Prosím o kontrolu

Zpráva

artmle9 · #1 Příspěvek od **artmle9** » 23 dub 2016 22:05

Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2016-04-23 23:02:32
Microsoft Windows 10 Pro
System drive C: has 88 GB (58%) free of 152 GB
Total RAM: 3071 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:40, on 23.4.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Users\Martin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Martin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [HP Deskjet 4510 series (NET)] "C:\Program Files\HP\HP Deskjet 4510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN57A411GC05XM:NW" -scfn "HP Deskjet 4510 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Martin\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Martin\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9723 bytes

======Listing Processes======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-dfff033e-70e7-4a45-9d06-377048ed34d6 -SystemEventPortName:HostProcess-5e0dd0b8-5d87-4e95-b164-2b8bce43982d -IoCancelEventPortName:HostProcess-5e32639e-22cf-4c3d-8d2b-81664272a404 -NonStateChangingEventPortName:HostProcess-29b90020-272b-4b5d-af61-f5beefe55bf1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:eee73550-41ee-4ed8-945c-3a6e53e25e59 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
dashost.exe {94c65bf7-c3bf-4dca-b9b00df2b124d4d1}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
atieclxx
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Users\Martin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\HP\HP Deskjet 4510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN57A411GC05XM:NW" -scfn "HP Deskjet 4510 series (NET)" -AutoStart 1
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.168_none_76587b40265ca57e\TiWorker.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 35B9531D-F90A-5CF5-A08A-A226FCFA803C -Reinvoke
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Users\Martin\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK

=========Mozilla firefox=========

ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\26sg8ooq.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL

C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-02-09 228552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-03-15 2348848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-02-09 163016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-03 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-03-15 1741104]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-03 172640]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Martin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-03-11 551104]
"HP Deskjet 4510 series (NET)"=C:\Program Files\HP\HP Deskjet 4510 series\Bin\ScanToPCActivationApp.exe [2014-03-06 3487240]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-03-11 8686296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Martin\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-04-24 01:40:35 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-24 01:40:35 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-24 01:40:34 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-04-24 01:40:31 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-24 01:40:31 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-04-24 01:40:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-24 01:40:31 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-24 01:40:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-24 01:40:29 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-24 01:40:29 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-24 01:40:29 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-24 01:40:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-24 01:40:28 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-24 01:40:28 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-04-24 01:40:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-24 01:40:26 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-24 01:40:25 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-24 01:40:25 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-24 01:40:25 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-24 01:40:24 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-24 01:40:24 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-24 01:40:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-04-24 01:40:22 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-24 01:40:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-04-24 01:40:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-24 01:40:21 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-24 01:40:20 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-04-24 01:40:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-04-24 01:40:19 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-24 01:40:19 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-24 01:40:17 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-24 01:40:02 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-24 01:40:02 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-24 01:40:02 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-24 01:40:02 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-24 01:40:01 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-24 01:39:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-04-24 01:39:57 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-24 01:39:55 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-24 01:39:54 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-24 01:39:54 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-24 01:39:54 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-24 01:39:53 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-24 01:39:53 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-24 01:39:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-04-24 01:39:50 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-04-24 01:39:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-24 01:39:46 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-24 01:39:44 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-24 01:39:42 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-04-24 01:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-24 01:39:41 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-24 01:39:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-24 01:39:39 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-24 01:39:38 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-24 01:39:38 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-24 01:39:38 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-04-24 01:39:37 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-24 01:39:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-24 01:39:36 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-24 01:39:36 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-24 01:39:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-24 01:39:35 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-04-24 01:39:35 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-24 01:39:34 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-04-24 01:39:33 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-24 01:39:32 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-24 01:39:32 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-04-24 01:39:31 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-24 01:39:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-24 01:39:30 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-24 01:39:30 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-04-24 01:39:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-24 01:39:29 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-04-24 01:39:29 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-04-24 01:39:29 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-24 01:39:29 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-04-24 01:39:28 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-24 01:39:27 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-04-24 01:39:27 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-04-24 01:39:26 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-24 01:39:26 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-24 01:39:26 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-24 01:39:25 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-04-24 01:39:25 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-24 01:39:24 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-04-24 01:39:24 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-24 01:39:23 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-24 01:39:22 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-04-24 01:39:21 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-24 01:39:21 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-24 01:39:20 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-24 01:39:20 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-24 01:39:19 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-24 01:39:19 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-04-24 01:39:19 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-24 01:39:19 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-24 01:39:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-24 01:39:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-24 01:39:18 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-24 01:39:18 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-04-24 01:39:18 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-24 01:39:17 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-04-24 01:39:17 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-04-24 01:39:17 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-24 01:39:17 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-24 01:39:17 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-24 01:39:16 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-24 01:39:16 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-24 01:39:16 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-04-24 01:39:16 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-24 01:39:16 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-04-24 01:39:15 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-24 01:39:15 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-04-24 01:39:15 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-04-24 01:39:14 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-04-24 01:39:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-24 01:39:14 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-24 01:39:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-24 01:39:13 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-24 01:39:13 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-24 01:39:13 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-24 01:39:13 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-24 01:39:12 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-24 01:39:12 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-04-24 01:39:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-24 01:39:11 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-24 01:39:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-24 01:39:10 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-04-24 01:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-24 01:39:08 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-04-24 01:39:04 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-04-24 01:39:04 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-24 01:39:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-24 01:39:04 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-24 01:39:03 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-24 01:39:03 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-24 01:39:02 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-24 01:39:02 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-24 01:39:02 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-24 01:39:02 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-24 01:39:01 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-04-24 01:39:01 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-24 01:39:01 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-24 01:39:00 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-24 01:39:00 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-24 01:39:00 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-24 01:38:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-24 01:38:59 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-24 01:38:59 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-24 01:38:59 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-24 01:38:58 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-04-24 01:38:58 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-24 01:38:58 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-24 01:38:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-24 01:38:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-24 01:38:57 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-24 01:38:57 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-24 01:38:57 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-24 01:38:56 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-24 01:38:56 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-24 01:38:56 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-24 01:38:56 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-04-24 01:38:56 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-24 01:38:56 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-24 01:38:55 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-04-24 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-24 01:38:52 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-24 01:38:52 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-24 01:38:52 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-24 01:38:52 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-24 01:38:52 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-24 01:38:51 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-24 01:38:51 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-24 01:38:51 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-24 01:38:51 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-24 01:38:51 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-24 01:38:50 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-24 01:38:50 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-24 01:38:50 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-04-24 01:38:49 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-24 01:38:49 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-24 01:38:48 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-24 01:38:48 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-24 01:38:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-24 01:38:47 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-24 01:38:47 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-24 01:38:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-04-24 01:38:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-24 01:38:46 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-04-24 01:38:46 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-24 01:38:45 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-24 01:38:45 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-24 01:38:45 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-24 01:38:45 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-24 01:38:44 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-24 01:38:44 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-24 01:38:44 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-24 01:38:44 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-24 01:38:43 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-24 01:38:43 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-24 01:38:43 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-24 01:38:42 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-24 01:38:42 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-24 01:38:42 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-24 01:38:42 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-04-24 01:38:42 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-24 01:38:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-24 01:38:41 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-24 01:38:41 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-24 01:38:41 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-24 01:38:41 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-24 01:38:40 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-04-24 01:38:40 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-24 01:38:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-24 01:38:37 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-24 01:38:37 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-24 01:38:37 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-24 01:38:36 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-24 01:38:36 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-24 01:38:36 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-24 01:38:36 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-24 01:38:36 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-24 01:38:35 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-24 01:38:35 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-24 01:38:34 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-04-24 01:38:34 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-24 01:38:34 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-24 01:38:33 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-24 01:38:33 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-24 01:38:33 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-04-24 01:38:32 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-24 01:38:32 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-24 01:38:32 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-24 01:38:32 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-24 01:38:32 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-24 01:38:31 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-24 01:38:31 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-24 01:38:31 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-24 01:38:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-24 01:38:30 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-24 01:38:30 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-24 01:38:30 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-24 01:38:29 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-24 01:38:29 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-24 01:38:29 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-24 01:38:27 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-24 01:38:27 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-24 01:38:26 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-24 01:38:26 ----A---- C:\WINDOWS\system32\wups.dll
2016-04-24 01:38:26 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-24 01:38:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-24 01:38:25 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-24 01:38:25 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-24 01:38:25 ----A---- C:\WINDOWS\system32\moshost.dll
2016-04-24 01:38:24 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-24 01:38:24 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-24 01:38:23 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-24 01:38:23 ----A---- C:\WINDOWS\system32\mos.dll
2016-04-24 01:38:23 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-24 01:38:22 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-04-24 01:38:22 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-24 01:38:21 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-24 01:38:21 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-04-24 01:38:21 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-24 01:38:21 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-04-24 01:38:21 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-24 01:38:20 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-24 01:38:19 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-24 01:38:19 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-04-24 01:38:18 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-24 01:38:18 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-24 01:38:18 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-04-24 01:38:18 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-04-24 01:38:17 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-24 01:38:17 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-04-24 01:38:16 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-23 23:02:32 ----D---- C:\rsit
2016-04-23 23:02:32 ----D---- C:\Program Files\trend micro
2016-04-23 23:01:18 ----AD---- C:\Program Files\Defraggler
2016-04-23 22:53:20 ----AD---- C:\Program Files\CCleaner
2016-04-23 22:43:42 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-23 22:34:33 ----HD---- C:\$WINDOWS.~BT
2016-04-23 01:40:31 ----HD---- C:\$SysReset
2016-04-16 20:26:46 ----A---- C:\Recovery.txt
2016-03-24 19:12:03 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent

======List of files/folders modified in the last 1 month======

2016-04-24 01:42:17 ----D---- C:\WINDOWS\debug
2016-04-23 23:42:18 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2016-04-23 23:15:03 ----D---- C:\WINDOWS\system32\catroot2
2016-04-23 23:02:39 ----D---- C:\WINDOWS\Prefetch
2016-04-23 23:02:32 ----RD---- C:\Program Files
2016-04-23 23:00:22 ----D---- C:\WINDOWS\System32
2016-04-23 23:00:22 ----D---- C:\WINDOWS\INF
2016-04-23 23:00:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-23 23:00:07 ----D---- C:\WINDOWS\Temp
2016-04-23 23:00:01 ----RD---- C:\Program Files (x86)
2016-04-23 22:53:36 ----D---- C:\WINDOWS\system32\config
2016-04-23 22:53:29 ----D---- C:\WINDOWS\system32\Tasks
2016-04-23 22:52:49 ----D---- C:\WINDOWS\Microsoft.NET
2016-04-23 22:52:46 ----D---- C:\WINDOWS\WinSxS
2016-04-23 22:52:44 ----D---- C:\Windows
2016-04-23 22:51:34 ----D---- C:\WINDOWS\system32\sru
2016-04-23 22:51:00 ----SHD---- C:\Config.Msi
2016-04-23 22:51:00 ----D---- C:\WINDOWS\system32\drivers
2016-04-23 22:48:04 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-04-23 22:48:04 ----D---- C:\WINDOWS\SysWOW64
2016-04-23 22:47:53 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-23 22:47:53 ----D---- C:\WINDOWS\system32\cs-CZ
2016-04-23 22:47:52 ----D---- C:\WINDOWS\system32\Boot
2016-04-23 22:47:52 ----D---- C:\WINDOWS\system32\appraiser
2016-04-23 22:47:39 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-23 22:47:37 ----D---- C:\WINDOWS\bcastdvr
2016-04-23 22:47:37 ----D---- C:\WINDOWS\AppPatch
2016-04-23 22:47:31 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-23 22:46:25 ----D---- C:\WINDOWS\system32\LogFiles
2016-04-23 22:35:18 ----DC---- C:\WINDOWS\Panther
2016-04-23 22:33:32 ----D---- C:\WINDOWS\Logs
2016-04-23 21:50:05 ----D---- C:\WINDOWS\AppReadiness
2016-04-23 21:50:03 ----HD---- C:\Program Files\WindowsApps
2016-04-23 21:45:38 ----AD---- C:\Program Files\KMSnano
2016-04-23 21:30:36 ----D---- C:\WINDOWS\Tasks
2016-04-23 21:27:18 ----SD---- C:\WINDOWS\system32\Nui
2016-04-23 21:27:18 ----RSD---- C:\WINDOWS\Media
2016-04-23 21:27:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-04-23 21:27:18 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-04-23 21:27:18 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-04-23 21:27:18 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-04-23 21:27:18 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\setup
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\oobe
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\migration
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\icsxml
2016-04-23 21:27:18 ----D---- C:\WINDOWS\system32\Dism
2016-04-23 21:27:18 ----D---- C:\WINDOWS\ShellNew
2016-04-23 21:27:18 ----D---- C:\WINDOWS\Provisioning
2016-04-23 21:27:18 ----D---- C:\WINDOWS\L2Schemas
2016-04-23 21:27:18 ----D---- C:\Program Files\Windows Media Player
2016-04-23 21:27:18 ----D---- C:\Program Files\Windows Journal
2016-04-23 21:27:18 ----D---- C:\Program Files (x86)\Windows Media Player
2016-04-23 21:27:06 ----D---- C:\WINDOWS\twain_32
2016-04-23 21:27:06 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2016-04-23 21:27:06 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2016-04-23 21:27:06 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2016-04-23 21:27:06 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2016-04-23 21:27:05 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2016-04-23 21:27:05 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2016-04-23 21:27:05 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2016-04-23 21:27:04 ----SD---- C:\WINDOWS\SYSWOW64\Nui
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sppui
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\ras
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2016-04-23 21:27:04 ----D---- C:\WINDOWS\SYSWOW64\MSDRM
2016-04-23 21:27:03 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\MailContactsCalendarSync
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\InstallShield
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\icsxml
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2016-04-23 21:27:03 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-04-23 21:27:00 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\downlevel
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2016-04-23 21:27:00 ----D---- C:\WINDOWS\SYSWOW64\cs
2016-04-23 21:26:56 ----D---- C:\WINDOWS\SYSWOW64\Com
2016-04-23 21:26:56 ----D---- C:\WINDOWS\SYSWOW64\Bthprops
2016-04-23 21:26:56 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2016-04-23 21:26:56 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2016-04-23 21:26:56 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2016-04-23 21:26:54 ----D---- C:\WINDOWS\system32\zh-TW
2016-04-23 21:26:54 ----D---- C:\WINDOWS\system32\zh-HK
2016-04-23 21:26:54 ----D---- C:\WINDOWS\system32\zh-CN
2016-04-23 21:26:53 ----D---- C:\WINDOWS\system32\WinMetadata
2016-04-23 21:26:52 ----D---- C:\WINDOWS\system32\wbem
2016-04-23 21:26:51 ----D---- C:\WINDOWS\system32\uk-UA
2016-04-23 21:26:51 ----D---- C:\WINDOWS\system32\tr-TR
2016-04-23 21:26:51 ----D---- C:\WINDOWS\system32\th-TH
2016-04-23 21:26:51 ----D---- C:\WINDOWS\system32\Sysprep
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sv-SE
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sppui
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sl-SI
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\sk-SK
2016-04-23 21:26:48 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\ru-RU
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\ro-RO
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\ras
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\pt-PT
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\pt-BR
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\pl-PL
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\nl-NL
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\nb-NO
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\MSDRM
2016-04-23 21:26:47 ----D---- C:\WINDOWS\system32\migwiz
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\MailContactsCalendarSync
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\lv-LV
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\lt-LT
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\ko-KR
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\ja-JP
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\it-IT
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\ias
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\hu-HU
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\hr-HR
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\he-IL
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\fr-FR
2016-04-23 21:26:46 ----D---- C:\WINDOWS\system32\fr-CA
2016-04-23 21:26:45 ----SD---- C:\WINDOWS\system32\F12
2016-04-23 21:26:45 ----SD---- C:\WINDOWS\system32\dsc
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\fi-FI
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\et-EE
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\es-MX
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\es-ES
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\en-US
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\en-GB
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\en
2016-04-23 21:26:45 ----D---- C:\WINDOWS\system32\el-GR
2016-04-23 21:26:39 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-04-23 21:26:39 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-04-23 21:26:39 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-04-23 21:26:39 ----D---- C:\WINDOWS\system32\downlevel
2016-04-23 21:26:38 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-04-23 21:26:38 ----D---- C:\WINDOWS\system32\de-DE
2016-04-23 21:26:38 ----D---- C:\WINDOWS\system32\da-DK
2016-04-23 21:26:38 ----D---- C:\WINDOWS\system32\cs
2016-04-23 21:26:35 ----D---- C:\WINDOWS\system32\Com
2016-04-23 21:26:35 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-04-23 21:26:31 ----D---- C:\WINDOWS\system32\Bthprops
2016-04-23 21:26:31 ----D---- C:\WINDOWS\system32\bg-BG
2016-04-23 21:26:31 ----D---- C:\WINDOWS\system32\ar-SA
2016-04-23 21:26:31 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-04-23 21:26:29 ----D---- C:\WINDOWS\servicing
2016-04-23 21:26:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-04-23 21:26:28 ----RD---- C:\WINDOWS\PrintDialog
2016-04-23 21:26:27 ----RD---- C:\WINDOWS\MiracastView
2016-04-23 21:26:20 ----RSD---- C:\WINDOWS\Fonts
2016-04-23 21:26:20 ----HD---- C:\WINDOWS\ELAMBKUP
2016-04-23 21:26:20 ----D---- C:\WINDOWS\IME
2016-04-23 21:26:17 ----RD---- C:\WINDOWS\DevicesFlow
2016-04-23 21:26:17 ----RD---- C:\WINDOWS\DesktopTileResources
2016-04-23 21:26:16 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2016-04-23 21:26:16 ----D---- C:\WINDOWS\Cursors
2016-04-23 21:26:16 ----D---- C:\WINDOWS\cs-CZ
2016-04-23 21:26:16 ----D---- C:\WINDOWS\Boot
2016-04-23 21:26:16 ----D---- C:\WINDOWS\addins
2016-04-23 21:26:16 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-04-23 21:26:15 ----D---- C:\Program Files\Windows Portable Devices
2016-04-23 21:26:15 ----D---- C:\Program Files\Windows Photo Viewer
2016-04-23 21:26:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-04-23 21:26:15 ----D---- C:\Program Files\Windows Mail
2016-04-23 21:26:15 ----D---- C:\Program Files\Windows Defender
2016-04-23 21:26:15 ----D---- C:\Program Files\Internet Explorer
2016-04-23 21:26:15 ----D---- C:\Program Files\Common Files\System
2016-04-23 21:26:15 ----D---- C:\Program Files\Common Files\Services
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Windows Mail
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Windows Defender
2016-04-23 21:26:15 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-23 21:19:13 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-04-23 21:19:13 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-04-23 21:19:12 ----SD---- C:\WINDOWS\SYSWOW64\Configuration
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\Speech_OneCore
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\Speech
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\MsDtc
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\InputMethod
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\IME
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2016-04-23 21:19:12 ----D---- C:\WINDOWS\SystemResources
2016-04-23 21:19:10 ----D---- C:\WINDOWS\system32\winrm
2016-04-23 21:19:10 ----D---- C:\WINDOWS\system32\spp
2016-04-23 21:19:10 ----D---- C:\WINDOWS\System
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\Speech_OneCore
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\Speech
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\SMI
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\slmgr
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\PointOfService
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\MUI
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\Licenses
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\InputMethod
2016-04-23 21:19:09 ----D---- C:\WINDOWS\system32\IME
2016-04-23 21:19:06 ----SD---- C:\WINDOWS\system32\Configuration
2016-04-23 21:19:06 ----D---- C:\WINDOWS\Speech_OneCore
2016-04-23 21:19:06 ----D---- C:\WINDOWS\Speech
2016-04-23 21:19:06 ----D---- C:\WINDOWS\SKB
2016-04-23 21:19:00 ----D---- C:\WINDOWS\schemas
2016-04-23 21:19:00 ----D---- C:\WINDOWS\PLA
2016-04-23 21:19:00 ----D---- C:\WINDOWS\OCR
2016-04-23 21:19:00 ----D---- C:\WINDOWS\Migration
2016-04-23 21:18:53 ----D---- C:\WINDOWS\InputMethod
2016-04-23 21:18:49 ----D---- C:\WINDOWS\Help
2016-04-23 21:18:49 ----D---- C:\WINDOWS\diagnostics
2016-04-23 21:18:49 ----D---- C:\WINDOWS\Branding
2016-04-23 21:18:22 ----D---- C:\Program Files (x86)\Windows NT
2016-04-23 21:18:22 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-23 21:18:22 ----D---- C:\Program Files (x86)\Common Files
2016-04-23 21:18:22 ----AD---- C:\Program Files (x86)\Microsoft.NET
2016-04-23 21:07:15 ----D---- C:\WINDOWS\registration
2016-04-23 20:43:10 ----D---- C:\WINDOWS\system32\spool
2016-04-23 20:30:37 ----D---- C:\WINDOWS\Resources
2016-04-23 20:26:15 ----D---- C:\WINDOWS\Globalization
2016-04-23 20:21:27 ----D---- C:\Program Files\Windows NT
2016-04-23 20:18:47 ----AD---- C:\Program Files\Microsoft Office
2016-04-23 20:18:42 ----D---- C:\Program Files\Common Files
2016-04-23 20:18:41 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-04-23 20:17:39 ----RHD---- C:\MSOCache
2016-04-23 20:14:04 ----SHD---- C:\WINDOWS\Installer
2016-04-23 20:13:24 ----D---- C:\ProgramData\Microsoft Help
2016-04-23 20:09:55 ----D---- C:\WINDOWS\CbsTemp
2016-04-23 20:06:16 ----D---- C:\WINDOWS\system32\MRT
2016-04-23 20:02:02 ----A---- C:\WINDOWS\system32\MRT.exe
2016-04-23 19:59:41 ----RD---- C:\WINDOWS\assembly
2016-04-23 19:55:58 ----SHD---- C:\System Volume Information
2016-04-22 09:57:45 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-04-06 20:32:08 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2015-10-30 12800]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-17 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-03-29 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-01-16 67072]
S3 vhf;@%SystemRoot%\system32\drivers\vhf.sys,-100; C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 31744]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 OneSyncSvc_12885c;Hostitel synchronizace_12885c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 UsoSvc;@%systemroot%\system32\usocore.dll,-102; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_8776955;Hostitel synchronizace_8776955; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_b01930;Hostitel synchronizace_b01930; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-23 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_12885c;Služba zasílání zpráv_12885c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_8776955;Služba zasílání zpráv_8776955; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_b01930;Služba zasílání zpráv_b01930; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-23 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_12885c;Data kontaktů_12885c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_8776955;Data kontaktů_8776955; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_b01930;Data kontaktů_b01930; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_12885c;Úložiště uživatelských dat_12885c; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_8776955;Úložiště uživatelských dat_8776955; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_b01930;Úložiště uživatelských dat_b01930; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 UserDataSvc_12885c;Přístup k uživatelským datům_12885c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 UserDataSvc_8776955;Přístup k uživatelským datům_8776955; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 UserDataSvc_b01930;Přístup k uživatelským datům_b01930; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------
Díky

#2 Příspěvek od **Roli** » 25 dub 2016 14:21

Zdravím, jen trochu uklidíme.

Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

Jinak nic špatného tam nevidím je tedy nějaký problém s PC ?

artmle9 · #3 Příspěvek od **artmle9** » 25 dub 2016 17:46

AdwCleaner nic nenašel. S pc je problem ten, že byl nastavený aby se po nějaké době nečinnosti přepl do režimu spánku až jednou nešel spustit. Stále to házelo nějakou chybu. Toto se mi již podařilo vyřešit, ale pc má hodně pomalé starty. Jinak vše běží jak má. Myslím ale, že by to chtělo spíš nějakou opravu systému, nebo něco takového. Pro jistotu jsem chtěl i kontrolu od vás, zda tam není i něco škodlivého.

artmle9 · #4 Příspěvek od **artmle9** » 25 dub 2016 17:52

# AdwCleaner v5.113 - Log soubor vytvořen 25/04/2016 o 18:48:55
# Aktualizováno 24/04/2016 by Xplode
# Databáze : 2016-04-24.3 [Server]
# Operační systém : Windows 10 Pro (X64)
# Jméno uživatele : Martin - MARTIN-PC
# Spuštěno z : C:\Users\Martin\Downloads\adwcleaner_5.113.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

***** [ Složky ] *****

***** [ Soubory ] *****

***** [ DLLs ] *****

***** [ Zástupci ] *****

***** [ Naplánované úkoly ] *****

***** [ Registr ] *****

***** [ Webové prohlížeče ] *****

*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [749 bytes] - [25/04/2016 18:48:55]
C:\AdwCleaner\AdwCleaner[S1].txt - [792 bytes] - [25/04/2016 18:33:19]
C:\AdwCleaner\AdwCleaner[S2].txt - [864 bytes] - [25/04/2016 18:47:09]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [965 bytes] ##########

#5 Příspěvek od **Roli** » 27 dub 2016 17:29

artmle9 píše:Pro jistotu jsem chtěl i kontrolu od vás, zda tam není i něco škodlivého.

Ne ne nic špatného tam není.

VIRY.CZ

Prosím o kontrolu

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu