tit)
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-14 19:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-14 19:13 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-14 12:25 - 2019-03-26 19:25 - 000000000 ____D C:\Users\stoupa101\AppData\Local\BitTorrentHelper
2019-04-13 16:03 - 2015-06-24 14:45 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\vlc
2019-04-12 16:08 - 2019-01-30 12:31 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\pgAdmin
2019-04-12 11:12 - 2015-01-12 17:25 - 000000000 ___DC C:\Users\stoupa101\AppData\Roaming\Composer
==================== Files in the root of some directories =======
2014-12-31 15:38 - 2019-05-10 14:47 - 000000600 ____C () C:\Users\stoupa101\AppData\Roaming\winscp.rnd
2018-09-29 13:33 - 2018-09-29 13:33 - 000000000 ____C () C:\Users\stoupa101\AppData\Local\oobelibMkey.log
2014-12-30 16:58 - 2018-04-17 12:02 - 000000600 ____C () C:\Users\stoupa101\AppData\Local\PUTTY.RND
2015-07-23 09:51 - 2017-08-08 16:30 - 000007678 ____C () C:\Users\stoupa101\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Re: Prosim o preventivku
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05.2019
Ran by stoupa101 (12-05-2019 18:16:15)
Running from C:\Users\stoupa101\Desktop
Windows 10 Home Version 1809 17763.475 (X64) (2019-03-14 12:22:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1044220912-1926083053-1571816506-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1044220912-1926083053-1571816506-503 - Limited - Disabled)
Guest (S-1-5-21-1044220912-1926083053-1571816506-501 - Limited - Disabled)
stoupa101 (S-1-5-21-1044220912-1926083053-1571816506-1001 - Administrator - Enabled) => C:\Users\stoupa101
WDAGUtilityAccount (S-1-5-21-1044220912-1926083053-1571816506-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\uTorrent) (Version: 3.5.5.45225 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{4E97C234-3F6C-4AA9-BFAF-0166F3050A68}) (Version: 4.4.11.2412 - Open Media LLC)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.171 - Adobe)
Altap Salamander 3.07 (x86) (HKLM-x32\...\Altap Salamander 3.07 (x86)) (Version: 3.07 - ALTAP)
Altap Salamander 3.08 (x64) (HKLM\...\Altap Salamander 3.08 (x64)) (Version: 3.08 - ALTAP)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{2f5f8f8e-11d9-4c64-b002-b60607ac3a29}) (Version: 20.10.1 - Intel Corporation)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{9F429DF7-F8DD-4980-9673-E6DACA012F6C}) (Version: 3.3 - Microsoft Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.4.2374 - AVAST Software)
Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Backup and Sync from Google (HKLM\...\{F9EEDE46-6409-4ECC-8AB6-7062464987A4}) (Version: 3.43.4275.9540 - Google, Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) HDC (11/17/2015 14.8.1.1043) (HKLM\...\C3968081C27DE5E6D26026C92CEE47C38A86ADE8) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) SCSIAdapter (11/17/2015 14.8.1.1043) (HKLM\...\A0A971B6BB8AC48E328E1BA665EEE9B5663C890C) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
CDisplayEx 1.10.29 (HKLM-x32\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
CmgMasterPrerequisites (HKLM-x32\...\{EE34FA4E-715A-46FA-9CAF-06E26AE4217D}) (Version: 1.4.1.777 - Credant Technologies Inc.) Hidden
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.2.1 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.4.0 - Dell Inc.)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{74117219-F4F7-4CB7-98A2-AAF9D6D9928C}) (Version: 3.4.8.14 - Broadcom Corporation)
Dell Data Protection | Client Security Framework (HKLM\...\{05FDD00D-1C45-44D1-AB3F-C24D45C39457}) (Version: 8.4.1.1717 - Dell, Inc.)
Dell Data Protection | Security Tools (HKLM-x32\...\{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.) Hidden
Dell Data Protection | Security Tools (HKLM-x32\...\InstallShield_{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.)
Dell Data Protection | Security Tools Authentication (HKLM\...\{0B72160B-9F67-47C0-858F-5A0074162148}) (Version: 1.3.1.433 - DigitalPersona, Inc.)
Dell Digital Delivery Services (HKLM-x32\...\{A646748A-7A2A-495F-9EE5-90B3646FEB7E}) (Version: 4.0.15.0 - Dell Inc.)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 6.2.24499 - Invincea, Inc.)
Dell SupportAssist (HKLM\...\{0309AC01-330F-494C-B27D-58E297E4674F}) (Version: 3.2.1.94 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.121 - ALPS ELECTRIC CO., LTD.)
Discord (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.18.1 (HKLM-x32\...\{9890DF1A-10E9-4236-94B1-1EFAA4099F13}) (Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
ECigStats (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ECigStats) (Version: - Evolv)
Enterprise Architect (HKLM-x32\...\{71A2AAC1-8DB5-40B4-AEF5-99C23238D37C}) (Version: 12.0.1210.14 - Sparx Systems)
EScribe Suite (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\EScribe) (Version: - Evolv)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DG0-EverQuest II) (Version: - Sony Online Entertainment)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DGC-EverQuest II) (Version: 1.0.3.195 - Daybreak Game Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeStyler (HKLM-x32\...\FreeStyler 1024_is1) (Version: - Raphaël Wellekens)
Git version 2.20.1 (HKLM\...\Git_is1) (Version: 2.20.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
ICQ (verze 10.0.35724) (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\icq.desktop) (Version: 10.0.35724 - ICQ)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{E8EB0A84-C19C-4520-8671-56D4D4123D37}) (Version: 3.0.0.25 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1423.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.1.1043 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
JetBrains PhpStorm 2018.3.3 (HKLM-x32\...\PhpStorm 2018.3.3) (Version: 183.5153.36 - JetBrains s.r.o.)
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6005.4 - Waves Audio Ltd.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{F0DB2786-18C8-4B0D-9DC2-BA58856A2821}) (Version: 2.1.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{50b32652-69d2-4b93-9316-edcd12067b8b}) (Version: 14.0.23107.10 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 65.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 65.0.2 (x64 cs)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 65.0.2.6995 - Mozilla)
Mozilla Thunderbird 60.6.1 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.6.1 (x86 cs)) (Version: 60.6.1 - Mozilla)
Mp3tag v2.72 (HKLM-x32\...\Mp3tag) (Version: v2.72 - Florian Heidenreich)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MySQL Workbench 6.3 CE (HKLM\...\{E90FE565-E4A2-49E7-94D9-5B8025C972A1}) (Version: 6.3.10 - Oracle Corporation)
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Node.js (HKLM\...\{2909C9DF-9236-4733-8CE5-0BAFCFD78DBB}) (Version: 11.10.0 - Node.js Foundation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.0 - Duodian Technology Co. Ltd.)
Npcap 0.99-r9 (HKLM-x32\...\NpcapInst) (Version: 0.99-r9 - Nmap Project)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.)
OpenVPN 2.4.0-I602 (HKLM\...\OpenVPN) (Version: 2.4.0-I602 - OpenVPN Technologies, Inc.)
Oracle VM VirtualBox 5.2.26 (HKLM\...\{28CBFD88-CBF3-482C-978E-DB437CCEDFC8}) (Version: 5.2.26 - Oracle Corporation)
ownCloud (HKLM-x32\...\ownCloud) (Version: 2.3.1.6824 - ownCloud)
pgAdmin 4 version 4.2 (HKLM-x32\...\pgAdmin 4v4_is1) (Version: 4.2 - The pgAdmin Development Team)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.13.0 - )
PostgreSQL 9.6 (HKLM\...\PostgreSQL 9.6) (Version: 9.6 - PostgreSQL Global Development Group)
Postman-win64-6.7.4 (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Postman) (Version: 6.7.4 - Postman)
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.1.312 - Jan Fiala)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6070 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{5B47029B-1E62-30FF-906E-694851C22782}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Sample Production Bit Checker x64 (HKLM\...\{1FFA19A6-D46D-4993-B39E-394EB92781A4}) (Version: 1.0.7.0 - Intel Corporation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Skipper (HKLM-x32\...\Skipper) (Version: 3.2.14.1430 - Inventic s.r.o.)
SmartFTP Client (HKLM\...\{3BE3116C-6A01-4E4A-992E-1E64CD5D3120}) (Version: 8.0.2234.0 - SmartSoft Ltd.)
Spotify (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
SQLite ODBC Driver (remove only) (HKLM-x32\...\SQLite ODBC Driver) (Version: - )
SQLite ODBC Driver for Win64 (remove only) (HKLM-x32\...\SQLite ODBC Driver for Win64) (Version: - )
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0067 - ST Microelectronics)
Star Realms version 1.13 (HKLM-x32\...\{F4DEB22F-AC61-4111-89B2-CF434A2BABFB}_is1) (Version: 1.13 - White Wizard Games)
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Symfony version 1.1.3 (HKLM\...\Symfony_is1) (Version: 1.1.3 - Symfony)
Synology Cloud Station (HKLM-x32\...\{102406C7-6BD4-47AA-A858-A54C7002E32E}) (Version: 3.1.3320 - Synology)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{791295AE-3B0A-3222-9E69-26C8C106E8D1}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
TortoiseSVN 1.9.4.27285 (64 bit) (HKLM\...\{62C19AB2-8485-4E18-A9D3-EFA612B8AE74}) (Version: 1.9.27285 - TortoiseSVN)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
USB Sound Blaster HD (HKLM-x32\...\{3BE06146-8ADC-47D7-9AD5-E5CABF1FF90C}) (Version: 1.0 - Creative Technology Limited)
Vagrant (HKLM-x32\...\{56BD544C-6113-42A4-B84C-1310DC50DFAF}) (Version: 2.2.4 - HashiCorp)
Viber (HKLM-x32\...\{D65DDA75-2C0A-46BA-807D-127BD5638490}) (Version: 6.0.1.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\{acc83058-83b0-41e2-b372-266672a1af16}) (Version: 6.0.1.5 - Viber Media Inc.)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vivaldi (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Vivaldi) (Version: 2.3.1440.61 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinSCP 5.15.1 (HKLM-x32\...\winscp3_is1) (Version: 5.15.1 - Martin Prikryl)
Wireshark 3.0.0 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.0 - The Wireshark developer community, hxxps://www.wireshark.org)
Yamaha Steinberg USB Driver (HKLM\...\{1AE66176-C480-4A76-AEFB-5E59942D134A}) (Version: 1.10.0 - Yamaha Corporation) Hidden
Yamaha Steinberg USB Driver (HKLM-x32\...\yUninstall_{2938B185-2D57-47B0-9FC8-C90A67BA9277}) (Version: 1.10.0 - Yamaha Corporation)
Yarn (HKLM-x32\...\{80411C38-7663-4EB4-B8D6-6A6973139536}) (Version: 1.13.0 - Yarn Contributors)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\stoupa101\AppData\Local\Vivaldi\Application\2.3.1440.61\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C78B614E-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [SmartFTP Drop] -> {EA5A76F7-8138-4B53-B0F5-ADCC730CAFBD} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files (x86)\ownCloud\shellext\OCContextMenu_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2018-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll [2015-01-11] () [File not signed]
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Install Additional Tools for Node.js.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /d /c "C:\Program Files\nodejs\install_tools.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files\nodejs\nodevars.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a3a1d6b8109861c5\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=nckgahadagoaajjgafhacjanaoiihapd
==================== Loaded Modules (Whitelisted) ==============
2019-01-30 12:27 - 2018-11-06 06:13 - 000183296 _____ () [File not signed] C:\PostgreSQL\9.6\bin\LIBPQ.dll
2019-01-30 12:29 - 2016-08-01 13:29 - 002264576 _____ () [File not signed] C:\PostgreSQL\9.6\bin\libxml2.dll
2018-12-05 15:38 - 2018-12-05 15:38 - 000018432 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000061952 _____ () [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCUtil_x64.dll
2017-03-06 12:31 - 2016-12-27 17:15 - 000261120 _____ () [File not signed] C:\Program Files\Altap Salamander\lang\czech.slg
2017-03-06 12:31 - 2016-12-27 17:15 - 000056832 _____ () [File not signed] C:\Program Files\Altap Salamander\plugins\zip\lang\czech.slg
2019-02-18 10:37 - 2019-02-18 10:37 - 046111232 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.dll
2019-02-18 10:37 - 2019-02-18 10:37 - 000019968 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 000113664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ctypes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000173568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_elementtree.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001792512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_hashlib.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000032256 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_multiprocessing.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000046080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_psutil_windows.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000047616 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_socket.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 002224640 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ssl.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026112 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_yappi.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000080896 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\bz2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 005752320 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\cello.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000014848 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\common.time34.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000007680 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\hashobjs_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000301568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\PIL._imaging.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000169472 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pyexpat.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001084416 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pysqlite2._sqlite.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000548864 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pythoncom27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137728 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pywintypes27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000010752 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\select.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\thumbnails_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000689664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\unicodedata.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000118784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\usb_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000128512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32api.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000438784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32com.shell.shell.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000011776 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32crypt.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000023040 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32event.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000149504 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32file.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000223232 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32gui.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000048128 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32inet.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000029696 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pdh.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000027648 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pipe.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000044032 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32process.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32profile.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000136192 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32security.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026624 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32ts.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000034304 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.conditional.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000038400 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.connectivity.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000073216 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.device_monitor.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000110080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.volumes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.winwrap.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001325056 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._controls_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001489408 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._core_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001007104 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._gdi_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000103424 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._html2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000916992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._misc_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001039872 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._windows_.pyd
2017-03-06 12:31 - 2016-12-27 16:36 - 000331776 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\plugins\zip\zip.spl
2017-03-06 12:31 - 2016-12-27 12:42 - 000605184 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\SALRTL9.DLL
2017-03-06 12:31 - 2016-12-27 16:36 - 000013312 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\utils\salextx64.dll
2017-01-21 17:11 - 2014-06-18 18:34 - 000095744 _____ (BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
2016-12-27 18:44 - 2010-02-12 11:23 - 000286720 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
2019-01-30 12:29 - 2016-01-12 12:14 - 001690490 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libiconv-2.dll
2019-01-30 12:29 - 2016-01-14 05:34 - 000685747 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libintl-8.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 000335872 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
2015-03-16 14:19 - 2015-03-16 14:19 - 000068096 _____ (Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
2017-12-25 22:50 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\Newtonsoft.Json.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000172544 _____ (ownCloud Inc.) [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll
2019-01-30 12:27 - 2018-11-06 06:19 - 000095232 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
2019-01-30 12:29 - 2018-11-06 06:16 - 006510592 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\python27.dll
2018-07-13 14:59 - 2018-07-13 14:59 - 001478144 _____ (SQLite Development Team) [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\sqlite3.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 001666048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\LIBEAY32.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 000352768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\SSLEAY32.dll
2015-01-11 14:01 - 2015-01-11 14:01 - 002595328 ____C (TODO: <Company name>) [File not signed] C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000088064 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCollect.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000200192 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCommon.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_net_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_adv_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_core_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_html_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-08 13:46 - 2019-01-21 13:25 - 000000914 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost nix.lo blava.nix.lo 2017.nix.lo www.nix.lo nasto.lo
192.168.10.236 ipa.xcoin.cz.local
127.0.0.1 localhost
2015-08-10 22:43 - 2018-07-04 14:44 - 000000728 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
720
192.168.137.1 jaguar.mshome.net # 2022 11 4 10 12 12 23 720
11 33 15 448
192.168.137.1 jaguar.mshome.net # 2022 9 1 19 15 34 12 72
43 4 834
192.168.137.1 jaguar.mshome.net # 2022 9 1 12 14 43 26 815
3 19 31 14 236
192.168.137.1 jaguar.mshome.net # 2022 8 5 26 19 41 23 99
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\App\instantclient_12_1;%ANT_HOME%\bin;C:\Program Files (x86)\Windows Live\Shared;C:\App\Putty;C:\Program Files\TortoiseSVN\bin;C:\ProgramData\ComposerSetup\bin;C:\Program Files\OpenVPN\bin;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Git\cmd;C:\Program Files\nodejs\;C:\Program Files (x86)\Yarn\bin\;C:\Program Files\Symfony;C:\App\Vagrant\bin
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\stoupa101\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\alone-constantine_00396941.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "VolPanel"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Serviio.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_ADF39C3253FCD0951CADB08AD48F1E6A"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "DellSystemDetect"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "ownCloud"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "LINE"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "vidnotifier.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{AED79715-9071-45CE-A15B-BCA2C3145B0E}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{ED3965BD-A9F4-416E-A570-AA2993E83F7D}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{C4E9C60B-0D86-45AF-9185-F633ED4AFFAA}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [TCP Query User{9130CEB5-A95E-4815-902A-225E68ECE868}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [UDP Query User{83D41350-F276-4416-92A3-D75FFC4F1DAC}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{3FF598BC-6EDF-491C-A16F-7C76B05F2194}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{0189E472-82D2-40E3-99D9-016815A775A1}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{05A6ED94-570F-4F8E-9F3B-3D8703EC86DA}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{E2E8D917-4951-46F2-AE61-54FC6AD41CA3}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{D159E14D-E272-4AB4-976B-F54D3341407E}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{03D8422D-3B41-4317-AA6C-937E4E9941CF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6C97802B-C84F-4A68-8F40-4C17B6781A1D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [UDP Query User{21B05366-5083-4E0D-9A31-F67A2BEB08C3}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{CD2DE159-21CA-4903-93A8-98A9D8344F06}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{313D31D1-AED9-47B2-928A-62DF13EB767D}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [TCP Query User{035D18FF-AD3A-4F12-95BC-DEA4A68386CD}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [UDP Query User{9CAF2426-168D-471B-8E78-ED8809F570FD}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [TCP Query User{9D8222B2-E320-44C5-B904-D8736282CBF5}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [UDP Query User{3E71AEFB-E6A7-4D11-87C3-E6A353BA4841}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [TCP Query User{3AE27575-E489-4E60-8929-85B525EE2861}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [{1E80A210-8044-41A0-B619-420F48213F05}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
FirewallRules: [{1B8381B1-434C-4D78-9F21-19103CE3DED7}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> Duodian Technology Co. Ltd.)
FirewallRules: [UDP Query User{B59FA5B4-5C9B-47EA-BFDC-5D1EB48C2A95}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{65E1E5B0-5905-4A2B-A6EF-3CCA4F442B77}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8A577A68-EF4C-4B37-8959-1075AC193D5F}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{AA0FD7B5-86A5-4079-9CB7-F1918081C089}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{66537DD6-3836-484E-83B4-3C1960B3A80D}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{D26DF449-7E7D-45D7-8218-FB9D344D6E4A}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{C42CCCFD-5A2F-4762-9EA4-580C6AA13EB9}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{0394D805-B2C0-4606-830E-5C1874D76EAF}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{2C010C0F-D6B6-4288-A777-32362EF79AC5}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{8ED5B660-DBA1-4FB3-BA21-CB470CC6AF24}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{62B563F1-CC26-4CE3-B630-6F2684BD703A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{63B89700-37DD-42AC-A313-555210C51490}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{C4ACE99C-35F8-4CE6-9E17-8C330D52EC3F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{24EBE80D-0E02-4E6C-986C-A56EC123FE97}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{46122640-547A-4D94-BFD1-31E242916013}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{11298C87-F067-45C4-9DE7-1F10A4E08487}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{BEA7F847-B76B-4F95-82CF-767E269C9481}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{9E8132CE-8A42-4B9D-B474-90164AD479EA}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{AD96E64E-8B4F-4928-A3FB-CD0D15AC03DA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F0961D36-F049-4760-98C2-F74C76D7A2D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BB9C8E13-D5EC-4103-889A-008CAD627C53}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{32C61771-5243-48E0-B957-DFEEA17F0BC7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DCFD23DA-30F2-45D7-86C5-73AFE8BCBFB5}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [TCP Query User{D6CC89DF-BFF1-41CA-A130-1654D152C211}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{0E1BD52D-C186-4F19-AD6A-1D8E284F0D0A}] => (Allow) LPort=1900
FirewallRules: [{8D1A7A99-29EC-407C-BAFC-AE3123183EF0}] => (Allow) LPort=2869
FirewallRules: [{2D035829-CC65-41B2-83F0-D904EA185E71}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74A67AB-F978-4107-95A7-6DC7A6D9A7E6}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{79A02E28-3398-4312-AD83-857B1F203C28}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B54CFC1-8959-4EB8-9570-493053FB07AA}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CE91CC95-5164-4E47-963F-ADA76648401B}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{718C2A72-55E1-4E25-B6D4-5335F1AEB3A2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3DA82C48-162B-4756-BC89-557E634A0104}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C33FBD14-646B-4853-B523-BFADCE4D4F66}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A14A3DED-C7A2-4DE4-980C-5A89ADC845D4}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85B03F01-3183-4A1C-BE76-4726F3774277}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{11C94AB5-9FB1-43E5-A2B1-01632CD50997}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6517E279-D99C-4921-A3A7-60DC6B5C35AA}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2FFDC26D-2FBC-440A-BC9B-DB9F43154763}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7BB2F27E-CFA6-4FF9-BFAE-758FDF46CDF4}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6DAEFCA6-2641-40D1-9046-4AFD363D3890}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EA19B13-731C-4F14-BC32-65F8F0249E5B}] => (Allow) C:\Program Files\SmartFTP Client\SmartFTP.exe (SmartSoft Ltd -> SmartSoft Ltd.)
FirewallRules: [{4E9037CA-D397-44F0-9D07-6B5DC4E663C0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C7C9BE88-E1A4-4794-85FF-38DEB25FD096}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1BEA15C9-4D3D-4EEB-AE8E-96C738A22CBF}] => (Allow) LPort=2799
FirewallRules: [{EA30E81D-78BD-4748-960A-E761FCCC8704}] => (Allow) LPort=2799
FirewallRules: [TCP Query User{49C5CE43-D028-45A8-87F6-057B4AE665F4}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [UDP Query User{BF26F24B-9DA2-4015-94DF-A668059184FA}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [{28297D88-F5B2-4774-8DE7-23887FD79077}] => (Allow) LPort=3935
FirewallRules: [{DEF86B07-42B5-42EC-8DF3-ACE555EDD80D}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{587F3212-448E-4658-82B0-E25094F813A8}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{9C11AB64-92DC-4705-A274-793E8DA50E21}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{252B33F3-84BA-4C64-8B60-20D411902F5A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{3FDD3611-49E8-49E3-AA0E-39E4F3C0A9BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{494ACF02-D119-4716-86AA-232354E8A7C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{FA07ED92-F6DC-4975-AAC4-976E55F6D529}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{4B53DF7B-FFB5-42A9-96BD-28E4A76A5BD2}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{D1E5EAA7-E511-45B0-A03F-A99B2403902A}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [UDP Query User{0A390E7F-A49A-46D6-9176-87D7886C0827}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [{B2DDC34C-EB27-4F01-AC6C-8BD4AF4981DE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/10/2019 09:30:18 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/10/2019 09:22:57 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/10/2019 03:19:12 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/09/2019 10:46:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (05/09/2019 10:45:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (05/09/2019 10:40:39 AM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellCommandPowerManager.exe
Message: Unable to query WMI for Power Setting changes.
Error: (System.Runtime.InteropServices.COMException) at SYS-WBE6
Oprávnění přidat, odebrat nebo konfigurovat software serveru během vzdálené relace Terminálové služby má pouze správce. Chcete-li instalovat nebo konfigurovat software na serveru, obraťte se na správce sítě. (Výjimka na základě hodnoty HRESULT: 0x80070668)
Error: (05/09/2019 10:35:25 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/07/2019 09:45:12 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (4752,G,0) Pokus o otevření souboru C:\Users\stoupa101\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
System errors:
=============
Error: (05/12/2019 12:13:29 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače SOPRANO,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{252F3261-7469-4B62-88D0-78C4B8DDA1A2}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.
Error: (05/12/2019 10:45:35 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/12/2019 10:45:34 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:19 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.
Windows Defender:
===================================
Date: 2019-03-16 16:13:04.563
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {54CB2C01-F67E-40AF-992E-6CBD70DFD3A6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 15:30:50.403
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {55AF482B-AB8D-48F7-9C22-584A65048F65}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 15:17:51.692
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1131608F-E7B9-485C-BEC6-27756C307371}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 09:22:34.379
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {01093D01-D05A-4E49-9452-5FAD98B90687}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 09:05:36.582
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5986D34A-6147-46B5-BEBB-86D7508D310F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2019-05-10 21:30:22.432
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.427
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.412
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.408
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.796
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.792
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.778
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.773
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Dell Inc. A27 10/09/2018
Motherboard: Dell Inc. 0WK2DM
Processor: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz
Percentage of memory in use: 45%
Total physical RAM: 16289.39 MB
Available physical RAM: 8828.39 MB
Total Virtual: 18721.39 MB
Available Virtual: 9355.36 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:230.28 GB) (Free:6 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1397.23 GB) (Free:196.52 GB) NTFS
\\?\Volume{a4b0d577-c769-4421-bc82-e4a1cd272aa1}\ (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.31 GB) NTFS
\\?\Volume{cec041b7-b60d-40dc-98cc-f1bfbbd37e08}\ (PBR Image) (Fixed) (Total:6.81 GB) (Free:0.31 GB) NTFS
\\?\Volume{a3f0ce99-0dd9-4934-859d-23b49badf502}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.43 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 1 (Size: 1397.2 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by stoupa101 (12-05-2019 18:16:15)
Running from C:\Users\stoupa101\Desktop
Windows 10 Home Version 1809 17763.475 (X64) (2019-03-14 12:22:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1044220912-1926083053-1571816506-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1044220912-1926083053-1571816506-503 - Limited - Disabled)
Guest (S-1-5-21-1044220912-1926083053-1571816506-501 - Limited - Disabled)
stoupa101 (S-1-5-21-1044220912-1926083053-1571816506-1001 - Administrator - Enabled) => C:\Users\stoupa101
WDAGUtilityAccount (S-1-5-21-1044220912-1926083053-1571816506-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\uTorrent) (Version: 3.5.5.45225 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{4E97C234-3F6C-4AA9-BFAF-0166F3050A68}) (Version: 4.4.11.2412 - Open Media LLC)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.171 - Adobe)
Altap Salamander 3.07 (x86) (HKLM-x32\...\Altap Salamander 3.07 (x86)) (Version: 3.07 - ALTAP)
Altap Salamander 3.08 (x64) (HKLM\...\Altap Salamander 3.08 (x64)) (Version: 3.08 - ALTAP)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{2f5f8f8e-11d9-4c64-b002-b60607ac3a29}) (Version: 20.10.1 - Intel Corporation)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{9F429DF7-F8DD-4980-9673-E6DACA012F6C}) (Version: 3.3 - Microsoft Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.4.2374 - AVAST Software)
Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Backup and Sync from Google (HKLM\...\{F9EEDE46-6409-4ECC-8AB6-7062464987A4}) (Version: 3.43.4275.9540 - Google, Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) HDC (11/17/2015 14.8.1.1043) (HKLM\...\C3968081C27DE5E6D26026C92CEE47C38A86ADE8) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) SCSIAdapter (11/17/2015 14.8.1.1043) (HKLM\...\A0A971B6BB8AC48E328E1BA665EEE9B5663C890C) (Version: 11/17/2015 14.8.1.1043 - Intel Corporation)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
CDisplayEx 1.10.29 (HKLM-x32\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
CmgMasterPrerequisites (HKLM-x32\...\{EE34FA4E-715A-46FA-9CAF-06E26AE4217D}) (Version: 1.4.1.777 - Credant Technologies Inc.) Hidden
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.2.1 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.4.0 - Dell Inc.)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{74117219-F4F7-4CB7-98A2-AAF9D6D9928C}) (Version: 3.4.8.14 - Broadcom Corporation)
Dell Data Protection | Client Security Framework (HKLM\...\{05FDD00D-1C45-44D1-AB3F-C24D45C39457}) (Version: 8.4.1.1717 - Dell, Inc.)
Dell Data Protection | Security Tools (HKLM-x32\...\{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.) Hidden
Dell Data Protection | Security Tools (HKLM-x32\...\InstallShield_{812AA6D3-5BEB-4577-88B1-00998B91AB41}) (Version: 1.4.1.777 - Dell, Inc.)
Dell Data Protection | Security Tools Authentication (HKLM\...\{0B72160B-9F67-47C0-858F-5A0074162148}) (Version: 1.3.1.433 - DigitalPersona, Inc.)
Dell Digital Delivery Services (HKLM-x32\...\{A646748A-7A2A-495F-9EE5-90B3646FEB7E}) (Version: 4.0.15.0 - Dell Inc.)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 6.2.24499 - Invincea, Inc.)
Dell SupportAssist (HKLM\...\{0309AC01-330F-494C-B27D-58E297E4674F}) (Version: 3.2.1.94 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.121 - ALPS ELECTRIC CO., LTD.)
Discord (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.18.1 (HKLM-x32\...\{9890DF1A-10E9-4236-94B1-1EFAA4099F13}) (Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
ECigStats (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ECigStats) (Version: - Evolv)
Enterprise Architect (HKLM-x32\...\{71A2AAC1-8DB5-40B4-AEF5-99C23238D37C}) (Version: 12.0.1210.14 - Sparx Systems)
EScribe Suite (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\EScribe) (Version: - Evolv)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DG0-EverQuest II) (Version: - Sony Online Entertainment)
EverQuest II (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\DGC-EverQuest II) (Version: 1.0.3.195 - Daybreak Game Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeStyler (HKLM-x32\...\FreeStyler 1024_is1) (Version: - Raphaël Wellekens)
Git version 2.20.1 (HKLM\...\Git_is1) (Version: 2.20.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
ICQ (verze 10.0.35724) (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\icq.desktop) (Version: 10.0.35724 - ICQ)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{E8EB0A84-C19C-4520-8671-56D4D4123D37}) (Version: 3.0.0.25 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1423.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.1.1043 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
JetBrains PhpStorm 2018.3.3 (HKLM-x32\...\PhpStorm 2018.3.3) (Version: 183.5153.36 - JetBrains s.r.o.)
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6005.4 - Waves Audio Ltd.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{F0DB2786-18C8-4B0D-9DC2-BA58856A2821}) (Version: 2.1.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{50b32652-69d2-4b93-9316-edcd12067b8b}) (Version: 14.0.23107.10 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 65.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 65.0.2 (x64 cs)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 65.0.2.6995 - Mozilla)
Mozilla Thunderbird 60.6.1 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.6.1 (x86 cs)) (Version: 60.6.1 - Mozilla)
Mp3tag v2.72 (HKLM-x32\...\Mp3tag) (Version: v2.72 - Florian Heidenreich)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MySQL Workbench 6.3 CE (HKLM\...\{E90FE565-E4A2-49E7-94D9-5B8025C972A1}) (Version: 6.3.10 - Oracle Corporation)
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Node.js (HKLM\...\{2909C9DF-9236-4733-8CE5-0BAFCFD78DBB}) (Version: 11.10.0 - Node.js Foundation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.0 - Duodian Technology Co. Ltd.)
Npcap 0.99-r9 (HKLM-x32\...\NpcapInst) (Version: 0.99-r9 - Nmap Project)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{1BCDE46C-168C-463A-81F4-B763F2D20537}) (Version: 3.0.08.52 - O2Micro International LTD.)
OpenVPN 2.4.0-I602 (HKLM\...\OpenVPN) (Version: 2.4.0-I602 - OpenVPN Technologies, Inc.)
Oracle VM VirtualBox 5.2.26 (HKLM\...\{28CBFD88-CBF3-482C-978E-DB437CCEDFC8}) (Version: 5.2.26 - Oracle Corporation)
ownCloud (HKLM-x32\...\ownCloud) (Version: 2.3.1.6824 - ownCloud)
pgAdmin 4 version 4.2 (HKLM-x32\...\pgAdmin 4v4_is1) (Version: 4.2 - The pgAdmin Development Team)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.13.0 - )
PostgreSQL 9.6 (HKLM\...\PostgreSQL 9.6) (Version: 9.6 - PostgreSQL Global Development Group)
Postman-win64-6.7.4 (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Postman) (Version: 6.7.4 - Postman)
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.1.312 - Jan Fiala)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6070 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{5B47029B-1E62-30FF-906E-694851C22782}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Sample Production Bit Checker x64 (HKLM\...\{1FFA19A6-D46D-4993-B39E-394EB92781A4}) (Version: 1.0.7.0 - Intel Corporation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Skipper (HKLM-x32\...\Skipper) (Version: 3.2.14.1430 - Inventic s.r.o.)
SmartFTP Client (HKLM\...\{3BE3116C-6A01-4E4A-992E-1E64CD5D3120}) (Version: 8.0.2234.0 - SmartSoft Ltd.)
Spotify (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
SQLite ODBC Driver (remove only) (HKLM-x32\...\SQLite ODBC Driver) (Version: - )
SQLite ODBC Driver for Win64 (remove only) (HKLM-x32\...\SQLite ODBC Driver for Win64) (Version: - )
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0067 - ST Microelectronics)
Star Realms version 1.13 (HKLM-x32\...\{F4DEB22F-AC61-4111-89B2-CF434A2BABFB}_is1) (Version: 1.13 - White Wizard Games)
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Symfony version 1.1.3 (HKLM\...\Symfony_is1) (Version: 1.1.3 - Symfony)
Synology Cloud Station (HKLM-x32\...\{102406C7-6BD4-47AA-A858-A54C7002E32E}) (Version: 3.1.3320 - Synology)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{791295AE-3B0A-3222-9E69-26C8C106E8D1}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
TortoiseSVN 1.9.4.27285 (64 bit) (HKLM\...\{62C19AB2-8485-4E18-A9D3-EFA612B8AE74}) (Version: 1.9.27285 - TortoiseSVN)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
USB Sound Blaster HD (HKLM-x32\...\{3BE06146-8ADC-47D7-9AD5-E5CABF1FF90C}) (Version: 1.0 - Creative Technology Limited)
Vagrant (HKLM-x32\...\{56BD544C-6113-42A4-B84C-1310DC50DFAF}) (Version: 2.2.4 - HashiCorp)
Viber (HKLM-x32\...\{D65DDA75-2C0A-46BA-807D-127BD5638490}) (Version: 6.0.1.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\{acc83058-83b0-41e2-b372-266672a1af16}) (Version: 6.0.1.5 - Viber Media Inc.)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vivaldi (HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\Vivaldi) (Version: 2.3.1440.61 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinSCP 5.15.1 (HKLM-x32\...\winscp3_is1) (Version: 5.15.1 - Martin Prikryl)
Wireshark 3.0.0 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.0 - The Wireshark developer community, hxxps://www.wireshark.org)
Yamaha Steinberg USB Driver (HKLM\...\{1AE66176-C480-4A76-AEFB-5E59942D134A}) (Version: 1.10.0 - Yamaha Corporation) Hidden
Yamaha Steinberg USB Driver (HKLM-x32\...\yUninstall_{2938B185-2D57-47B0-9FC8-C90A67BA9277}) (Version: 1.10.0 - Yamaha Corporation)
Yarn (HKLM-x32\...\{80411C38-7663-4EB4-B8D6-6A6973139536}) (Version: 1.13.0 - Yarn Contributors)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\stoupa101\AppData\Local\Vivaldi\Application\2.3.1440.61\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll (TODO: <Company name>) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{C78B614E-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll [2015-01-11] (TODO: <Company name>) [File not signed]
ShellIconOverlayIdentifiers: [SmartFTP Drop] -> {EA5A76F7-8138-4B53-B0F5-ADCC730CAFBD} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files (x86)\ownCloud\shellext\OCContextMenu_x64.dll [2017-01-26] (ownCloud Inc.) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2015-10-10] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [SmartFTP] -> {F87DED31-303F-4ED1-9BCE-D360FBC74E0A} => C:\Program Files\SmartFTP Client\ShellTools.dll [2016-07-25] (SmartSoft Ltd -> SmartSoft Ltd.)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2018-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-25] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2016-04-24] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\ContextMenu.dll [2015-01-11] () [File not signed]
ContextMenuHandlers1_S-1-5-21-1044220912-1926083053-1571816506-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Install Additional Tools for Node.js.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /d /c "C:\Program Files\nodejs\install_tools.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files\nodejs\nodevars.bat"
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\stoupa101\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a3a1d6b8109861c5\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=nckgahadagoaajjgafhacjanaoiihapd
==================== Loaded Modules (Whitelisted) ==============
2019-01-30 12:27 - 2018-11-06 06:13 - 000183296 _____ () [File not signed] C:\PostgreSQL\9.6\bin\LIBPQ.dll
2019-01-30 12:29 - 2016-08-01 13:29 - 002264576 _____ () [File not signed] C:\PostgreSQL\9.6\bin\libxml2.dll
2018-12-05 15:38 - 2018-12-05 15:38 - 000018432 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000061952 _____ () [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCUtil_x64.dll
2017-03-06 12:31 - 2016-12-27 17:15 - 000261120 _____ () [File not signed] C:\Program Files\Altap Salamander\lang\czech.slg
2017-03-06 12:31 - 2016-12-27 17:15 - 000056832 _____ () [File not signed] C:\Program Files\Altap Salamander\plugins\zip\lang\czech.slg
2019-02-18 10:37 - 2019-02-18 10:37 - 046111232 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.dll
2019-02-18 10:37 - 2019-02-18 10:37 - 000019968 _____ () [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\Logeto.Client.UWP.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 000113664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ctypes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000173568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_elementtree.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001792512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_hashlib.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000032256 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_multiprocessing.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000046080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_psutil_windows.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000047616 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_socket.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 002224640 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_ssl.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026112 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\_yappi.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000080896 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\bz2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 005752320 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\cello.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000014848 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\common.time34.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000007680 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\hashobjs_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000301568 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\PIL._imaging.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000169472 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pyexpat.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001084416 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pysqlite2._sqlite.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000548864 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pythoncom27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137728 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\pywintypes27.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000010752 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\select.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\thumbnails_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000689664 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\unicodedata.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000118784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\usb_ext.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000128512 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32api.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000438784 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32com.shell.shell.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000011776 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32crypt.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000023040 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32event.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000149504 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32file.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000223232 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32gui.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000048128 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32inet.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000029696 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pdh.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000027648 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32pipe.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000044032 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32process.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32profile.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000136192 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32security.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000026624 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\win32ts.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000034304 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.conditional.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000038400 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.connectivity.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000073216 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.device_monitor.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000110080 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.volumes.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000020480 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\windows.winwrap.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001325056 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._controls_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001489408 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._core_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001007104 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._gdi_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000103424 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._html2.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 000916992 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._misc_.pyd
2019-05-10 21:31 - 2019-05-10 21:31 - 001039872 _____ () [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wx._windows_.pyd
2017-03-06 12:31 - 2016-12-27 16:36 - 000331776 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\plugins\zip\zip.spl
2017-03-06 12:31 - 2016-12-27 12:42 - 000605184 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\SALRTL9.DLL
2017-03-06 12:31 - 2016-12-27 16:36 - 000013312 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\utils\salextx64.dll
2017-01-21 17:11 - 2014-06-18 18:34 - 000095744 _____ (BayHubTech/O2Micro ) [File not signed] C:\Windows\System32\SDIOAssist.exe
2016-12-27 18:44 - 2010-02-12 11:23 - 000286720 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
2019-01-30 12:29 - 2016-01-12 12:14 - 001690490 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libiconv-2.dll
2019-01-30 12:29 - 2016-01-14 05:34 - 000685747 _____ (Free Software Foundation) [File not signed] C:\PostgreSQL\9.6\bin\libintl-8.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 000335872 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
2015-03-16 14:19 - 2015-03-16 14:19 - 000068096 _____ (Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
2017-12-25 22:50 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\Newtonsoft.Json.dll
2017-01-26 03:31 - 2017-01-26 03:31 - 000172544 _____ (ownCloud Inc.) [File not signed] C:\Program Files (x86)\ownCloud\shellext\OCOverlays_x64.dll
2019-01-30 12:27 - 2018-11-06 06:19 - 000095232 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\pg_ctl.exe
2019-01-30 12:29 - 2018-11-06 06:16 - 006510592 _____ (PostgreSQL Global Development Group) [File not signed] C:\PostgreSQL\9.6\bin\postgres.exe
2019-05-10 21:31 - 2019-05-10 21:31 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\python27.dll
2018-07-13 14:59 - 2018-07-13 14:59 - 001478144 _____ (SQLite Development Team) [File not signed] C:\Program Files\WindowsApps\B158BDD8.Logeto_7.5.33.0_x64__kaaqb1ec1n05t\sqlite3.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 001666048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\LIBEAY32.dll
2019-01-30 12:29 - 2018-08-21 16:31 - 000352768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\PostgreSQL\9.6\bin\SSLEAY32.dll
2015-01-11 14:01 - 2015-01-11 14:01 - 002595328 ____C (TODO: <Company name>) [File not signed] C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000088064 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCollect.dll
2017-12-25 22:50 - 2017-11-07 17:37 - 000200192 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCommon.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_net_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxbase30u_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_adv_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_core_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_html_vc90_x64.dll
2019-05-10 21:31 - 2019-05-10 21:31 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\stoupa101\AppData\Local\Temp\_MEI9202\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-08 13:46 - 2019-01-21 13:25 - 000000914 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost nix.lo blava.nix.lo 2017.nix.lo www.nix.lo nasto.lo
192.168.10.236 ipa.xcoin.cz.local
127.0.0.1 localhost
2015-08-10 22:43 - 2018-07-04 14:44 - 000000728 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
720
192.168.137.1 jaguar.mshome.net # 2022 11 4 10 12 12 23 720
11 33 15 448
192.168.137.1 jaguar.mshome.net # 2022 9 1 19 15 34 12 72
43 4 834
192.168.137.1 jaguar.mshome.net # 2022 9 1 12 14 43 26 815
3 19 31 14 236
192.168.137.1 jaguar.mshome.net # 2022 8 5 26 19 41 23 99
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\App\instantclient_12_1;%ANT_HOME%\bin;C:\Program Files (x86)\Windows Live\Shared;C:\App\Putty;C:\Program Files\TortoiseSVN\bin;C:\ProgramData\ComposerSetup\bin;C:\Program Files\OpenVPN\bin;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Git\cmd;C:\Program Files\nodejs\;C:\Program Files (x86)\Yarn\bin\;C:\Program Files\Symfony;C:\App\Vagrant\bin
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\stoupa101\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\alone-constantine_00396941.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "VolPanel"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Serviio.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_ADF39C3253FCD0951CADB08AD48F1E6A"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "DellSystemDetect"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "ownCloud"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "LINE"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\StartupApproved\Run: => "vidnotifier.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{AED79715-9071-45CE-A15B-BCA2C3145B0E}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{ED3965BD-A9F4-416E-A570-AA2993E83F7D}C:\wamp\bin\php\php7.2.13\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.2.13\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{C4E9C60B-0D86-45AF-9185-F633ED4AFFAA}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [TCP Query User{9130CEB5-A95E-4815-902A-225E68ECE868}C:\program files\symfony\symfony.exe] => (Allow) C:\program files\symfony\symfony.exe () [File not signed]
FirewallRules: [UDP Query User{83D41350-F276-4416-92A3-D75FFC4F1DAC}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{3FF598BC-6EDF-491C-A16F-7C76B05F2194}C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe] => (Allow) C:\program files (x86)\pgadmin 4\v4\runtime\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{0189E472-82D2-40E3-99D9-016815A775A1}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [TCP Query User{05A6ED94-570F-4F8E-9F3B-3D8703EC86DA}C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe] => (Allow) C:\postgresql\9.6\pgadmin 4\bin\pgadmin4.exe (The pgAdmin Development Team) [File not signed]
FirewallRules: [UDP Query User{E2E8D917-4951-46F2-AE61-54FC6AD41CA3}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{D159E14D-E272-4AB4-976B-F54D3341407E}C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\bin\phpstorm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{03D8422D-3B41-4317-AA6C-937E4E9941CF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6C97802B-C84F-4A68-8F40-4C17B6781A1D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [UDP Query User{21B05366-5083-4E0D-9A31-F67A2BEB08C3}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{CD2DE159-21CA-4903-93A8-98A9D8344F06}C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.35\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{313D31D1-AED9-47B2-928A-62DF13EB767D}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [TCP Query User{035D18FF-AD3A-4F12-95BC-DEA4A68386CD}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe
FirewallRules: [UDP Query User{9CAF2426-168D-471B-8E78-ED8809F570FD}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [TCP Query User{9D8222B2-E320-44C5-B904-D8736282CBF5}C:\app\freestyler\freestylerx2.exe] => (Allow) C:\app\freestyler\freestylerx2.exe (Raphaël Wellekens) [File not signed]
FirewallRules: [UDP Query User{3E71AEFB-E6A7-4D11-87C3-E6A353BA4841}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [TCP Query User{3AE27575-E489-4E60-8929-85B525EE2861}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
FirewallRules: [{1E80A210-8044-41A0-B619-420F48213F05}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
FirewallRules: [{1B8381B1-434C-4D78-9F21-19103CE3DED7}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> Duodian Technology Co. Ltd.)
FirewallRules: [UDP Query User{B59FA5B4-5C9B-47EA-BFDC-5D1EB48C2A95}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{65E1E5B0-5905-4A2B-A6EF-3CCA4F442B77}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8A577A68-EF4C-4B37-8959-1075AC193D5F}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{AA0FD7B5-86A5-4079-9CB7-F1918081C089}C:\users\stoupa101\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\stoupa101\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{66537DD6-3836-484E-83B4-3C1960B3A80D}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{D26DF449-7E7D-45D7-8218-FB9D344D6E4A}C:\program files\altap salamander\salamand.exe] => (Allow) C:\program files\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{C42CCCFD-5A2F-4762-9EA4-580C6AA13EB9}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [TCP Query User{0394D805-B2C0-4606-830E-5C1874D76EAF}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe (ALTAP, spol. s r.o. -> ALTAP)
FirewallRules: [UDP Query User{2C010C0F-D6B6-4288-A777-32362EF79AC5}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{8ED5B660-DBA1-4FB3-BA21-CB470CC6AF24}C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe] => (Allow) C:\program files (x86)\jetbrains\phpstorm 10.0.3\bin\phpstorm.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{62B563F1-CC26-4CE3-B630-6F2684BD703A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{63B89700-37DD-42AC-A313-555210C51490}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{C4ACE99C-35F8-4CE6-9E17-8C330D52EC3F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{24EBE80D-0E02-4E6C-986C-A56EC123FE97}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{46122640-547A-4D94-BFD1-31E242916013}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{11298C87-F067-45C4-9DE7-1F10A4E08487}] => (Block) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{BEA7F847-B76B-4F95-82CF-767E269C9481}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{9E8132CE-8A42-4B9D-B474-90164AD479EA}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{AD96E64E-8B4F-4928-A3FB-CD0D15AC03DA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F0961D36-F049-4760-98C2-F74C76D7A2D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BB9C8E13-D5EC-4103-889A-008CAD627C53}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{32C61771-5243-48E0-B957-DFEEA17F0BC7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DCFD23DA-30F2-45D7-86C5-73AFE8BCBFB5}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [TCP Query User{D6CC89DF-BFF1-41CA-A130-1654D152C211}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{0E1BD52D-C186-4F19-AD6A-1D8E284F0D0A}] => (Allow) LPort=1900
FirewallRules: [{8D1A7A99-29EC-407C-BAFC-AE3123183EF0}] => (Allow) LPort=2869
FirewallRules: [{2D035829-CC65-41B2-83F0-D904EA185E71}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74A67AB-F978-4107-95A7-6DC7A6D9A7E6}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{79A02E28-3398-4312-AD83-857B1F203C28}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B54CFC1-8959-4EB8-9570-493053FB07AA}C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\stoupa101\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CE91CC95-5164-4E47-963F-ADA76648401B}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{718C2A72-55E1-4E25-B6D4-5335F1AEB3A2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3DA82C48-162B-4756-BC89-557E634A0104}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C33FBD14-646B-4853-B523-BFADCE4D4F66}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A14A3DED-C7A2-4DE4-980C-5A89ADC845D4}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85B03F01-3183-4A1C-BE76-4726F3774277}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{11C94AB5-9FB1-43E5-A2B1-01632CD50997}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6517E279-D99C-4921-A3A7-60DC6B5C35AA}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2FFDC26D-2FBC-440A-BC9B-DB9F43154763}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7BB2F27E-CFA6-4FF9-BFAE-758FDF46CDF4}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6DAEFCA6-2641-40D1-9046-4AFD363D3890}] => (Allow) C:\Users\stoupa101\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EA19B13-731C-4F14-BC32-65F8F0249E5B}] => (Allow) C:\Program Files\SmartFTP Client\SmartFTP.exe (SmartSoft Ltd -> SmartSoft Ltd.)
FirewallRules: [{4E9037CA-D397-44F0-9D07-6B5DC4E663C0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C7C9BE88-E1A4-4794-85FF-38DEB25FD096}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1BEA15C9-4D3D-4EEB-AE8E-96C738A22CBF}] => (Allow) LPort=2799
FirewallRules: [{EA30E81D-78BD-4748-960A-E761FCCC8704}] => (Allow) LPort=2799
FirewallRules: [TCP Query User{49C5CE43-D028-45A8-87F6-057B4AE665F4}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [UDP Query User{BF26F24B-9DA2-4015-94DF-A668059184FA}C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe] => (Allow) C:\program files\stylus studio x16 xml enterprise suite 64-bit\bin\struzzo.exe (IVI Technologies, Inc. -> Progress Software Corporation)
FirewallRules: [{28297D88-F5B2-4774-8DE7-23887FD79077}] => (Allow) LPort=3935
FirewallRules: [{DEF86B07-42B5-42EC-8DF3-ACE555EDD80D}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{587F3212-448E-4658-82B0-E25094F813A8}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{9C11AB64-92DC-4705-A274-793E8DA50E21}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{252B33F3-84BA-4C64-8B60-20D411902F5A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{3FDD3611-49E8-49E3-AA0E-39E4F3C0A9BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{494ACF02-D119-4716-86AA-232354E8A7C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{FA07ED92-F6DC-4975-AAC4-976E55F6D529}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [UDP Query User{4B53DF7B-FFB5-42A9-96BD-28E4A76A5BD2}C:\wamp\bin\php\php7.3.3\php-cgi.exe] => (Allow) C:\wamp\bin\php\php7.3.3\php-cgi.exe (The PHP Group) [File not signed]
FirewallRules: [TCP Query User{D1E5EAA7-E511-45B0-A03F-A99B2403902A}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [UDP Query User{0A390E7F-A49A-46D6-9176-87D7886C0827}C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe] => (Allow) C:\program files\jetbrains\phpstorm 2018.3.3\jre64\bin\java.exe
FirewallRules: [{B2DDC34C-EB27-4F01-AC6C-8BD4AF4981DE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/10/2019 09:30:18 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/10/2019 09:22:57 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/10/2019 03:19:12 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/09/2019 10:46:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (05/09/2019 10:45:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (05/09/2019 10:40:39 AM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellCommandPowerManager.exe
Message: Unable to query WMI for Power Setting changes.
Error: (System.Runtime.InteropServices.COMException) at SYS-WBE6
Oprávnění přidat, odebrat nebo konfigurovat software serveru během vzdálené relace Terminálové služby má pouze správce. Chcete-li instalovat nebo konfigurovat software na serveru, obraťte se na správce sítě. (Výjimka na základě hodnoty HRESULT: 0x80070668)
Error: (05/09/2019 10:35:25 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/07/2019 09:45:12 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (4752,G,0) Pokus o otevření souboru C:\Users\stoupa101\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
System errors:
=============
Error: (05/12/2019 12:13:29 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače SOPRANO,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{252F3261-7469-4B62-88D0-78C4B8DDA1A2}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.
Error: (05/12/2019 10:45:35 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/12/2019 10:45:34 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 05:07:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:20 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (05/11/2019 07:54:19 AM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.
Windows Defender:
===================================
Date: 2019-03-16 16:13:04.563
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {54CB2C01-F67E-40AF-992E-6CBD70DFD3A6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 15:30:50.403
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {55AF482B-AB8D-48F7-9C22-584A65048F65}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 15:17:51.692
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1131608F-E7B9-485C-BEC6-27756C307371}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 09:22:34.379
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {01093D01-D05A-4E49-9452-5FAD98B90687}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-16 09:05:36.582
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5986D34A-6147-46B5-BEBB-86D7508D310F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2019-05-10 21:30:22.432
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.427
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.412
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:30:22.408
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.796
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.792
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.778
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-05-10 21:23:01.773
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Dell Inc. A27 10/09/2018
Motherboard: Dell Inc. 0WK2DM
Processor: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz
Percentage of memory in use: 45%
Total physical RAM: 16289.39 MB
Available physical RAM: 8828.39 MB
Total Virtual: 18721.39 MB
Available Virtual: 9355.36 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:230.28 GB) (Free:6 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1397.23 GB) (Free:196.52 GB) NTFS
\\?\Volume{a4b0d577-c769-4421-bc82-e4a1cd272aa1}\ (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.31 GB) NTFS
\\?\Volume{cec041b7-b60d-40dc-98cc-f1bfbbd37e08}\ (PBR Image) (Fixed) (Total:6.81 GB) (Free:0.31 GB) NTFS
\\?\Volume{a3f0ce99-0dd9-4934-859d-23b49badf502}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.43 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 1 (Size: 1397.2 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt ============================
Re: Prosim o preventivku
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Kód: Vybrat vše
CloseProcesses:
CreateRestorePoint:
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
U4 npcap_wifi; no ImagePath
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
EmptyTemp:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosim o preventivku
Fix result of Farbar Recovery Scan Tool (x64) Version: 13-05.2019 01
Ran by stoupa101 (14-05-2019 23:05:01) Run:1
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
U4 npcap_wifi; no ImagePath
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
EmptyTemp:
*****************
Processes closed successfully.
Restore point was successfully created.
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll => https://www.virustotal.com/file/bffc595 ... 488870444/
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => value restored successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3138edec-3a64-11e7-846d-ecf4bb139676} => removed successfully
HKLM\Software\Classes\CLSID\{3138edec-3a64-11e7-846d-ecf4bb139676} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\WINDOWS\Tasks\DriverToolkit Autorun.job => moved successfully
"HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => removed successfully
HKLM\Software\Classes\CLSID\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => not found
"Firefox homepage" => removed successfully
"Firefox newtab" => removed successfully
C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com => path removed successfully
HKLM\System\CurrentControlSet\Services\npcap_wifi => removed successfully
npcap_wifi => service removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\WINDOWS\SysWOW64\MSIHANDLE => ":148" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":156" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":222" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":230" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":298" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":306" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":96" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56897435 B
Java, Flash, Steam htmlcache => 188869965 B
Windows/system/drivers => 1756960 B
Edge => 546561 B
Chrome => 263284548 B
Firefox => 25583477 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7218 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
stoupa101 => 93470998 B
RecycleBin => 2054626 B
EmptyTemp: => 612.9 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:06:15 ====
Ran by stoupa101 (14-05-2019 23:05:01) Run:1
Running from C:\Users\stoupa101\Desktop
Loaded Profiles: stoupa101 (Available Profiles: stoupa101)
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Dell\Dell Data Protection\Security Tools Authentication\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\...\MountPoints2: {3138edec-3a64-11e7-846d-ecf4bb139676} - "F:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> DefaultScope {E0723127-C7CC-4175-B469-FD7CDC8F3331} URL =
SearchScopes: HKU\S-1-5-21-1044220912-1926083053-1571816506-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hsp ... 4__yaie&p={searchTerms}
FF Homepage: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF NewTab: Mozilla\Firefox\Profiles\4jltx1yr.default -> hxxps://search.yahoo.com/yhs/web?hspart ... 0524__yaff
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
U4 npcap_wifi; no ImagePath
2019-05-10 21:30 - 2019-05-10 21:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-05 17:04 - 2019-05-05 17:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:148 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:156 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:222 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:230 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:298 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:306 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:96 [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
EmptyTemp:
*****************
Processes closed successfully.
Restore point was successfully created.
VirusTotal: C:\Users\stoupa101\AppData\Local\CloudStation\app\icon-overlay\10\x64\iconOverlay.dll => https://www.virustotal.com/file/bffc595 ... 488870444/
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => value restored successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3138edec-3a64-11e7-846d-ecf4bb139676} => removed successfully
HKLM\Software\Classes\CLSID\{3138edec-3a64-11e7-846d-ecf4bb139676} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\WINDOWS\Tasks\DriverToolkit Autorun.job => moved successfully
"HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1044220912-1926083053-1571816506-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => removed successfully
HKLM\Software\Classes\CLSID\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => not found
"Firefox homepage" => removed successfully
"Firefox newtab" => removed successfully
C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com => path removed successfully
HKLM\System\CurrentControlSet\Services\npcap_wifi => removed successfully
npcap_wifi => service removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\WINDOWS\SysWOW64\MSIHANDLE => ":148" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":156" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":222" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":230" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":298" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":306" ADS removed successfully
C:\WINDOWS\SysWOW64\MSIHANDLE => ":96" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56897435 B
Java, Flash, Steam htmlcache => 188869965 B
Windows/system/drivers => 1756960 B
Edge => 546561 B
Chrome => 263284548 B
Firefox => 25583477 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7218 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
stoupa101 => 93470998 B
RecycleBin => 2054626 B
EmptyTemp: => 612.9 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:06:15 ====
Re: Prosim o preventivku
Ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?