zpomalení po poslední aktualizaci win
Napsal: 05 pro 2017 17:54
prosím o kontrolu logu,
po poslední aktualizaci win se pc začal velmi zpomalovat. Zapnutí trvá i šest a více minut, přepínání mezi dvěma prohlížeči je i někdy na minuty.K výrazné změně došlo po poslední větší aktualizaci winu, která trvala skoro dvě hodiny.
Děkuji
Logfile of random's system information tool 1.16 (written by random/random)
Run by Stanislav Červenka at 2017-12-05 17:17:21
Microsoft Windows 10 Home
System drive C: has 434 GB (45%) free of 953 GB
Total RAM: 4019 MB (48% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:25, on 05.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0098)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Stanislav Červenka_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/?pc=ACTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Navitel Updater Auto Launcher] C:\Program Files (x86)\CNT\Navitel Navigator Update Center\NavitelUpdaterLauncher.exe
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Journaley] C:\ProgramData\SquirrelMachineInstalls\Journaley.exe --checkInstall
O4 - HKCU\..\Run: [RemoteFilesTrayIcon] "C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe" --hideUI
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Facebook Gameroom.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem19.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MxService - Maxthon International ltd. - C:\Program Files (x86)\Maxthon5\Bin\MxService.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Avast SecureLine (SecureLine) - Unknown owner - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11495 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2301115240320
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\ibtsiva.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe"
"C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Stanislav Červenka\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-3682584152-3882555258-4229192132-1001 -c 676 -s 743 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\WINDOWS\system32\ctfmon.exe
"C:\Program Files\Acer\Acer Quick Access\QALSvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
C:\OEM\Preload\FubTracking\FubTracking.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\Acer\Acer Quick Access\QAAgent.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe"
"C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.AppX368sbpk1kx658x0p332evjk2v0y02kxp.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\AVAST Software\SecureLine\SecureLine.exe" /nogui
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\taskhostw.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.96_none_2c40cc7f3876f2b7\TiWorker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40675.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x478
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Stanislav Červenka\Desktop\Programy\RSITx64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\ACC - C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe -auto
C:\WINDOWS\system32\tasks\ACCAgent - C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe
C:\WINDOWS\system32\tasks\ACCBackgroundApplication - C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
C:\WINDOWS\system32\tasks\AcerCloud - C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe task
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\App Explorer - %LOCALAPPDATA%\Host App Service\Engine\HostAppServiceUpdater.exe /LOGON
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\Avast SecureLine - C:\Program Files\AVAST Software\SecureLine\SecureLine.exe /nogui
C:\WINDOWS\system32\tasks\avast! SL Update - C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe
C:\WINDOWS\system32\tasks\BacKGroundAgent - C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task
C:\WINDOWS\system32\tasks\CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\FUBTrackingByPLD - "C:\OEM\Preload\FubTracking\FubTracking.exe"
C:\WINDOWS\system32\tasks\Maxthon5 Update - "C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe" -RunScheduledUpdate
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-3682584152-3882555258-4229192132-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Power Management - "C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1468542369 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\UbtFrameworkService - "C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{392A1487-5E86-4C4A-B9C6-D81A5DB65CBD} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults - %systemroot%\system32\MusNotification.exe LogonUpdateResults
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\addons.json
Amazon Assistant for Firefox - extension - abb@amazon.com
Czech (CZ) Language Pack - locale - langpack-cs@firefox.mozilla.org
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\extensions.json
Avast Online Security - webextension - wrc@avast.com -
Czech (CZ) Language Pack - locale - langpack-cs@firefox.mozilla.org -
Amazon Assistant for Firefox - webextension - abb@amazon.com -
Avast SafePrice - webextension - sp@avast.com -
Multi-process staged rollout - extension - e10srollout@mozilla.org -
Pocket - extension - firefox@getpocket.com -
Web Compat - extension - webcompat@mozilla.org -
Application Update Service Helper - extension - aushelper@mozilla.org -
Firefox Screenshots - extension - screenshots@mozilla.org -
Follow-on Search Telemetry - extension - followonsearch@mozilla.com -
Shield Recipe Client - extension - shield-recipe-client@mozilla.org -
Activity Stream - extension - activity-stream@mozilla.org -
Form Autofill - extension - formautofill@mozilla.org -
Photon onboarding - extension - onboarding@mozilla.org -
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} -
Disable Media WMF NV12 format - extension - disable-media-wmf-nv12@mozilla.org -
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\pluginreg.dat
Plugin - Shockwave Flash - 27.0.0.187 - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
=========Google Chrome=========
C:\Users\Stanislav Červenka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.381
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.296
Extension gpdjojdkbbmdfjfahjcgigfpmkopogic 1 Tlačítko Uložit 3.0.81
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.4
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6117.717.0.4
Extension pooljnboifbodgifngpppfklhifechoe 1 GeoProxy 1.5
Homepage:
default_search_provider.search_url:
C:\Users\Stanislav Červenka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-27 16404224]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-14 2631824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-11-18 253344]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteFilesTrayIcon"=C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2016-06-28 2134232]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2016-09-09 2418392]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2014-01-15 438888]
"Navitel Updater Auto Launcher"=C:\Program Files (x86)\CNT\Navitel Navigator Update Center\NavitelUpdaterLauncher.exe [2016-05-26 129536]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2016-07-11 225944]
"VirtualCloneDrive"=C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"Journaley"=C:\ProgramData\SquirrelMachineInstalls\Journaley.exe [2017-01-26 2647040]
C:\Users\Stanislav Červenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Facebook Gameroom.lnk - C:\Users\Stanislav Červenka\AppData\Local\Facebook\Games\FacebookGameroom.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-12-05 17:14:38 ----D---- C:\ProgramData\SWCUTemp
2017-12-02 00:50:03 ----D---- C:\ProgramData\Microsoft OneDrive
2017-12-02 00:27:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-02 00:13:13 ----D---- C:\ProgramData\USOShared
2017-12-02 00:08:09 ----SD---- C:\Users\Stanislav Červenka\AppData\Roaming\Microsoft
2017-12-02 00:05:30 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-12-02 00:05:08 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2017-12-02 00:05:08 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2017-12-02 00:03:49 ----AS---- C:\WINDOWS\bootstat.dat
2017-12-02 00:02:48 ----D---- C:\WINDOWS\Prefetch
2017-12-02 00:01:57 ----D---- C:\WINDOWS\system32\SleepStudy
2017-12-02 00:01:45 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-01 23:58:24 ----D---- C:\Windows.old
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2017-12-01 23:21:59 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-01 23:13:27 ----D---- C:\WINDOWS\system32\Microsoft
2017-12-01 23:13:27 ----D---- C:\WINDOWS\ServiceProfiles
2017-12-01 23:01:21 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-01 23:01:21 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-01 23:00:49 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-12-01 23:00:49 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-01 23:00:34 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-12-01 23:00:34 ----A---- C:\WINDOWS\system32\evr.dll
2017-12-01 23:00:33 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-01 23:00:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-12-01 23:00:31 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-12-01 23:00:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-12-01 23:00:26 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-01 23:00:24 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-01 23:00:23 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2017-12-01 23:00:23 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-01 23:00:22 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2017-12-01 23:00:22 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\msdtcVSp1res.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\explorer.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Spectrum.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provtool.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provhandlers.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provengine.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\d3d9.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\msvcrt.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\hal.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\winresume.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\winload.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\msdtcVSp1res.dll
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-12-01 22:59:38 ----A---- C:\WINDOWS\system32\acppage.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\SRH.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\wow64win.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\wow64.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\AcLayers.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AcGenral.dll
2017-12-01 22:59:32 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-01 22:59:32 ----A---- C:\WINDOWS\system32\mispace.dll
2017-12-01 22:59:31 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\services.exe
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-01 22:59:25 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-01 22:59:25 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-01 22:59:20 ----A---- C:\WINDOWS\system32\user32.dll
2017-12-01 22:59:20 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\FaceProcessorCore.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\FaceProcessor.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\drivers\urscx01000.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\BioIso.exe
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\ISM.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\InstallService.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\vac.exe
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-12-01 22:59:12 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\usocore.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\rdrleakdiag.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\winmde.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\runexehelper.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\rdrleakdiag.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\umpo.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\tzres.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\ci.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2017-12-01 22:01:27 ----D---- C:\Program Files\Reference Assemblies
2017-12-01 22:01:27 ----D---- C:\Program Files\MSBuild
2017-12-01 22:01:27 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-12-01 22:01:27 ----D---- C:\Program Files (x86)\MSBuild
2017-12-01 22:00:05 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-12-01 22:00:04 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-12-01 22:00:02 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2017-12-01 22:00:02 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-12-01 22:00:00 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2017-12-01 21:59:59 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-12-01 18:39:29 ----DC---- C:\WINDOWS\Panther
====== List of files/folders modified in the last 1 month ======
2017-12-05 17:17:24 ----D---- C:\Program Files\trend micro
2017-12-05 17:15:31 ----D---- C:\WINDOWS\system32\WDI
2017-12-05 17:15:05 ----D---- C:\WINDOWS\Temp
2017-12-05 17:14:38 ----HD---- C:\ProgramData
2017-12-05 17:13:36 ----D---- C:\WINDOWS\System32
2017-12-05 17:11:20 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-12-05 17:09:31 ----D---- C:\WINDOWS\system32\sru
2017-12-05 17:09:12 ----D---- C:\ProgramData\NVIDIA
2017-12-05 17:08:05 ----D---- C:\WINDOWS\system32\catroot2
2017-12-05 17:02:50 ----AD---- C:\faceBot_Extreme
2017-12-05 15:08:27 ----D---- C:\WINDOWS\rescache
2017-12-05 15:02:30 ----D---- C:\WINDOWS\Logs
2017-12-05 07:16:47 ----D---- C:\WINDOWS\system32\LogFiles
2017-12-05 07:15:59 ----RD---- C:\WINDOWS\Microsoft.NET
2017-12-05 07:12:27 ----RD---- C:\WINDOWS\assembly
2017-12-05 06:58:15 ----D---- C:\WINDOWS\system32\drivers
2017-12-04 19:27:34 ----D---- C:\ProgramData\CanonIJPLM
2017-12-04 16:29:37 ----D---- C:\WINDOWS\system32\NDF
2017-12-04 03:31:27 ----D---- C:\WINDOWS\DeliveryOptimization
2017-12-04 02:05:15 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\uTorrent
2017-12-03 20:43:43 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\vlc
2017-12-03 20:25:08 ----D---- C:\WINDOWS\AppReadiness
2017-12-03 20:24:41 ----HD---- C:\Program Files\WindowsApps
2017-12-03 17:45:08 ----D---- C:\WINDOWS\INF
2017-12-03 17:44:59 ----D---- C:\WINDOWS\debug
2017-12-03 02:56:53 ----D---- C:\Windows
2017-12-03 02:56:27 ----D---- C:\WINDOWS\system32\DriverStore
2017-12-03 02:54:44 ----D---- C:\WINDOWS\system32\config
2017-12-03 00:57:29 ----D---- C:\WINDOWS\system32\Tasks
2017-12-02 19:50:29 ----D---- C:\WINDOWS\system32\FxsTmp
2017-12-02 05:19:21 ----D---- C:\WINDOWS\WinSxS
2017-12-02 05:19:21 ----D---- C:\WINDOWS\SysWOW64
2017-12-02 05:19:01 ----D---- C:\WINDOWS\CbsTemp
2017-12-02 05:18:58 ----SHD---- C:\WINDOWS\Installer
2017-12-02 05:17:59 ----SHD---- C:\System Volume Information
2017-12-02 05:17:38 ----D---- C:\WINDOWS\system32\restore
2017-12-02 05:17:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-12-02 04:10:15 ----D---- C:\WINDOWS\appcompat
2017-12-02 00:44:37 ----D---- C:\Program Files\windows nt
2017-12-02 00:43:31 ----D---- C:\WINDOWS\SoftwareDistribution
2017-12-02 00:43:26 ----D---- C:\WINDOWS\Tasks
2017-12-02 00:40:44 ----D---- C:\WINDOWS\Registration
2017-12-02 00:39:24 ----SD---- C:\ProgramData\Microsoft
2017-12-02 00:39:20 ----D---- C:\WINDOWS\system32\wbem
2017-12-02 00:38:17 ----RSD---- C:\WINDOWS\media
2017-12-02 00:27:33 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2017-12-02 00:13:13 ----D---- C:\ProgramData\USOPrivate
2017-12-02 00:12:36 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-12-02 00:12:16 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-12-02 00:08:09 ----RD---- C:\Users
2017-12-02 00:07:29 ----SHD---- C:\Recovery
2017-12-02 00:07:26 ----D---- C:\WINDOWS\system32\Sysprep
2017-12-02 00:06:16 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-02 00:05:50 ----D---- C:\WINDOWS\system32\DAX2
2017-12-02 00:05:41 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-12-02 00:05:15 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2017-12-01 23:58:47 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2017-12-01 23:58:41 ----RSD---- C:\WINDOWS\Fonts
2017-12-01 23:58:41 ----D---- C:\WINDOWS\twain_32
2017-12-01 23:58:41 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-12-01 23:58:41 ----D---- C:\WINDOWS\system32\drivers\etc
2017-12-01 23:58:40 ----HD---- C:\WINDOWS\system32\WLANProfiles
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\GroupPolicy
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\drivers
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\zh-HK
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\STRING
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\spool
2017-12-01 23:58:38 ----D---- C:\WINDOWS\system32\Macromed
2017-12-01 23:58:38 ----D---- C:\WINDOWS\system32\en-US
2017-12-01 23:58:37 ----D---- C:\WINDOWS\oem
2017-12-01 23:58:37 ----D---- C:\WINDOWS\LiveKernelReports
2017-12-01 23:58:32 ----D---- C:\WINDOWS\Help
2017-12-01 23:58:28 ----RD---- C:\Program Files (x86)
2017-12-01 23:58:28 ----D---- C:\Program Files (x86)\Common Files
2017-12-01 23:58:27 ----RD---- C:\Program Files
2017-12-01 23:58:27 ----D---- C:\Program Files\Intel
2017-12-01 23:58:27 ----D---- C:\Program Files\Common Files\microsoft shared
2017-12-01 23:58:27 ----D---- C:\Program Files\Common Files
2017-12-01 23:58:27 ----AD---- C:\Program Files\UNP
2017-12-01 23:58:26 ----HD---- C:\WINDOWS\system32\GroupPolicy
2017-12-01 23:58:26 ----D---- C:\WINDOWS\system32\Recovery
2017-12-01 23:58:21 ----D---- C:\WINDOWS\Setup
2017-12-01 23:23:45 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2017-12-01 23:23:16 ----D---- C:\WINDOWS\system32\oobe
2017-12-01 23:20:55 ----D---- C:\Program Files (x86)\Windows Mail
2017-12-01 23:20:49 ----D---- C:\Program Files\Windows Mail
2017-12-01 23:20:45 ----D---- C:\Program Files\Realtek
2017-12-01 23:06:04 ----D---- C:\WINDOWS\TextInput
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\vi-VN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ur-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ug-CN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tt-RU
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tk-TM
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\te-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ta-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sw-KE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sq-AL
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\si-LK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\quz-PE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\prs-AF
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\pa-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\or-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\nn-NO
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ne-NP
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mt-MT
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ms-MY
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mr-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mn-MN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ml-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mk-MK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mi-NZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\lo-LA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\lb-LU
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ky-KG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kok-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kn-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\km-KH
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kk-KZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ka-GE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\is-IS
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\id-ID
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\hy-AM
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\gu-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\gd-GB
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ga-IE
2017-12-01 23:06:03 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\fil-PH
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\fa-IR
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\cy-GB
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bn-IN
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bn-BD
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\be-BY
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\as-IN
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\am-ET
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\af-ZA
2017-12-01 23:06:00 ----SD---- C:\WINDOWS\system32\F12
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\zu-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\yo-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\xh-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\wo-SN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\WinMetadata
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\vi-VN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ur-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ug-CN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tt-RU
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tn-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tk-TM
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ti-ET
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\te-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ta-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sw-KE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sq-AL
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\si-LK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\rw-RW
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\quz-PE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\prs-AF
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\pa-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\or-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\nso-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\nn-NO
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ne-NP
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mt-MT
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ms-MY
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mr-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mn-MN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ml-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mk-MK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mi-NZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\migration
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\lo-LA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\lb-LU
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ky-KG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kok-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kn-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\km-KH
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kk-KZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ka-GE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\is-IS
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ig-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\id-ID
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\hy-AM
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\gu-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\gd-GB
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ga-IE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\fil-PH
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\fa-IR
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\chr-CHER-US
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\Dism
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\cy-GB
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\Boot
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bn-IN
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bn-BD
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\be-BY
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\as-IN
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\appraiser
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\am-ET
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\af-ZA
2017-12-01 23:05:54 ----D---- C:\WINDOWS\ShellExperiences
2017-12-01 23:05:54 ----D---- C:\WINDOWS\Provisioning
2017-12-01 23:05:53 ----D---- C:\WINDOWS\apppatch
2017-12-01 23:05:53 ----D---- C:\Program Files\Windows Defender
2017-12-01 23:05:53 ----D---- C:\Program Files\internet explorer
2017-12-01 23:05:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-01 23:05:49 ----D---- C:\PerfLogs
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\winrm
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\WCN
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2017-12-01 22:35:58 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2017-12-01 22:35:58 ----D---- C:\WINDOWS\SYSWOW64\en
2017-12-01 22:35:58 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2017-12-01 22:35:57 ----D---- C:\WINDOWS\system32\winrm
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\WCN
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\slmgr
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\migwiz
2017-12-01 22:35:53 ----D---- C:\WINDOWS\system32\en
2017-12-01 22:35:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-12-01 22:35:51 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-12-01 22:35:51 ----D---- C:\WINDOWS\servicing
2017-12-01 22:35:49 ----D---- C:\WINDOWS\en-US
2017-12-01 22:35:48 ----D---- C:\Program Files\Windows Photo Viewer
2017-12-01 22:35:48 ----D---- C:\Program Files\Windows Media Player
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Media Player
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Defender
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\MUI
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-12-01 22:01:31 ----D---- C:\WINDOWS\system32\MUI
2017-12-01 17:23:50 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-01 17:23:49 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-11-20 23:34:08 ----D---- C:\WINDOWS\system32\MRT
2017-11-20 23:28:57 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-20 23:28:38 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-11-16 22:53:26 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
po poslední aktualizaci win se pc začal velmi zpomalovat. Zapnutí trvá i šest a více minut, přepínání mezi dvěma prohlížeči je i někdy na minuty.K výrazné změně došlo po poslední větší aktualizaci winu, která trvala skoro dvě hodiny.
Děkuji
Logfile of random's system information tool 1.16 (written by random/random)
Run by Stanislav Červenka at 2017-12-05 17:17:21
Microsoft Windows 10 Home
System drive C: has 434 GB (45%) free of 953 GB
Total RAM: 4019 MB (48% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:25, on 05.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0098)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Stanislav Červenka_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/?pc=ACTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Navitel Updater Auto Launcher] C:\Program Files (x86)\CNT\Navitel Navigator Update Center\NavitelUpdaterLauncher.exe
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Journaley] C:\ProgramData\SquirrelMachineInstalls\Journaley.exe --checkInstall
O4 - HKCU\..\Run: [RemoteFilesTrayIcon] "C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe" --hideUI
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Facebook Gameroom.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem19.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MxService - Maxthon International ltd. - C:\Program Files (x86)\Maxthon5\Bin\MxService.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Avast SecureLine (SecureLine) - Unknown owner - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11495 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2301115240320
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\ibtsiva.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe"
"C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Stanislav Červenka\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-3682584152-3882555258-4229192132-1001 -c 676 -s 743 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\WINDOWS\system32\ctfmon.exe
"C:\Program Files\Acer\Acer Quick Access\QALSvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
C:\OEM\Preload\FubTracking\FubTracking.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\Acer\Acer Quick Access\QAAgent.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe"
"C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.AppX368sbpk1kx658x0p332evjk2v0y02kxp.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\AVAST Software\SecureLine\SecureLine.exe" /nogui
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\taskhostw.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.96_none_2c40cc7f3876f2b7\TiWorker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40675.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x478
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Stanislav Červenka\Desktop\Programy\RSITx64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\ACC - C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe -auto
C:\WINDOWS\system32\tasks\ACCAgent - C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe
C:\WINDOWS\system32\tasks\ACCBackgroundApplication - C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
C:\WINDOWS\system32\tasks\AcerCloud - C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe task
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\App Explorer - %LOCALAPPDATA%\Host App Service\Engine\HostAppServiceUpdater.exe /LOGON
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\Avast SecureLine - C:\Program Files\AVAST Software\SecureLine\SecureLine.exe /nogui
C:\WINDOWS\system32\tasks\avast! SL Update - C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe
C:\WINDOWS\system32\tasks\BacKGroundAgent - C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task
C:\WINDOWS\system32\tasks\CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\FUBTrackingByPLD - "C:\OEM\Preload\FubTracking\FubTracking.exe"
C:\WINDOWS\system32\tasks\Maxthon5 Update - "C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe" -RunScheduledUpdate
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-3682584152-3882555258-4229192132-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Power Management - "C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1468542369 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\UbtFrameworkService - "C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{392A1487-5E86-4C4A-B9C6-D81A5DB65CBD} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults - %systemroot%\system32\MusNotification.exe LogonUpdateResults
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\addons.json
Amazon Assistant for Firefox - extension - abb@amazon.com
Czech (CZ) Language Pack - locale - langpack-cs@firefox.mozilla.org
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\extensions.json
Avast Online Security - webextension - wrc@avast.com -
Czech (CZ) Language Pack - locale - langpack-cs@firefox.mozilla.org -
Amazon Assistant for Firefox - webextension - abb@amazon.com -
Avast SafePrice - webextension - sp@avast.com -
Multi-process staged rollout - extension - e10srollout@mozilla.org -
Pocket - extension - firefox@getpocket.com -
Web Compat - extension - webcompat@mozilla.org -
Application Update Service Helper - extension - aushelper@mozilla.org -
Firefox Screenshots - extension - screenshots@mozilla.org -
Follow-on Search Telemetry - extension - followonsearch@mozilla.com -
Shield Recipe Client - extension - shield-recipe-client@mozilla.org -
Activity Stream - extension - activity-stream@mozilla.org -
Form Autofill - extension - formautofill@mozilla.org -
Photon onboarding - extension - onboarding@mozilla.org -
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} -
Disable Media WMF NV12 format - extension - disable-media-wmf-nv12@mozilla.org -
C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla\Firefox\Profiles\h0iwq3fk.default\pluginreg.dat
Plugin - Shockwave Flash - 27.0.0.187 - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
=========Google Chrome=========
C:\Users\Stanislav Červenka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.381
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.296
Extension gpdjojdkbbmdfjfahjcgigfpmkopogic 1 Tlačítko Uložit 3.0.81
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.4
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6117.717.0.4
Extension pooljnboifbodgifngpppfklhifechoe 1 GeoProxy 1.5
Homepage:
default_search_provider.search_url:
C:\Users\Stanislav Červenka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{97E9E8D4-2F5D-4229-B3A6-0A98D5E6E723}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-27 16404224]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-14 2631824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-11-18 253344]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteFilesTrayIcon"=C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2016-06-28 2134232]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2016-09-09 2418392]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2014-01-15 438888]
"Navitel Updater Auto Launcher"=C:\Program Files (x86)\CNT\Navitel Navigator Update Center\NavitelUpdaterLauncher.exe [2016-05-26 129536]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2016-07-11 225944]
"VirtualCloneDrive"=C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"Journaley"=C:\ProgramData\SquirrelMachineInstalls\Journaley.exe [2017-01-26 2647040]
C:\Users\Stanislav Červenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Facebook Gameroom.lnk - C:\Users\Stanislav Červenka\AppData\Local\Facebook\Games\FacebookGameroom.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-12-05 17:14:38 ----D---- C:\ProgramData\SWCUTemp
2017-12-02 00:50:03 ----D---- C:\ProgramData\Microsoft OneDrive
2017-12-02 00:27:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-02 00:13:13 ----D---- C:\ProgramData\USOShared
2017-12-02 00:08:09 ----SD---- C:\Users\Stanislav Červenka\AppData\Roaming\Microsoft
2017-12-02 00:05:30 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-12-02 00:05:08 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2017-12-02 00:05:08 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2017-12-02 00:03:49 ----AS---- C:\WINDOWS\bootstat.dat
2017-12-02 00:02:48 ----D---- C:\WINDOWS\Prefetch
2017-12-02 00:01:57 ----D---- C:\WINDOWS\system32\SleepStudy
2017-12-02 00:01:45 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-01 23:58:24 ----D---- C:\Windows.old
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2017-12-01 23:23:06 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2017-12-01 23:21:59 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-01 23:13:27 ----D---- C:\WINDOWS\system32\Microsoft
2017-12-01 23:13:27 ----D---- C:\WINDOWS\ServiceProfiles
2017-12-01 23:01:21 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-01 23:01:21 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-01 23:00:49 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-12-01 23:00:49 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-12-01 23:00:48 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-12-01 23:00:47 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-01 23:00:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-01 23:00:34 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-12-01 23:00:34 ----A---- C:\WINDOWS\system32\evr.dll
2017-12-01 23:00:33 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-01 23:00:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-01 23:00:32 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-12-01 23:00:31 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-01 23:00:29 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-12-01 23:00:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-01 23:00:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-12-01 23:00:26 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-01 23:00:24 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-01 23:00:23 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2017-12-01 23:00:23 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-01 23:00:22 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2017-12-01 23:00:22 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2017-12-01 23:00:18 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2017-12-01 23:00:17 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-01 23:00:16 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-01 22:59:53 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-12-01 22:59:52 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\msdtcVSp1res.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-12-01 22:59:51 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-12-01 22:59:50 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2017-12-01 22:59:49 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-12-01 22:59:48 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2017-12-01 22:59:47 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-01 22:59:46 ----A---- C:\WINDOWS\explorer.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\Spectrum.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provtool.exe
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provhandlers.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\provengine.dll
2017-12-01 22:59:45 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-01 22:59:44 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-12-01 22:59:43 ----A---- C:\WINDOWS\system32\d3d9.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\msvcrt.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-01 22:59:42 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\hal.dll
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-12-01 22:59:41 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\winresume.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\winload.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\msdtcVSp1res.dll
2017-12-01 22:59:40 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-01 22:59:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-12-01 22:59:38 ----A---- C:\WINDOWS\system32\acppage.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\SRH.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-01 22:59:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\wow64win.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-12-01 22:59:35 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\wow64.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-01 22:59:34 ----A---- C:\WINDOWS\system32\AcLayers.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-01 22:59:33 ----A---- C:\WINDOWS\system32\AcGenral.dll
2017-12-01 22:59:32 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-01 22:59:32 ----A---- C:\WINDOWS\system32\mispace.dll
2017-12-01 22:59:31 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\services.exe
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-01 22:59:30 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-01 22:59:25 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-01 22:59:25 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-01 22:59:20 ----A---- C:\WINDOWS\system32\user32.dll
2017-12-01 22:59:20 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\FaceProcessorCore.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\FaceProcessor.dll
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\drivers\urscx01000.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-12-01 22:59:19 ----A---- C:\WINDOWS\system32\BioIso.exe
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\ISM.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\InstallService.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-12-01 22:59:18 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-12-01 22:59:17 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-12-01 22:59:16 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2017-12-01 22:59:15 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\vac.exe
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-12-01 22:59:14 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-12-01 22:59:13 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-12-01 22:59:12 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\usocore.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-01 22:59:11 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\SYSWOW64\rdrleakdiag.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\winmde.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\runexehelper.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\rdrleakdiag.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-12-01 22:59:10 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\umpo.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\tzres.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-12-01 22:59:09 ----A---- C:\WINDOWS\system32\ci.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2017-12-01 22:59:08 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2017-12-01 22:59:07 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2017-12-01 22:59:06 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-12-01 22:59:05 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-12-01 22:59:04 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2017-12-01 22:01:27 ----D---- C:\Program Files\Reference Assemblies
2017-12-01 22:01:27 ----D---- C:\Program Files\MSBuild
2017-12-01 22:01:27 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-12-01 22:01:27 ----D---- C:\Program Files (x86)\MSBuild
2017-12-01 22:00:05 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-12-01 22:00:04 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-12-01 22:00:02 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2017-12-01 22:00:02 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-12-01 22:00:00 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2017-12-01 21:59:59 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-12-01 18:39:29 ----DC---- C:\WINDOWS\Panther
====== List of files/folders modified in the last 1 month ======
2017-12-05 17:17:24 ----D---- C:\Program Files\trend micro
2017-12-05 17:15:31 ----D---- C:\WINDOWS\system32\WDI
2017-12-05 17:15:05 ----D---- C:\WINDOWS\Temp
2017-12-05 17:14:38 ----HD---- C:\ProgramData
2017-12-05 17:13:36 ----D---- C:\WINDOWS\System32
2017-12-05 17:11:20 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-12-05 17:09:31 ----D---- C:\WINDOWS\system32\sru
2017-12-05 17:09:12 ----D---- C:\ProgramData\NVIDIA
2017-12-05 17:08:05 ----D---- C:\WINDOWS\system32\catroot2
2017-12-05 17:02:50 ----AD---- C:\faceBot_Extreme
2017-12-05 15:08:27 ----D---- C:\WINDOWS\rescache
2017-12-05 15:02:30 ----D---- C:\WINDOWS\Logs
2017-12-05 07:16:47 ----D---- C:\WINDOWS\system32\LogFiles
2017-12-05 07:15:59 ----RD---- C:\WINDOWS\Microsoft.NET
2017-12-05 07:12:27 ----RD---- C:\WINDOWS\assembly
2017-12-05 06:58:15 ----D---- C:\WINDOWS\system32\drivers
2017-12-04 19:27:34 ----D---- C:\ProgramData\CanonIJPLM
2017-12-04 16:29:37 ----D---- C:\WINDOWS\system32\NDF
2017-12-04 03:31:27 ----D---- C:\WINDOWS\DeliveryOptimization
2017-12-04 02:05:15 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\uTorrent
2017-12-03 20:43:43 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\vlc
2017-12-03 20:25:08 ----D---- C:\WINDOWS\AppReadiness
2017-12-03 20:24:41 ----HD---- C:\Program Files\WindowsApps
2017-12-03 17:45:08 ----D---- C:\WINDOWS\INF
2017-12-03 17:44:59 ----D---- C:\WINDOWS\debug
2017-12-03 02:56:53 ----D---- C:\Windows
2017-12-03 02:56:27 ----D---- C:\WINDOWS\system32\DriverStore
2017-12-03 02:54:44 ----D---- C:\WINDOWS\system32\config
2017-12-03 00:57:29 ----D---- C:\WINDOWS\system32\Tasks
2017-12-02 19:50:29 ----D---- C:\WINDOWS\system32\FxsTmp
2017-12-02 05:19:21 ----D---- C:\WINDOWS\WinSxS
2017-12-02 05:19:21 ----D---- C:\WINDOWS\SysWOW64
2017-12-02 05:19:01 ----D---- C:\WINDOWS\CbsTemp
2017-12-02 05:18:58 ----SHD---- C:\WINDOWS\Installer
2017-12-02 05:17:59 ----SHD---- C:\System Volume Information
2017-12-02 05:17:38 ----D---- C:\WINDOWS\system32\restore
2017-12-02 05:17:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-12-02 04:10:15 ----D---- C:\WINDOWS\appcompat
2017-12-02 00:44:37 ----D---- C:\Program Files\windows nt
2017-12-02 00:43:31 ----D---- C:\WINDOWS\SoftwareDistribution
2017-12-02 00:43:26 ----D---- C:\WINDOWS\Tasks
2017-12-02 00:40:44 ----D---- C:\WINDOWS\Registration
2017-12-02 00:39:24 ----SD---- C:\ProgramData\Microsoft
2017-12-02 00:39:20 ----D---- C:\WINDOWS\system32\wbem
2017-12-02 00:38:17 ----RSD---- C:\WINDOWS\media
2017-12-02 00:27:33 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2017-12-02 00:13:13 ----D---- C:\ProgramData\USOPrivate
2017-12-02 00:12:36 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-12-02 00:12:16 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-12-02 00:08:09 ----RD---- C:\Users
2017-12-02 00:07:29 ----SHD---- C:\Recovery
2017-12-02 00:07:26 ----D---- C:\WINDOWS\system32\Sysprep
2017-12-02 00:06:16 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-02 00:05:50 ----D---- C:\WINDOWS\system32\DAX2
2017-12-02 00:05:41 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-12-02 00:05:15 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2017-12-01 23:58:47 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2017-12-01 23:58:41 ----RSD---- C:\WINDOWS\Fonts
2017-12-01 23:58:41 ----D---- C:\WINDOWS\twain_32
2017-12-01 23:58:41 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-12-01 23:58:41 ----D---- C:\WINDOWS\system32\drivers\etc
2017-12-01 23:58:40 ----HD---- C:\WINDOWS\system32\WLANProfiles
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\GroupPolicy
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-12-01 23:58:40 ----D---- C:\WINDOWS\SYSWOW64\drivers
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\zh-HK
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\STRING
2017-12-01 23:58:40 ----D---- C:\WINDOWS\system32\spool
2017-12-01 23:58:38 ----D---- C:\WINDOWS\system32\Macromed
2017-12-01 23:58:38 ----D---- C:\WINDOWS\system32\en-US
2017-12-01 23:58:37 ----D---- C:\WINDOWS\oem
2017-12-01 23:58:37 ----D---- C:\WINDOWS\LiveKernelReports
2017-12-01 23:58:32 ----D---- C:\WINDOWS\Help
2017-12-01 23:58:28 ----RD---- C:\Program Files (x86)
2017-12-01 23:58:28 ----D---- C:\Program Files (x86)\Common Files
2017-12-01 23:58:27 ----RD---- C:\Program Files
2017-12-01 23:58:27 ----D---- C:\Program Files\Intel
2017-12-01 23:58:27 ----D---- C:\Program Files\Common Files\microsoft shared
2017-12-01 23:58:27 ----D---- C:\Program Files\Common Files
2017-12-01 23:58:27 ----AD---- C:\Program Files\UNP
2017-12-01 23:58:26 ----HD---- C:\WINDOWS\system32\GroupPolicy
2017-12-01 23:58:26 ----D---- C:\WINDOWS\system32\Recovery
2017-12-01 23:58:21 ----D---- C:\WINDOWS\Setup
2017-12-01 23:23:45 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2017-12-01 23:23:16 ----D---- C:\WINDOWS\system32\oobe
2017-12-01 23:20:55 ----D---- C:\Program Files (x86)\Windows Mail
2017-12-01 23:20:49 ----D---- C:\Program Files\Windows Mail
2017-12-01 23:20:45 ----D---- C:\Program Files\Realtek
2017-12-01 23:06:04 ----D---- C:\WINDOWS\TextInput
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\vi-VN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ur-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ug-CN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tt-RU
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tk-TM
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\te-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ta-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sw-KE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sq-AL
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\si-LK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\quz-PE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\prs-AF
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\pa-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\or-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\nn-NO
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ne-NP
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mt-MT
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ms-MY
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mr-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mn-MN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ml-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mk-MK
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\mi-NZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\lo-LA
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\lb-LU
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ky-KG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kok-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kn-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\km-KH
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\kk-KZ
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ka-GE
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\is-IS
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\id-ID
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\hy-AM
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\gu-IN
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\gd-GB
2017-12-01 23:06:04 ----D---- C:\WINDOWS\SYSWOW64\ga-IE
2017-12-01 23:06:03 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\fil-PH
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\fa-IR
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\cy-GB
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bn-IN
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\bn-BD
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\be-BY
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\as-IN
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\am-ET
2017-12-01 23:06:03 ----D---- C:\WINDOWS\SYSWOW64\af-ZA
2017-12-01 23:06:00 ----SD---- C:\WINDOWS\system32\F12
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\zu-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\yo-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\xh-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\wo-SN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\WinMetadata
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\vi-VN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ur-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ug-CN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tt-RU
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tn-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tk-TM
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ti-ET
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\te-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ta-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sw-KE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sq-AL
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\si-LK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\rw-RW
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\quz-PE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\prs-AF
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\pa-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\or-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\nso-ZA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\nn-NO
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ne-NP
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mt-MT
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ms-MY
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mr-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mn-MN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ml-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mk-MK
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\mi-NZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\migration
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\lo-LA
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\lb-LU
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ky-KG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kok-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kn-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\km-KH
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\kk-KZ
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ka-GE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\is-IS
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ig-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\id-ID
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\hy-AM
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\gu-IN
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\gd-GB
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\ga-IE
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\fil-PH
2017-12-01 23:06:00 ----D---- C:\WINDOWS\system32\fa-IR
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\chr-CHER-US
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\Dism
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\cy-GB
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\Boot
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bn-IN
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\bn-BD
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\be-BY
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\as-IN
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\appraiser
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\am-ET
2017-12-01 23:05:59 ----D---- C:\WINDOWS\system32\af-ZA
2017-12-01 23:05:54 ----D---- C:\WINDOWS\ShellExperiences
2017-12-01 23:05:54 ----D---- C:\WINDOWS\Provisioning
2017-12-01 23:05:53 ----D---- C:\WINDOWS\apppatch
2017-12-01 23:05:53 ----D---- C:\Program Files\Windows Defender
2017-12-01 23:05:53 ----D---- C:\Program Files\internet explorer
2017-12-01 23:05:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-01 23:05:49 ----D---- C:\PerfLogs
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\winrm
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\WCN
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2017-12-01 22:36:02 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2017-12-01 22:35:58 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2017-12-01 22:35:58 ----D---- C:\WINDOWS\SYSWOW64\en
2017-12-01 22:35:58 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2017-12-01 22:35:57 ----D---- C:\WINDOWS\system32\winrm
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\WCN
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\slmgr
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-12-01 22:35:56 ----D---- C:\WINDOWS\system32\migwiz
2017-12-01 22:35:53 ----D---- C:\WINDOWS\system32\en
2017-12-01 22:35:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-12-01 22:35:51 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-12-01 22:35:51 ----D---- C:\WINDOWS\servicing
2017-12-01 22:35:49 ----D---- C:\WINDOWS\en-US
2017-12-01 22:35:48 ----D---- C:\Program Files\Windows Photo Viewer
2017-12-01 22:35:48 ----D---- C:\Program Files\Windows Media Player
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Media Player
2017-12-01 22:35:48 ----D---- C:\Program Files (x86)\Windows Defender
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\MUI
2017-12-01 22:01:31 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-12-01 22:01:31 ----D---- C:\WINDOWS\system32\MUI
2017-12-01 17:23:50 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-01 17:23:49 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-11-20 23:34:08 ----D---- C:\WINDOWS\system32\MRT
2017-11-20 23:28:57 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-20 23:28:38 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-11-16 22:53:26 ----D---- C:\Users\Stanislav Červenka\AppData\Roaming\Mozilla
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
