Viz video, co se mi děje, když ho chci otevřít:
https://www.youtube.com/watch?v=OMY-fG8fP-I
RSIT log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Chuck at 2016-04-10 15:05:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 60 GB (39%) free of 155 GB
Total RAM: 3552 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:05:44, on neděle.10.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Sandboxie\32\SbieSvc.exe
D:\Karol\Archive\1. Extensions\Software\Portable\x32\Auto Runs\ProcessExplorer\procexp.exe
C:\Program Files\trend micro\Chuck.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKUS\S-1-5-21-2887156172-1520988294-1417751805-1001\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" (User 'Karol')
O8 - Extra context menu item: Download all links with IDM - C:\Users\Chuck\AppData\Local\Temp\OfficeDC\_tools\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Users\Chuck\AppData\Local\Temp\OfficeDC\_tools\IEExt.htm
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - https://catalog.update.microsoft.com/v7 ... 9752415659
O17 - HKLM\System\CCS\Services\Tcpip\..\{0AE8B1DB-7A41-42CD-9CE6-7E0F6A2EB47F}: NameServer = 217.31.204.130,193.29.206.206,192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{6B6B6657-24FA-428A-97E3-EAC93FE593A1}: NameServer = 217.31.204.130,193.29.206.206,
O17 - HKLM\System\CCS\Services\Tcpip\..\{865ECE53-107C-489C-A389-343AB04C300E}: NameServer = 217.31.204.130,193.29.206.206
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2CEB620-0D41-4A93-8C81-E36173493D4C}: NameServer = 217.31.204.130,193.29.206.206
O17 - HKLM\System\CS1\Services\Tcpip\..\{0AE8B1DB-7A41-42CD-9CE6-7E0F6A2EB47F}: NameServer = 217.31.204.130,193.29.206.206,192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0AE8B1DB-7A41-42CD-9CE6-7E0F6A2EB47F}: NameServer = 217.31.204.130,193.29.206.206,192.168.1.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: AOMEI Backupper Scheduler Service (Backupper Service) - AOMEI Tech Co., Ltd. - C:\Program Files (x86)\AOMEI Backupper\ABService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Everything - Unknown owner - C:\Program Files\Everything\Everything.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) - Paramount Software UK Ltd - C:\Program Files\Macrium\Reflect\ReflectService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\SysWOW64\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11011 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Sandboxie\SbieSvc.exe"
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\AOMEI Backupper\ABService.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Everything\Everything.exe" -svc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files\Macrium\Reflect\ReflectService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\SysWOW64\vmnat.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe"
WLIDSvcM.exe 2756
C:\Windows\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Everything\Everything.exe" -startup
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\makecab.exe" C:\Windows\Logs\CBS\CbsPersist_20150926222041.log C:\Windows\Logs\CBS\CbsPersist_20150926222041.cab
\??\C:\Windows\system32\conhost.exe "-1558217105-21886125-1189949611-561952823-122077651764417040-18144262551903546311
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Sandboxie\SbieSvc.exe" Sandboxie_GuiProxy_00000001,1428
"C:\Program Files\Sandboxie\SandboxieRpcSs.exe"
"C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Sandboxie\32\SbieSvc.exe" Sandboxie_ComProxy_S-1-5-21-2887156172-1520988294-1417751805-1001_DefaultBox_1_1_:
C:\Windows\system32\wbem\wmiprvse.exe
"D:\Karol\Archive\1. Extensions\Software\Portable\x32\Fan Control\NoteBookFanControl-0.14.4.60.beta\NoteBookFanControl.exe"
"C:\Windows\System32\taskmgr.exe" /1
"D:\Karol\Archive\1. Extensions\Software\Portable\x32\Auto Runs\ProcessExplorer\procexp.exe"
"D:\Karol\Archive\1. Extensions\Software\Portable\x32\Auto Runs\ProcessExplorer\procexp.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\Windows\system32\GWX\GWXConfigManager.exe /RefreshConfigAndContent
taskhost.exe $(Arg0)
"D:\Karol\Archive\1. Extensions\Software\Portable\x32\Security\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Chuck\AppData\Roaming\Mozilla\Firefox\Profiles\ypbhsodm.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.197 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.197 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-02-09 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2014-01-21 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2016-02-09 2348336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-02-09 163016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-02-09 1741096]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"=c:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-04 2774256]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-10-24 1664000]
"Everything"=C:\Program Files\Everything\Everything.exe [2014-08-06 1441792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-10-22 787592]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2012-03-14 319360]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\installed apps\preinstalled\Startup
taskmgr.lnk - C:\Windows\System32\taskmgr.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-04-08 00:25:37 ----D---- C:\ProgramData\Auslogics
2016-04-08 00:24:16 ----D---- C:\Windows\system32\oodag
2016-03-29 00:11:59 ----D---- C:\ProgramData\HP
2016-03-26 14:27:50 ----D---- C:\ProgramData\vsosdk
2016-03-24 21:55:37 ----D---- C:\ProgramData\VSO
2016-03-22 14:48:32 ----D---- C:\Users\Chuck\AppData\Roaming\vlc
2016-03-22 14:48:32 ----D---- C:\Users\Chuck\AppData\Roaming\dvdcss
2016-03-22 14:24:19 ----D---- C:\ProgramData\VS Revo Group
2016-03-22 14:24:18 ----A---- C:\Windows\system32\drivers\revoflt.sys
2016-03-22 14:24:16 ----D---- C:\Program Files\VS Revo Group
2016-03-19 16:10:34 ----D---- C:\Temp
2016-03-19 14:32:15 ----D---- C:\Program Files\KernSafe
2016-03-19 00:42:50 ----D---- C:\Windows\en
2016-03-19 00:42:11 ----D---- C:\Windows\cs
2016-03-19 00:41:10 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-03-19 00:39:22 ----D---- C:\Program Files (x86)\Windows Live
2016-03-19 00:38:20 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2016-03-19 00:38:20 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2016-03-19 00:38:20 ----A---- C:\Windows\system32\XAudio2_7.dll
2016-03-19 00:38:20 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2016-03-19 00:38:19 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2016-03-19 00:38:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2016-03-19 00:38:19 ----A---- C:\Windows\system32\d3dx11_43.dll
2016-03-19 00:38:19 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2016-03-19 00:37:18 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2016-03-19 00:37:18 ----A---- C:\Windows\system32\d3dx10_42.dll
2016-03-19 00:36:55 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2016-03-19 00:36:55 ----A---- C:\Windows\system32\d3dx9_32.dll
2016-03-17 21:36:57 ----D---- C:\Users\Chuck\AppData\Roaming\Ashampoo
2016-03-17 14:19:38 ----D---- C:\Users\Chuck\AppData\Roaming\Gui4Cli
2016-03-14 16:14:53 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-14 16:14:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-03-14 16:14:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-14 16:14:52 ----A---- C:\Windows\system32\ntdll.dll
2016-03-14 16:14:52 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-14 16:14:51 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-03-14 16:14:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-03-14 16:14:51 ----A---- C:\Windows\system32\schannel.dll
2016-03-14 16:14:51 ----A---- C:\Windows\system32\kerberos.dll
2016-03-14 16:14:50 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-03-14 16:14:50 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-03-14 16:14:50 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-03-14 16:14:50 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-03-14 16:14:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\KernelBase.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\kernel32.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-14 16:14:50 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-14 16:14:50 ----A---- C:\Windows\system32\advapi32.dll
2016-03-14 16:14:50 ----A---- C:\Windows\system32\adtschema.dll
2016-03-14 16:14:49 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-03-14 16:14:49 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-03-14 16:14:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-03-14 16:14:49 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\wow64win.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\wow64.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\winsrv.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\srcore.dll
2016-03-14 16:14:49 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-14 16:14:49 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-14 16:14:49 ----A---- C:\Windows\system32\conhost.exe
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-14 16:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-03-14 16:14:48 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\wow64cpu.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\wdigest.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\sspicli.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\srclient.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\smss.exe
2016-03-14 16:14:48 ----A---- C:\Windows\system32\secur32.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\rstrui.exe
2016-03-14 16:14:48 ----A---- C:\Windows\system32\ntvdm64.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\msaudite.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\lsass.exe
2016-03-14 16:14:48 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-14 16:14:48 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\credssp.dll
2016-03-14 16:14:48 ----A---- C:\Windows\system32\auditpol.exe
2016-03-14 16:14:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-14 16:14:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-14 16:14:47 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-14 16:14:47 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-14 16:14:47 ----A---- C:\Windows\SYSWOW64\user.exe
2016-03-14 16:14:47 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-14 16:14:46 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-03-14 16:14:46 ----A---- C:\Windows\system32\msobjs.dll
2016-03-14 16:14:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-03-14 16:14:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-03-14 16:14:37 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-03-14 16:14:37 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-03-14 16:14:37 ----A---- C:\Windows\system32\iertutil.dll
2016-03-14 16:14:37 ----A---- C:\Windows\system32\iernonce.dll
2016-03-14 16:14:37 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-14 16:14:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-14 16:14:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-03-14 16:14:36 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-03-14 16:14:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-03-14 16:14:36 ----A---- C:\Windows\system32\inseng.dll
2016-03-14 16:14:36 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-03-14 16:14:35 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-03-14 16:14:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-14 16:14:33 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-03-14 16:14:33 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-03-14 16:14:33 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-03-14 16:14:33 ----A---- C:\Windows\system32\urlmon.dll
2016-03-14 16:14:33 ----A---- C:\Windows\system32\occache.dll
2016-03-14 16:14:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-14 16:14:33 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-14 16:14:32 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-03-14 16:14:32 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-03-14 16:14:32 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-03-14 16:14:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-03-14 16:14:32 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-03-14 16:14:32 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-14 16:14:32 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-14 16:14:32 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-14 16:14:31 ----A---- C:\Windows\system32\iesetup.dll
2016-03-14 16:14:31 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-14 16:14:29 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-03-14 16:14:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-03-14 16:14:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-03-14 16:14:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-03-14 16:14:29 ----A---- C:\Windows\system32\vbscript.dll
2016-03-14 16:14:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-03-14 16:14:28 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-03-14 16:14:28 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-03-14 16:14:28 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-14 16:14:27 ----A---- C:\Windows\system32\ieui.dll
2016-03-14 16:14:27 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-14 16:14:26 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-14 16:14:26 ----A---- C:\Windows\system32\ieframe.dll
2016-03-14 16:14:25 ----A---- C:\Windows\system32\webcheck.dll
2016-03-14 16:14:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-14 16:14:25 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-14 16:14:25 ----A---- C:\Windows\system32\jscript.dll
2016-03-14 16:14:25 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-14 16:14:24 ----A---- C:\Windows\system32\wininet.dll
2016-03-14 16:14:24 ----A---- C:\Windows\system32\jscript9.dll
2016-03-14 16:14:23 ----A---- C:\Windows\system32\msrating.dll
2016-03-14 16:14:23 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-14 16:14:22 ----A---- C:\Windows\system32\mshtml.dll
2016-03-14 16:14:03 ----A---- C:\Windows\SYSWOW64\lpk.dll
2016-03-14 16:14:03 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-03-14 16:14:03 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2016-03-14 16:14:03 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-03-14 16:14:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-03-14 16:14:03 ----A---- C:\Windows\system32\lpk.dll
2016-03-14 16:14:03 ----A---- C:\Windows\system32\fontsub.dll
2016-03-14 16:14:03 ----A---- C:\Windows\system32\dciman32.dll
2016-03-14 16:14:03 ----A---- C:\Windows\system32\atmlib.dll
2016-03-14 16:14:03 ----A---- C:\Windows\system32\atmfd.dll
2016-03-14 16:14:02 ----A---- C:\Windows\system32\win32k.sys
2016-03-14 16:14:00 ----A---- C:\Windows\system32\seclogon.dll
2016-03-14 16:13:59 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-03-14 16:13:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-03-14 16:13:59 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-03-14 16:13:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wups2.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wups.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wudriver.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wucltux.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-14 16:13:59 ----A---- C:\Windows\system32\wuapi.dll
2016-03-14 16:13:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-14 16:13:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-03-14 16:13:58 ----A---- C:\Windows\system32\wuapp.exe
2016-03-14 16:13:58 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-03-14 16:13:51 ----A---- C:\Windows\SYSWOW64\mfds.dll
2016-03-14 16:13:51 ----A---- C:\Windows\system32\mfds.dll
2016-03-14 16:13:50 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-03-14 16:13:50 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-14 16:13:49 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-03-14 16:13:49 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-14 16:13:48 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-14 16:05:47 ----A---- C:\Windows\system32\wmp.dll
2016-03-14 16:05:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-03-14 16:05:45 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2016-03-14 16:05:45 ----A---- C:\Windows\system32\spwmp.dll
2016-03-14 16:05:45 ----A---- C:\Windows\system32\dxmasf.dll
2016-03-14 16:05:44 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-03-14 16:05:44 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2016-03-14 16:05:44 ----A---- C:\Windows\system32\wmploc.DLL
2016-03-13 14:05:08 ----A---- C:\Windows\SYSWOW64\vsocklib.dll
2016-03-13 14:05:08 ----A---- C:\Windows\system32\vsocklib.dll
2016-03-13 14:05:08 ----A---- C:\Windows\system32\drivers\vsock.sys
2016-03-13 14:05:06 ----A---- C:\Windows\system32\drivers\vmx86.sys
2016-03-13 14:05:05 ----A---- C:\Windows\system32\drivers\VMkbd.sys
2016-03-13 14:04:32 ----A---- C:\Windows\SYSWOW64\vmnetdhcp.exe
2016-03-13 14:04:31 ----A---- C:\Windows\SYSWOW64\vmnat.exe
2016-03-13 14:04:29 ----A---- C:\Windows\system32\drivers\vmnetuserif.sys
2016-03-13 14:04:26 ----A---- C:\Windows\system32\vnetlib64.dll
2016-03-13 14:04:23 ----A---- C:\Windows\system32\drivers\hcmon.sys
2016-03-13 14:04:03 ----D---- C:\Program Files\Common Files\VMware
2016-03-13 14:03:48 ----D---- C:\Program Files (x86)\VMware
======List of files/folders modified in the last 1 month======
2016-04-10 15:05:44 ----D---- C:\Windows\Prefetch
2016-04-10 15:05:41 ----D---- C:\Program Files\trend micro
2016-04-10 15:04:50 ----D---- C:\Windows\System32
2016-04-10 15:04:50 ----D---- C:\Windows\inf
2016-04-10 15:04:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-10 15:04:28 ----D---- C:\Windows\system32\drivers
2016-04-10 15:03:00 ----D---- C:\Windows\Temp
2016-04-10 14:58:33 ----D---- C:\Windows\system32\config
2016-04-10 14:57:53 ----D---- C:\ProgramData\VMware
2016-04-08 11:05:50 ----D---- C:\Windows
2016-04-08 11:05:50 ----A---- C:\Windows\Sandboxie.ini
2016-04-08 00:25:37 ----D---- C:\ProgramData
2016-04-07 10:16:53 ----SHD---- C:\Windows\Installer
2016-04-06 14:17:28 ----SHD---- C:\System Volume Information
2016-04-01 10:58:57 ----D---- C:\Users\Chuck\AppData\Roaming\Everything
2016-04-01 10:57:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-01 10:48:10 ----D---- C:\Program Files (x86)\AOMEI Backupper
2016-03-22 21:27:13 ----SD---- C:\Users\Chuck\AppData\Roaming\Microsoft
2016-03-22 14:24:16 ----RD---- C:\Program Files
2016-03-19 14:33:27 ----D---- C:\Windows\system32\DriverStore
2016-03-19 00:43:38 ----RSD---- C:\Windows\assembly
2016-03-19 00:43:32 ----D---- C:\Windows\winsxs
2016-03-19 00:41:10 ----RD---- C:\Program Files (x86)
2016-03-19 00:40:35 ----D---- C:\Windows\SysWOW64
2016-03-19 00:40:04 ----SD---- C:\ProgramData\Microsoft
2016-03-19 00:39:45 ----D---- C:\Program Files\Common Files\Microsoft Shared
2016-03-19 00:36:29 ----D---- C:\Windows\Logs
2016-03-19 00:33:15 ----D---- C:\Program Files (x86)\Common Files
2016-03-17 21:38:26 ----RD---- C:\Users
2016-03-14 17:32:06 ----D---- C:\Windows\rescache
2016-03-14 17:15:32 ----D---- C:\Windows\Microsoft.NET
2016-03-14 16:39:04 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-03-14 16:39:04 ----D---- C:\Windows\system32\cs-CZ
2016-03-14 16:39:01 ----D---- C:\Program Files\Internet Explorer
2016-03-14 16:38:59 ----D---- C:\Windows\SYSWOW64\en-US
2016-03-14 16:38:53 ----D---- C:\Windows\system32\en-US
2016-03-14 16:38:48 ----D---- C:\Program Files (x86)\Internet Explorer
2016-03-14 16:38:32 ----D---- C:\Windows\AppPatch
2016-03-14 16:38:25 ----D---- C:\Program Files\Windows Media Player
2016-03-14 16:38:25 ----D---- C:\Program Files (x86)\Windows Media Player
2016-03-14 16:35:59 ----D---- C:\ProgramData\Microsoft Help
2016-03-14 16:31:53 ----A---- C:\Windows\win.ini
2016-03-14 16:09:55 ----D---- C:\Windows\system32\catroot2
2016-03-14 10:40:40 ----D---- C:\ProgramData\AomeiBR
2016-03-13 14:04:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-03-13 14:04:03 ----D---- C:\Program Files\Common Files
2016-03-13 14:01:18 ----D---- C:\Users\Chuck\AppData\Roaming\VMware
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2015-02-26 30648]
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2012-10-12 82600]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2012-10-12 42664]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 19152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2015-05-21 85584]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2015-05-21 76480]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2015-02-26 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2015-02-26 17848]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2015-10-21 55488]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2015-11-03 48832]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2015-11-03 26816]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2015-11-03 66752]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-02-26 108128]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-02-26 228448]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2013-08-25 4017664]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2013-09-25 34384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2011-07-18 25912]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2012-07-31 175928]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys [2009-02-24 255552]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-28 918232]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-10-22 192648]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-10-24 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-09-04 524016]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
R3 vmkbd2;VMware kbd2; \??\C:\Windows\system32\drivers\VMkbd.sys [2015-11-03 33472]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2015-11-03 28864]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Chuck\AppData\Local\Temp\tmp9C5D.tmp []
S3 ampa;ampa; \??\C:\Windows\system32\ampa.sys [2015-11-10 19568]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-09-25 89800]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-09-25 338120]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-09-25 116424]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2013-09-25 179432]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-09-25 77464]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2013-09-25 137928]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-09-25 590024]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 63704]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-07-27 78848]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-07-27 180224]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 PSMounterEx;Macrium Reflect Image Explorer Driver; \??\C:\Windows\system32\drivers\psmounterex.sys [2015-10-12 168968]
S3 PSVolAcc;PSVolAcc; C:\Windows\system32\drivers\PSVolAcc.sys [2014-07-21 12760]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 12504]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2011-04-03 2614520]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbser;USB Serial Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-09-25 312448]
R2 Backupper Service;AOMEI Backupper Scheduler Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [2015-09-15 29912]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Everything;Everything; C:\Program Files\Everything\Everything.exe [2014-08-06 1441792]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-03-14 197504]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2012-03-14 365440]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2012-09-24 31040]
R2 ReflectService.exe;Macrium Reflect Image Mounting Service; C:\Program Files\Macrium\Reflect\ReflectService.exe [2015-10-12 3476432]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-10-22 177800]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-10-24 327680]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2015-11-03 87744]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\SysWOW64\vmnetdhcp.exe [2015-11-03 359104]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2015-10-21 915648]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\SysWOW64\vmnat.exe [2015-11-03 438464]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-03-14 994176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-02-08 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-09 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-01-21 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-27 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Okno qwx.exe nejde otevřít
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Okno qwx.exe nejde otevřít
Zdravím!
Log vypadá OK. Obávám se, že vám nepomůžeme, tohle je problém pro tech podporu MS. Ta jejich stahovací utilita má asi nějaký problém.
Log vypadá OK. Obávám se, že vám nepomůžeme, tohle je problém pro tech podporu MS. Ta jejich stahovací utilita má asi nějaký problém.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Okno qwx.exe nejde otevřít
Aktualizování počítače, problém vyřešilo... Díky za zkontrolování logu.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Okno qwx.exe nejde otevřít
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?