Ga naar inhoud

zottemus

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    78

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door zottemus

  1. zottemus
    Op 27/12 heeft pc verschillende updates van Windows 10 gedaan oa Onderdelenupdate naar Windows 10, versie 1709 Update for Windows10 Version 1709 for x64-based systems ( KB4058043 ) Beveiligingsupdate voor Adobe Flash player voor op Windows 10 version 1709 voor x64 gebaseerde systemen ( KB4053577 ) Update for Windows10 Version 1709 for x64-based systems ( KB4041994 ) Sindsdien kan ik enkel nog email verzenden vanuit Incredimail maar geen mails meer binnenhalen. Als ik op ontvangen klik doet hij zelfs geen moeite om op te halen, er komt onmiddellijk "operation incomplete" op het scherm. Ik heb in Incredimail een Gmail account en een Outllook Hotmail account en beiden hebben hetzelfde probleem . Omdat updates belangrijk zijn voor de computer weet ik nu niet hoe ik het probleem best aanpak en welke update dit probleem heeft veroorzaakt. Kan iemand helpen aub? Alvast bedankt!
  2. zottemus
    hoe doe je de health test van HD Tune? als ik op health klik zie ik geen start knopje. Neen, heb mijn backup moeten stoppen een lange tijd geleden, die schijf zat steeds direct vol en dat vertraagde ook enorm. Ook virus scanner heb ik niet meer, Het enige wat ik doe op de pc is surfen en heel veel foto's opslaan, voor de rest staan er practisch geen programma's op.
  3. zottemus
    Ik heb ondertussen de HD Tune kunnen doen. Hoe moet ik de uitslag posten? Heel het vierkant is groen behalve 3 rode vakjes
  4. zottemus
    Ik heb de HD Tune sessie vlak voor ik gaan slapen ben terug laten lopen en deze ochtend was de computer terug uit zichzelf opgestart ( ik zag dat hij windows updates heeft uitgevoerd) dus weeral vind ik nergens de uitslag van de HD Tune scan. Wat betreft de Ccleaner die niet door de Google Chrome internet cache geraakt, Hij geraakt ook niet door de internetgeschiedenis van chrome en cookies en de andere onderdelen van dat gedeelte van Google chrome. Ik slaag er dan op dat moment ook niet in om hem te doen stoppen want hij blijft dan vast hangen zodat ik heel de computer geforceerd moet afsluiten en terug opstarten. Als ik alles uitvink van dit gedeelte Google Chrome , dan loopt ie wel verder tot het einde.
  5. zottemus
    ik ga het vandaag terug proberen maar ik ga er niet blijven bijzitten want dat gaat de hele dag duren. Wat ik vroeger altijd wekelijks deed was ccleaner laten cleanen maar dat lukt nu niet meer want hij blijft een eeuwigheid "hangen" bij google chrome internet cache opschonen.
  6. zottemus
    ik heb deze HD tune gedaan in veilige modus maar toen ik terug kwam zien stond de pc op gewone modus te draaien dus ik weet niet wat het resultaat was, kan ik dat ergens terugvinden?
  7. zottemus
    zie in bijlage de scanlog. Probleem is niet opgelost , nog steeds kan ik nergens op klikken , kan dit zijn omdat mijn schijven vol zitten? MB Scanlog.txt
  8. zottemus
    Hallo ABBS, moet ik enkel scannen op rootkits aanvinken want alle andere mogelijkheden waren reeds aangevinkt dus ik heb dit zo laten staan. weet niet hoelang het nog gaat duren maar scan loopt ondertussen al meer als 10 uren en heb het vermoeden dat dit nog een week gaat duren. Ik denk dat pc zwaar geinfecteerd is want zelfs dit bericht schrijven duurt een eeuwigheid. Ik schrijf iets en de tekst die ik schrijf komt pas tevoorschijn na enkele minuten.
  9. zottemus
    dat ga ik zo meteen doen, moet ik dan gewoon op "run" klikken of ook op "health" en "error scan" ? en herstelt die dan automatisch of moet ik hier iets posten?
  10. zottemus
    hallo, mijn computer is naar de bom denk ik. Ik merkte de laatste tijd al dat ie soms enorm traag pagina's laadt en bevriest maar ik kan soms gewoon niet meer met de muis op iets klikken want hij reageert op niets, zelfs niet op documenten. Ook geprobeerd om ccleaner te doen maar daar blijft hij uren hangen op de chrome geschiedenis. Weet niet wat er aan de hand is. Ben al blij dat ik nu eindelijk deze pagina heb kunnen opvragen zodat ik hulp kan vragen.
  11. zottemus
    Hoi, nee hoor niks nieuws? bij jou vraag of ik via verkenner de kaart openkrijg is het antwoord ja. Maar ze verwijderen kan ik niet van de kaart. Mijn oorspronkelijk probleem is niet opgelost namelijk de melding die op het scherm verschijnt als je bv je sd-kaart of camera aansluit op de pc. Vroeger kwam er dan een soort waarschuwing onderaan die vroeg wat te doen. Volgens mij is dat verdwenen na een update van iets. duuuuuusss..............................help !
  12. zottemus
    Ja , in verkenner zie ik het als ik de kaart erin steek. Maar hij geft van daaruit niet de optie om foto's te importeren, camera geeft hij ook weer als ik die aansluit op pc
  13. zottemus
    bij mij staat alles in t engels, hoe vind ik die verkenner?
  14. zottemus
    staat ( en stond) allemaal correct aangevinkt dus ik begrijp het niet wat er mis is.
  15. zottemus
    Hallo, normaal als ik foto's van mijn camera op mijn pc wil overzetten steen ik het sd kaartje in mijn pc en opent zich een venstertje een soort pop-up om te vragen of ik wil importeren. Nu sinds een week gebeurt er niets als ik mijn camera via usb aansluit of ook niet als ik het sd kaartje in de pc steek. Waarschijnlijk is dit een kleine instelling in de pc die veranderd is maar ik vind die tool nergens. Kan iemand me helpen? ik heb windows 7
  16. zottemus
    altijd. Dat kan toch niet? de E schijf loopt helemaal vol op 1 week tijd.
  17. zottemus
    nog steeds even traag en nog steeds loopt hij regelmatig vast bij het surfen op websites. Ook als ik op picasa mijn foto's wil opslagen die ik bijgewerkt heb krijg ik melding dat mijn schijf vermoedelijk vol is. zelfs als ik mijn eigen video's wil bekijken ( kleine filmpjes van nog geen 1 minuut lang loop ik vast). Ook als ik mijn emaild wil lezen en naar beneden scroll om de volgend email te lezen loop ik vast en moet ik wachten tot soms 5 minuten voor het zandlopertje weg is. Ik weet niet of het probleem met virussen te maken heeft, ik denk eerder in de processen die de pc op de achtergrond draait. Zo zie ik in mijn computer dat mijn schijven continu vol lopen zie bijgevoegde foto die ik gemaakt heb. Kan je me ermee helpen?
  18. zottemus
    het logje was leeg, geen adware gevonden op pc!
  19. zottemus
    deze ging sneller! in bijlage logje zoek-results.txt
  20. zottemus
    Hoop dat het bestand erbij is. Als jullie vinden dat er rommelprogramma's opstaan mogen jullie die ook al verwijderen hoor ( advanced system care) Ook is er steeds iets van google back up foto's,is dat nodig? zoek-results.txt
  21. zottemus
    ik heb zonet mijn logje ook in malware en visrussen geplaatst.
  22. zottemus
    mijn pc is sinds lange tijd heel traag en ik moet hem dikwijls terug opstarten omdat hij dikwijls blijft hangen tijdens het surfen, precies of hij kan het zo allemaal niet meer aan. Ik heb het vermoeden dat hij dingen op de achtergrond doet die helemaal niet nodig zijn. Ook krijg ik dikwijls melding dat mijn HP2 (E) schijf vol is,dit gebeurt elke week en ik doe dan format om ze terug leeg te maken. Ook is er iets dat mijn computer op windows 10 wil zetten dat dikwijls begint te lopen en dat schakel ik dan terug uit. Is er iemand die me aan de hand van enkele programma's kan helpen om de boel eens te analyseren en op te schonen? Ik gebruik ccleaner en advanced system care elke week dan loopt het "iets" sneller voor een dag of 2 maar dat is geen oplossing. Logje: Logfile of random's system information tool 1.10 (written by random/random) Run by Ann at 2015-10-28 12:16:11 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 376 GB (54%) free of 702 GB Total RAM: 6071 MB (59% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:16:20, on 28/10/2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.18057) Boot mode: Normal Running processes: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\Sweex\UWD\VMonitor.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\trend micro\Ann.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ig R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [iObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Google Photos Backup] "C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Sweex snapshot button monitor.lnk = ? O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 13202 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" atieclxx "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe" "C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe" "C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe" "C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE" "C:\Program Files (x86)\Bonjour\mDNSResponder.exe" "C:\Prey\platform\windows\cronsvc.exe" C:\Windows\System32\svchost.exe -k utcsvc C:\Windows\SysWOW64\svchost.exe -k netsvcs C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt "c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe" WLIDSvcM.exe 3288 "C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=DOCKVIEW "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2bb3c8d3-95db-4986-a84c-523ffd0b4f9e -SystemEventPortName:HostProcess-6abc2953-efb3-4995-a797-ae0b13f3d9f5 -IoCancelEventPortName:HostProcess-4851f51e-a3a8-4071-af3d-cc1dd9669efc -NonStateChangingEventPortName:HostProcess-b3537b14-48fc-492e-964e-c8c9c3a92a5e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:399f8d90-0e3a-4a36-b1db-1403327330fd -DeviceGroupId:WpdFsGroup "C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart "C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe" "C:\Program Files (x86)\Sweex\UWD\VMonitor.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Windows\system32\GWX\GWX.exe" "C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe" "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart Wireless B109n-z#1419499147" -Startup "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding ctfmon.exe "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /systemstart /autostart C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files (x86)\CCleaner\CCleaner.exe" /MONITOR /uac "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" C:\Windows\system32\svchost.exe -k SDRSVC C:\Windows\servicing\TrustedInstaller.exe "LogonUI.exe" /flags:0x0 "C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe" "C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" -newtab C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-042d-fc53ee6c3b13 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\" "C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -noframemerging http://toolbar.google.com/command?navigate=122D88BE-1DF2-4059-BD6B-289E8FC2DBE3 C:\Windows\system32\Macromed\Flash\FlashUtil64_19_0_0_226_ActiveX.exe -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" http://track.pc-helpforum.be/track/click/30483147/www.pc-helpforum.be?p=eyJzIjoiUU83MTFGVlZacWhHUnBDTy1nTWZRX2RuOEdjIiwidiI6MSwicCI6IntcInVcIjozMDQ4MzE0NyxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3LnBjLWhlbHBmb3J1bS5iZVxcXC90b3BpY1xcXC80OTAxOS1ob2UtbWFhay1qZS1lZW4tbG9namUtbWV0LXJzaXQtbWV0LXZpZGVvXFxcL1wiLFwiaWRcIjpcImY5NjU1Yzc3NjBiYjRmN2U4OGJlOTExZjdmMDQ2MDhlXCIsXCJ1cmxfaWRzXCI6W1wiNzQ2MjNjOTUyNTEyOTczYzlkMjg0MzRhNDFlYjM5Y2IyYmEzNDY4OFwiXX0ifQ "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:127468 CREDAT:267521 /prefetch:2 "C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" C:\Windows\system32\svchost.exe -k defragsvc "C:\Users\Ann\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000Core.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000UA.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\HPCeeScheduleForAnn.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForAnn (null) C:\Windows\tasks\PCDRScheduledMaintenance.job - C:\Program Files\PC-Doctor for Windows\pcdrcui.exe -fh scripts\monthly.xml -st PCDRScheduledMaintenance =========Mozilla firefox========= ProfilePath - C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default prefs.js - "browser.startup.homepage" - "https://mysearch.avg.com/?cid={718E0CD9-E261-4160-9090-91A48AE0F06B}&mid=2a3c849d707547d6a3ff9128c09ffef1-e27165e4895c30416ef4d5795164f98330028cc5〈=nl&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-24 09:02:38&v=4.1.5.143&pid=wtu&sg=&sap=hp" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 19.0.0.226 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.60.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5] "Description"=Office Live Update v1.5 "Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 19.0.0.226 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default\extensions\ iobitascsurfingprotection@iobit.com ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}] ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-07-30 2471744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-29 460384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}] Advanced SystemCare Surfing Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2015-04-01 672032] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-29 172640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-09-14 610360] "PC-Doctor for Windows localizer"=C:\Program Files\PC-Doctor for Windows\localizer.exe [2009-09-17 95728] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29 14021336] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HPADVISOR"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-29 1685048] "Advanced SystemCare 8"=C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2015-04-08 2429728] "CCleaner Monitoring"=C:\Program Files (x86)\CCleaner\CCleaner64.exe [2015-01-20 7404312] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-10-29 39408] "Google Update"=C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-24 144200] "Google Photos Backup"=C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [2015-10-13 3787080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google+ Auto Backup] C:\Users\Ann\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup] C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2009-10-02 284696] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-01 98304] "HP Software Update"=c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576] "Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2009-09-02 60464] "GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-10-19 3779496] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe Sweex snapshot button monitor.lnk - C:\Program Files (x86)\Sweex\UWD\VMonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-01-14 52272] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableLockWorkstation"=0 "DisableTaskMgr"=0 "DisableChangePassword"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "HideFastUserSwitching"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave1"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 3 months====== 2015-10-28 12:16:11 ----D---- C:\rsit 2015-10-28 12:16:11 ----D---- C:\Program Files\trend micro 2015-10-23 18:31:21 ----A---- C:\Windows\system32\win32k.sys 2015-10-21 15:48:50 ----SHD---- C:\found.000 2015-10-19 12:32:18 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys 2015-10-15 09:09:58 ----A---- C:\Windows\system32\invagent.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\generaltel.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\devinv.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\CompatTelRunner.exe 2015-10-15 09:09:58 ----A---- C:\Windows\system32\appraiser.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\aeinv.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\acmigration.dll 2015-10-14 08:29:34 ----A---- C:\Windows\system32\shell32.dll 2015-10-14 08:29:34 ----A---- C:\Windows\system32\ExplorerFrame.dll 2015-10-14 08:29:32 ----A---- C:\Windows\SYSWOW64\shell32.dll 2015-10-14 08:29:31 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll 2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwproxystub.dll 2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwcollector.exe 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\occache.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2015-10-14 08:29:20 ----A---- C:\Windows\system32\iernonce.dll 2015-10-14 08:29:20 ----A---- C:\Windows\system32\ie4uinit.exe 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2015-10-14 08:29:19 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\urlmon.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\occache.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2015-10-14 08:29:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\iedkcs32.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieui.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2015-10-14 08:29:17 ----A---- C:\Windows\system32\msfeeds.dll 2015-10-14 08:29:17 ----A---- C:\Windows\system32\dxtrans.dll 2015-10-14 08:29:16 ----A---- C:\Windows\system32\iesetup.dll 2015-10-14 08:29:16 ----A---- C:\Windows\system32\ieapfltr.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2015-10-14 08:29:15 ----A---- C:\Windows\system32\vbscript.dll 2015-10-14 08:29:15 ----A---- C:\Windows\system32\iertutil.dll 2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\wininet.dll 2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\msrating.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\jsproxy.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieui.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieframe.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\dxtmsft.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\webcheck.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmlmedia.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmled.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\jscript.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\ieUnatt.exe 2015-10-14 08:29:12 ----A---- C:\Windows\system32\wininet.dll 2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9diag.dll 2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\msrating.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\MshtmlDac.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\mshtml.dll 2015-10-14 08:28:44 ----A---- C:\Windows\system32\ntoskrnl.exe 2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2015-10-14 08:28:40 ----A---- C:\Windows\system32\lsasrv.dll 2015-10-14 08:28:40 ----A---- C:\Windows\system32\kernel32.dll 2015-10-14 08:28:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2015-10-14 08:28:39 ----A---- C:\Windows\system32\ntdll.dll 2015-10-14 08:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2015-10-14 08:28:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\wow64.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\winsrv.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\srcore.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\rstrui.exe 2015-10-14 08:28:38 ----A---- C:\Windows\system32\rpcrt4.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\KernelBase.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\kerberos.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\conhost.exe 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wow32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\srclient.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\setup16.exe 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\secur32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\schannel.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\credssp.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64win.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64cpu.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wdigest.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\TSpkg.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspisrv.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspicli.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\srclient.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\smss.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\secur32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\schannel.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\ntvdm64.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\ncrypt.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\msv1_0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\lsass.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\csrsrv.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\cryptbase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\credssp.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\auditpol.exe 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 08:28:35 ----A---- C:\Windows\SYSWOW64\instnm.exe 2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\user.exe 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\msaudite.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\apisetschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\adtschema.dll 2015-10-14 08:28:33 ----A---- C:\Windows\system32\msobjs.dll 2015-10-14 08:28:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2015-10-14 08:28:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidsvc.dll 2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidapi.dll 2015-10-14 08:28:01 ----A---- C:\Windows\system32\setbcdlocale.dll 2015-10-14 08:28:01 ----A---- C:\Windows\system32\drivers\appid.sys 2015-10-14 08:28:01 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2015-10-13 11:24:00 ----A---- C:\Windows\SYSWOW64\GPhotos.scr 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wups.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuwebv.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups2.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wudriver.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wucltux.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuaueng.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuauclt.exe 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapp.exe 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapi.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\WinSetupUI.dll 2015-10-07 19:55:34 ----A---- C:\Windows\system32\icaapi.dll 2015-10-07 19:55:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\ucrtbase.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-09-29 18:19:55 ----D---- C:\Users\Ann\AppData\Roaming\Sun 2015-09-19 08:52:36 ----D---- C:\Program Files (x86)\IncrediMail 2015-09-18 20:48:27 ----D---- C:\Program Files (x86)\Photo Notifier and Animation Creator 2015-09-14 20:02:16 ----A---- C:\Windows\system32\drivers\AtihdW76.sys 2015-09-14 20:02:16 ----A---- C:\Windows\system32\DelayAPO.dll 2015-09-14 19:59:21 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys 2015-09-14 19:59:18 ----A---- C:\Windows\system32\SETF07B.tmp 2015-09-14 19:59:17 ----A---- C:\Windows\system32\RTCOM64.dll 2015-09-14 19:58:58 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2015-09-14 19:58:57 ----A---- C:\Windows\system32\SETEE67.tmp 2015-09-14 19:58:54 ----A---- C:\Windows\system32\RCoInstII64.dll 2015-09-13 10:03:01 ----A---- C:\Windows\SYSWOW64\InkEd.dll 2015-09-13 10:03:01 ----A---- C:\Windows\system32\jnwmon.dll 2015-09-13 10:03:01 ----A---- C:\Windows\system32\InkEd.dll 2015-09-13 10:02:51 ----A---- C:\Windows\system32\schedsvc.dll 2015-09-13 10:02:41 ----A---- C:\Windows\SYSWOW64\tzres.dll 2015-09-13 10:02:41 ----A---- C:\Windows\system32\tzres.dll 2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmcore.dll 2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmapi.dll 2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmcore.dll 2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmapi.dll 2015-09-13 10:01:30 ----A---- C:\Windows\system32\UtcResources.dll 2015-09-13 10:01:30 ----A---- C:\Windows\system32\diagtrack.dll 2015-09-13 10:01:27 ----A---- C:\Windows\system32\tdh.dll 2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\tdh.dll 2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2015-09-13 10:01:25 ----A---- C:\Windows\system32\advapi32.dll 2015-09-13 10:00:40 ----A---- C:\Windows\SYSWOW64\authui.dll 2015-09-13 10:00:40 ----A---- C:\Windows\system32\consent.exe 2015-09-13 10:00:40 ----A---- C:\Windows\system32\authui.dll 2015-09-13 10:00:39 ----A---- C:\Windows\system32\appinfo.dll 2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml6.dll 2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml6.dll 2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml3.dll 2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml6r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml6r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml3r.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\lpk.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\lpk.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\fontsub.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\dciman32.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmlib.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmfd.dll 2015-09-10 07:58:25 ----HD---- C:\$Windows.~BT 2015-08-19 10:53:56 ----A---- C:\Windows\system32\drivers\avgidsha.sys 2015-08-15 02:20:49 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-15 02:20:49 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-14 17:20:03 ----A---- C:\Windows\system32\sysmain.dll 2015-08-14 17:20:00 ----A---- C:\Windows\system32\drivers\mountmgr.sys 2015-08-14 17:19:58 ----A---- C:\Windows\system32\msmmsp.dll 2015-08-14 17:19:12 ----A---- C:\Windows\system32\basesrv.dll 2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\system32\WebClnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\system32\davclnt.dll 2015-08-14 17:18:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll 2015-08-14 17:18:07 ----A---- C:\Windows\system32\FntCache.dll 2015-08-14 17:18:07 ----A---- C:\Windows\system32\DWrite.dll 2015-08-14 17:18:05 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2015-08-14 17:18:05 ----A---- C:\Windows\system32\d3d10warp.dll 2015-08-14 17:18:03 ----A---- C:\Windows\SYSWOW64\notepad.exe 2015-08-14 17:18:03 ----A---- C:\Windows\system32\notepad.exe 2015-08-14 17:18:03 ----A---- C:\Windows\notepad.exe 2015-08-14 17:18:01 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2015-08-14 17:18:01 ----A---- C:\Windows\system32\mstscax.dll 2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll 2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\aaclient.dll 2015-08-14 17:18:00 ----A---- C:\Windows\system32\tsgqec.dll 2015-08-14 17:18:00 ----A---- C:\Windows\system32\aaclient.dll 2015-08-04 10:32:36 ----A---- C:\Windows\system32\drivers\avgtdia.sys 2015-08-04 10:32:32 ----A---- C:\Windows\system32\drivers\avgmfx64.sys 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRRPTR64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRAPO64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\sltech64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\slprp64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\slcnt64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\sl3apo64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\RtPgEx64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkCfg64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkApi64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtDataProc64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RltkAPO64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RCoRes64.dat 2015-07-29 13:08:44 ----A---- C:\Windows\system32\FMAPO64.dll 2015-07-29 13:08:43 ----A---- C:\Windows\system32\CX64APO.dll 2015-07-29 13:07:38 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys 2015-07-29 13:06:51 ----A---- C:\Windows\system32\RtNicProp64.dll 2015-07-29 13:06:51 ----A---- C:\Windows\system32\drivers\Rt64win7.sys ======List of files/folders modified in the last 3 months====== 2015-10-28 12:16:20 ----D---- C:\Windows\Prefetch 2015-10-28 12:16:11 ----RD---- C:\Program Files 2015-10-28 12:15:57 ----D---- C:\Windows\Temp 2015-10-28 11:59:32 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat 2015-10-28 09:30:25 ----D---- C:\ProgramData\MFAData 2015-10-27 09:43:20 ----D---- C:\Windows 2015-10-26 20:19:09 ----SHD---- C:\Windows\Installer 2015-10-26 20:19:09 ----SHD---- C:\Config.Msi 2015-10-26 13:37:54 ----D---- C:\Windows\System32 2015-10-26 13:37:54 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-10-26 13:37:53 ----D---- C:\Windows\inf 2015-10-25 22:42:46 ----D---- C:\Windows\system32\config 2015-10-25 19:00:54 ----SHD---- C:\System Volume Information 2015-10-24 09:28:38 ----D---- C:\ProgramData\ProductData 2015-10-24 09:27:11 ----D---- C:\Windows\winsxs 2015-10-23 18:31:19 ----D---- C:\Windows\system32\catroot2 2015-10-23 08:35:01 ----D---- C:\Windows\system32\drivers 2015-10-22 12:59:15 ----D---- C:\Windows\Panther 2015-10-16 20:33:08 ----D---- C:\Windows\SysWOW64 2015-10-16 20:33:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2015-10-16 17:07:06 ----D---- C:\Program Files (x86)\Mozilla Firefox 2015-10-16 02:16:46 ----SD---- C:\Windows\system32\CompatTel 2015-10-16 02:16:45 ----D---- C:\Windows\system32\appraiser 2015-10-16 02:16:45 ----D---- C:\Windows\AppPatch 2015-10-15 20:19:22 ----D---- C:\Windows\rescache 2015-10-15 16:38:50 ----D---- C:\Windows\debug 2015-10-15 02:32:26 ----D---- C:\Windows\SYSWOW64\en-US 2015-10-15 02:32:26 ----D---- C:\Program Files\Internet Explorer 2015-10-15 02:32:25 ----D---- C:\Windows\system32\en-US 2015-10-15 02:32:25 ----D---- C:\Program Files (x86)\Internet Explorer 2015-10-15 02:32:22 ----D---- C:\Windows\system32\CodeIntegrity 2015-10-15 02:32:22 ----D---- C:\Windows\system32\Boot 2015-10-15 02:16:22 ----D---- C:\Windows\system32\MRT 2015-10-15 02:09:54 ----A---- C:\Windows\system32\MRT.exe 2015-10-15 02:09:44 ----D---- C:\ProgramData\Microsoft Help 2015-10-14 08:24:05 ----D---- C:\Users\Ann\AppData\Roaming\OwnRooms 2015-10-09 02:27:20 ----SD---- C:\Windows\system32\GWX 2015-10-09 02:17:07 ----SD---- C:\Windows\SYSWOW64\GWX 2015-10-01 23:56:01 ----D---- C:\Windows\system32\LogFiles 2015-10-01 20:59:12 ----D---- C:\Windows\Tasks 2015-10-01 20:59:12 ----D---- C:\Windows\system32\Tasks 2015-09-29 18:27:37 ----D---- C:\ProgramData\Oracle 2015-09-29 18:21:14 ----D---- C:\Program Files (x86)\Java 2015-09-29 18:20:22 ----D---- C:\Program Files (x86)\Common Files 2015-09-29 18:19:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2015-09-20 02:02:28 ----SD---- C:\ProgramData\Microsoft 2015-09-20 02:01:49 ----D---- C:\Program Files (x86)\Microsoft 2015-09-19 08:52:36 ----D---- C:\Program Files (x86) 2015-09-18 20:16:59 ----D---- C:\Program Files (x86)\HP Games 2015-09-18 20:16:53 ----D---- C:\ProgramData\WildTangent 2015-09-18 20:14:08 ----D---- C:\ProgramData\Skype 2015-09-17 19:07:41 ----D---- C:\Windows\system32\catroot 2015-09-15 18:30:37 ----D---- C:\ProgramData\AVG Security Toolbar 2015-09-15 14:46:14 ----D---- C:\Windows\system32\DriverStore 2015-09-15 14:46:08 ----D---- C:\Program Files\Common Files 2015-09-15 14:45:04 ----HD---- C:\ProgramData 2015-09-14 20:01:22 ----D---- C:\Windows\SYSWOW64\RTCOM 2015-09-14 02:48:26 ----D---- C:\Windows\Microsoft.NET 2015-09-14 02:48:06 ----RSD---- C:\Windows\assembly 2015-09-14 02:38:19 ----D---- C:\Program Files\Windows Journal 2015-09-14 02:38:18 ----D---- C:\Windows\ehome 2015-09-14 02:38:17 ----D---- C:\Windows\PolicyDefinitions 2015-09-13 09:05:35 ----D---- C:\Windows\system32\wfp 2015-09-13 09:05:28 ----D---- C:\Windows\system32\wbem 2015-09-13 09:02:55 ----D---- C:\Windows\servicing 2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\ProductData 2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\IObit 2015-09-13 09:02:05 ----D---- C:\Program Files\Common Files\Microsoft Shared 2015-09-13 09:01:19 ----D---- C:\Windows\registration 2015-09-06 07:55:58 ----A---- C:\Windows\SYSWOW64\bash.exe.stackdump 2015-08-20 08:00:20 ----D---- C:\Windows\Logs 2015-08-20 07:25:13 ----SD---- C:\Users\Ann\AppData\Roaming\Microsoft 2015-08-15 02:39:54 ----D---- C:\Windows\system32\drivers\en-US 2015-08-15 02:19:13 ----D---- C:\Program Files\Microsoft Silverlight 2015-08-15 02:19:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2015-07-31 20:16:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2015-07-31 07:49:00 ----D---- C:\Windows\SYSWOW64\drivers 2015-07-31 07:48:59 ----D---- C:\Windows\system32\drivers\AVG 2015-07-31 06:43:42 ----D---- C:\ProgramData\IObit 2015-07-30 13:25:02 ----D---- C:\Windows\SoftwareDistribution 2015-07-29 14:47:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2015-07-29 13:06:51 ----A---- C:\Windows\system32\RTNUninst64.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928] R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-10-02 537112] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 21184] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-10-19 315312] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464] R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2014-12-25 26528] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-26 339456] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-09-14 96256] R3 AVER_H193;AVerMedia H193 Video Capture; C:\Windows\system32\drivers\AVer888RC_64.sys [2009-11-13 543616] R3 CXCIR;AVerMedia Consumer Infrared Receiver; C:\Windows\system32\DRIVERS\AVer888RCIR_64.sys [2009-11-13 39936] R3 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048] R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-09-14 4514008] R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2014-12-25 2472136] R3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-07-29 986368] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-29 33448] R3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016] S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-11-19 123408] S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-01-30 103448] S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920] S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080] S3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2010-04-19 50688] S3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 VMUVC;Vimicro Camera Service VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [2010-04-29 202112] S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\Windows\system32\drivers\vvftUVC.sys [2008-07-01 303616] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2015-04-03 814880] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-26 237056] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656] R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648] R2 Bonjour Service;Bonjour-service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-07-27 345376] R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2010-09-29 18432] R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128] R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336] R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-08-20 73728] R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-07-29 294616] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136] S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-30 2909472] S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16 269000] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032] S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 114688] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-07 148136] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-01 1255736] S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF-----------------
  23. zottemus
    Het logje is gelukt, moet ik het op een ander forum plaatsten ook? Logfile of random's system information tool 1.10 (written by random/random) Run by Ann at 2015-10-28 12:16:11 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 376 GB (54%) free of 702 GB Total RAM: 6071 MB (59% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:16:20, on 28/10/2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.18057) Boot mode: Normal Running processes: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\Sweex\UWD\VMonitor.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\trend micro\Ann.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ig R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [iObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Google Photos Backup] "C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Sweex snapshot button monitor.lnk = ? O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 13202 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" atieclxx "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe" "C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe" "C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe" "C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE" "C:\Program Files (x86)\Bonjour\mDNSResponder.exe" "C:\Prey\platform\windows\cronsvc.exe" C:\Windows\System32\svchost.exe -k utcsvc C:\Windows\SysWOW64\svchost.exe -k netsvcs C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt "c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe" WLIDSvcM.exe 3288 "C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=DOCKVIEW "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2bb3c8d3-95db-4986-a84c-523ffd0b4f9e -SystemEventPortName:HostProcess-6abc2953-efb3-4995-a797-ae0b13f3d9f5 -IoCancelEventPortName:HostProcess-4851f51e-a3a8-4071-af3d-cc1dd9669efc -NonStateChangingEventPortName:HostProcess-b3537b14-48fc-492e-964e-c8c9c3a92a5e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:399f8d90-0e3a-4a36-b1db-1403327330fd -DeviceGroupId:WpdFsGroup "C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart "C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe" "C:\Program Files (x86)\Sweex\UWD\VMonitor.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Windows\system32\GWX\GWX.exe" "C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe" "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart Wireless B109n-z#1419499147" -Startup "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding "C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding ctfmon.exe "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /systemstart /autostart C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files (x86)\CCleaner\CCleaner.exe" /MONITOR /uac "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" C:\Windows\system32\svchost.exe -k SDRSVC C:\Windows\servicing\TrustedInstaller.exe "LogonUI.exe" /flags:0x0 "C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe" "C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" -newtab C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-042d-fc53ee6c3b13 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\" "C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -noframemerging http://toolbar.google.com/command?navigate=122D88BE-1DF2-4059-BD6B-289E8FC2DBE3 C:\Windows\system32\Macromed\Flash\FlashUtil64_19_0_0_226_ActiveX.exe -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" http://track.pc-helpforum.be/track/click/30483147/www.pc-helpforum.be?p=eyJzIjoiUU83MTFGVlZacWhHUnBDTy1nTWZRX2RuOEdjIiwidiI6MSwicCI6IntcInVcIjozMDQ4MzE0NyxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3LnBjLWhlbHBmb3J1bS5iZVxcXC90b3BpY1xcXC80OTAxOS1ob2UtbWFhay1qZS1lZW4tbG9namUtbWV0LXJzaXQtbWV0LXZpZGVvXFxcL1wiLFwiaWRcIjpcImY5NjU1Yzc3NjBiYjRmN2U4OGJlOTExZjdmMDQ2MDhlXCIsXCJ1cmxfaWRzXCI6W1wiNzQ2MjNjOTUyNTEyOTczYzlkMjg0MzRhNDFlYjM5Y2IyYmEzNDY4OFwiXX0ifQ "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:127468 CREDAT:267521 /prefetch:2 "C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" C:\Windows\system32\svchost.exe -k defragsvc "C:\Users\Ann\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000Core.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000UA.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\HPCeeScheduleForAnn.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForAnn (null) C:\Windows\tasks\PCDRScheduledMaintenance.job - C:\Program Files\PC-Doctor for Windows\pcdrcui.exe -fh scripts\monthly.xml -st PCDRScheduledMaintenance =========Mozilla firefox========= ProfilePath - C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default prefs.js - "browser.startup.homepage" - "https://mysearch.avg.com/?cid={718E0CD9-E261-4160-9090-91A48AE0F06B}&mid=2a3c849d707547d6a3ff9128c09ffef1-e27165e4895c30416ef4d5795164f98330028cc5〈=nl&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-24 09:02:38&v=4.1.5.143&pid=wtu&sg=&sap=hp" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 19.0.0.226 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.60.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5] "Description"=Office Live Update v1.5 "Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 19.0.0.226 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default\extensions\ iobitascsurfingprotection@iobit.com ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}] ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-07-30 2471744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-29 460384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}] Advanced SystemCare Surfing Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2015-04-01 672032] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-29 172640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-09-14 610360] "PC-Doctor for Windows localizer"=C:\Program Files\PC-Doctor for Windows\localizer.exe [2009-09-17 95728] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29 14021336] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HPADVISOR"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-29 1685048] "Advanced SystemCare 8"=C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2015-04-08 2429728] "CCleaner Monitoring"=C:\Program Files (x86)\CCleaner\CCleaner64.exe [2015-01-20 7404312] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-10-29 39408] "Google Update"=C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-24 144200] "Google Photos Backup"=C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [2015-10-13 3787080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google+ Auto Backup] C:\Users\Ann\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup] C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2009-10-02 284696] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-01 98304] "HP Software Update"=c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576] "Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2009-09-02 60464] "GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-10-19 3779496] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe Sweex snapshot button monitor.lnk - C:\Program Files (x86)\Sweex\UWD\VMonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-01-14 52272] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableLockWorkstation"=0 "DisableTaskMgr"=0 "DisableChangePassword"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "HideFastUserSwitching"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave1"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 3 months====== 2015-10-28 12:16:11 ----D---- C:\rsit 2015-10-28 12:16:11 ----D---- C:\Program Files\trend micro 2015-10-23 18:31:21 ----A---- C:\Windows\system32\win32k.sys 2015-10-21 15:48:50 ----SHD---- C:\found.000 2015-10-19 12:32:18 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys 2015-10-15 09:09:58 ----A---- C:\Windows\system32\invagent.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\generaltel.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\devinv.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\CompatTelRunner.exe 2015-10-15 09:09:58 ----A---- C:\Windows\system32\appraiser.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\aeinv.dll 2015-10-15 09:09:58 ----A---- C:\Windows\system32\acmigration.dll 2015-10-14 08:29:34 ----A---- C:\Windows\system32\shell32.dll 2015-10-14 08:29:34 ----A---- C:\Windows\system32\ExplorerFrame.dll 2015-10-14 08:29:32 ----A---- C:\Windows\SYSWOW64\shell32.dll 2015-10-14 08:29:31 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll 2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwproxystub.dll 2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwcollector.exe 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\occache.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2015-10-14 08:29:20 ----A---- C:\Windows\system32\iernonce.dll 2015-10-14 08:29:20 ----A---- C:\Windows\system32\ie4uinit.exe 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2015-10-14 08:29:19 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\urlmon.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\occache.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2015-10-14 08:29:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2015-10-14 08:29:18 ----A---- C:\Windows\system32\iedkcs32.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieui.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2015-10-14 08:29:17 ----A---- C:\Windows\system32\msfeeds.dll 2015-10-14 08:29:17 ----A---- C:\Windows\system32\dxtrans.dll 2015-10-14 08:29:16 ----A---- C:\Windows\system32\iesetup.dll 2015-10-14 08:29:16 ----A---- C:\Windows\system32\ieapfltr.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2015-10-14 08:29:15 ----A---- C:\Windows\system32\vbscript.dll 2015-10-14 08:29:15 ----A---- C:\Windows\system32\iertutil.dll 2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\wininet.dll 2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\msrating.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\jsproxy.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieui.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieframe.dll 2015-10-14 08:29:14 ----A---- C:\Windows\system32\dxtmsft.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\webcheck.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmlmedia.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmled.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\jscript.dll 2015-10-14 08:29:13 ----A---- C:\Windows\system32\ieUnatt.exe 2015-10-14 08:29:12 ----A---- C:\Windows\system32\wininet.dll 2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9diag.dll 2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\msrating.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\MshtmlDac.dll 2015-10-14 08:29:11 ----A---- C:\Windows\system32\mshtml.dll 2015-10-14 08:28:44 ----A---- C:\Windows\system32\ntoskrnl.exe 2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2015-10-14 08:28:40 ----A---- C:\Windows\system32\lsasrv.dll 2015-10-14 08:28:40 ----A---- C:\Windows\system32\kernel32.dll 2015-10-14 08:28:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2015-10-14 08:28:39 ----A---- C:\Windows\system32\ntdll.dll 2015-10-14 08:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2015-10-14 08:28:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\wow64.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\winsrv.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\srcore.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\rstrui.exe 2015-10-14 08:28:38 ----A---- C:\Windows\system32\rpcrt4.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\KernelBase.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\kerberos.dll 2015-10-14 08:28:38 ----A---- C:\Windows\system32\conhost.exe 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wow32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\srclient.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\setup16.exe 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\secur32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\schannel.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\credssp.dll 2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64win.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64cpu.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\wdigest.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\TSpkg.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspisrv.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspicli.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\srclient.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\smss.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\secur32.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\schannel.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\ntvdm64.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\ncrypt.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\msv1_0.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\lsass.exe 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2015-10-14 08:28:37 ----A---- C:\Windows\system32\csrsrv.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\cryptbase.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\credssp.dll 2015-10-14 08:28:37 ----A---- C:\Windows\system32\auditpol.exe 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 08:28:35 ----A---- C:\Windows\SYSWOW64\instnm.exe 2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\user.exe 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\msaudite.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\apisetschema.dll 2015-10-14 08:28:34 ----A---- C:\Windows\system32\adtschema.dll 2015-10-14 08:28:33 ----A---- C:\Windows\system32\msobjs.dll 2015-10-14 08:28:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2015-10-14 08:28:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidsvc.dll 2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidapi.dll 2015-10-14 08:28:01 ----A---- C:\Windows\system32\setbcdlocale.dll 2015-10-14 08:28:01 ----A---- C:\Windows\system32\drivers\appid.sys 2015-10-14 08:28:01 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2015-10-13 11:24:00 ----A---- C:\Windows\SYSWOW64\GPhotos.scr 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wups.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuwebv.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups2.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wudriver.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wucltux.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuaueng.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuauclt.exe 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapp.exe 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapi.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll 2015-10-07 19:57:07 ----A---- C:\Windows\system32\WinSetupUI.dll 2015-10-07 19:55:34 ----A---- C:\Windows\system32\icaapi.dll 2015-10-07 19:55:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\ucrtbase.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-09-29 18:19:55 ----D---- C:\Users\Ann\AppData\Roaming\Sun 2015-09-19 08:52:36 ----D---- C:\Program Files (x86)\IncrediMail 2015-09-18 20:48:27 ----D---- C:\Program Files (x86)\Photo Notifier and Animation Creator 2015-09-14 20:02:16 ----A---- C:\Windows\system32\drivers\AtihdW76.sys 2015-09-14 20:02:16 ----A---- C:\Windows\system32\DelayAPO.dll 2015-09-14 19:59:21 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys 2015-09-14 19:59:18 ----A---- C:\Windows\system32\SETF07B.tmp 2015-09-14 19:59:17 ----A---- C:\Windows\system32\RTCOM64.dll 2015-09-14 19:58:58 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2015-09-14 19:58:57 ----A---- C:\Windows\system32\SETEE67.tmp 2015-09-14 19:58:54 ----A---- C:\Windows\system32\RCoInstII64.dll 2015-09-13 10:03:01 ----A---- C:\Windows\SYSWOW64\InkEd.dll 2015-09-13 10:03:01 ----A---- C:\Windows\system32\jnwmon.dll 2015-09-13 10:03:01 ----A---- C:\Windows\system32\InkEd.dll 2015-09-13 10:02:51 ----A---- C:\Windows\system32\schedsvc.dll 2015-09-13 10:02:41 ----A---- C:\Windows\SYSWOW64\tzres.dll 2015-09-13 10:02:41 ----A---- C:\Windows\system32\tzres.dll 2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmcore.dll 2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmapi.dll 2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmcore.dll 2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmapi.dll 2015-09-13 10:01:30 ----A---- C:\Windows\system32\UtcResources.dll 2015-09-13 10:01:30 ----A---- C:\Windows\system32\diagtrack.dll 2015-09-13 10:01:27 ----A---- C:\Windows\system32\tdh.dll 2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\tdh.dll 2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2015-09-13 10:01:25 ----A---- C:\Windows\system32\advapi32.dll 2015-09-13 10:00:40 ----A---- C:\Windows\SYSWOW64\authui.dll 2015-09-13 10:00:40 ----A---- C:\Windows\system32\consent.exe 2015-09-13 10:00:40 ----A---- C:\Windows\system32\authui.dll 2015-09-13 10:00:39 ----A---- C:\Windows\system32\appinfo.dll 2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml6.dll 2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml6.dll 2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml3.dll 2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml6r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml6r.dll 2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml3r.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\lpk.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\lpk.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\fontsub.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\dciman32.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmlib.dll 2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmfd.dll 2015-09-10 07:58:25 ----HD---- C:\$Windows.~BT 2015-08-19 10:53:56 ----A---- C:\Windows\system32\drivers\avgidsha.sys 2015-08-15 02:20:49 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-15 02:20:49 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-14 17:20:03 ----A---- C:\Windows\system32\sysmain.dll 2015-08-14 17:20:00 ----A---- C:\Windows\system32\drivers\mountmgr.sys 2015-08-14 17:19:58 ----A---- C:\Windows\system32\msmmsp.dll 2015-08-14 17:19:12 ----A---- C:\Windows\system32\basesrv.dll 2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\system32\WebClnt.dll 2015-08-14 17:18:10 ----A---- C:\Windows\system32\davclnt.dll 2015-08-14 17:18:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll 2015-08-14 17:18:07 ----A---- C:\Windows\system32\FntCache.dll 2015-08-14 17:18:07 ----A---- C:\Windows\system32\DWrite.dll 2015-08-14 17:18:05 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2015-08-14 17:18:05 ----A---- C:\Windows\system32\d3d10warp.dll 2015-08-14 17:18:03 ----A---- C:\Windows\SYSWOW64\notepad.exe 2015-08-14 17:18:03 ----A---- C:\Windows\system32\notepad.exe 2015-08-14 17:18:03 ----A---- C:\Windows\notepad.exe 2015-08-14 17:18:01 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2015-08-14 17:18:01 ----A---- C:\Windows\system32\mstscax.dll 2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll 2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\aaclient.dll 2015-08-14 17:18:00 ----A---- C:\Windows\system32\tsgqec.dll 2015-08-14 17:18:00 ----A---- C:\Windows\system32\aaclient.dll 2015-08-04 10:32:36 ----A---- C:\Windows\system32\drivers\avgtdia.sys 2015-08-04 10:32:32 ----A---- C:\Windows\system32\drivers\avgmfx64.sys 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRRPTR64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRAPO64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\sltech64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\slprp64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\slcnt64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\sl3apo64.dll 2015-07-29 13:08:48 ----A---- C:\Windows\system32\RtPgEx64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkCfg64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkApi64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtDataProc64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RltkAPO64.dll 2015-07-29 13:08:47 ----A---- C:\Windows\system32\RCoRes64.dat 2015-07-29 13:08:44 ----A---- C:\Windows\system32\FMAPO64.dll 2015-07-29 13:08:43 ----A---- C:\Windows\system32\CX64APO.dll 2015-07-29 13:07:38 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys 2015-07-29 13:06:51 ----A---- C:\Windows\system32\RtNicProp64.dll 2015-07-29 13:06:51 ----A---- C:\Windows\system32\drivers\Rt64win7.sys ======List of files/folders modified in the last 3 months====== 2015-10-28 12:16:20 ----D---- C:\Windows\Prefetch 2015-10-28 12:16:11 ----RD---- C:\Program Files 2015-10-28 12:15:57 ----D---- C:\Windows\Temp 2015-10-28 11:59:32 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat 2015-10-28 09:30:25 ----D---- C:\ProgramData\MFAData 2015-10-27 09:43:20 ----D---- C:\Windows 2015-10-26 20:19:09 ----SHD---- C:\Windows\Installer 2015-10-26 20:19:09 ----SHD---- C:\Config.Msi 2015-10-26 13:37:54 ----D---- C:\Windows\System32 2015-10-26 13:37:54 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-10-26 13:37:53 ----D---- C:\Windows\inf 2015-10-25 22:42:46 ----D---- C:\Windows\system32\config 2015-10-25 19:00:54 ----SHD---- C:\System Volume Information 2015-10-24 09:28:38 ----D---- C:\ProgramData\ProductData 2015-10-24 09:27:11 ----D---- C:\Windows\winsxs 2015-10-23 18:31:19 ----D---- C:\Windows\system32\catroot2 2015-10-23 08:35:01 ----D---- C:\Windows\system32\drivers 2015-10-22 12:59:15 ----D---- C:\Windows\Panther 2015-10-16 20:33:08 ----D---- C:\Windows\SysWOW64 2015-10-16 20:33:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2015-10-16 17:07:06 ----D---- C:\Program Files (x86)\Mozilla Firefox 2015-10-16 02:16:46 ----SD---- C:\Windows\system32\CompatTel 2015-10-16 02:16:45 ----D---- C:\Windows\system32\appraiser 2015-10-16 02:16:45 ----D---- C:\Windows\AppPatch 2015-10-15 20:19:22 ----D---- C:\Windows\rescache 2015-10-15 16:38:50 ----D---- C:\Windows\debug 2015-10-15 02:32:26 ----D---- C:\Windows\SYSWOW64\en-US 2015-10-15 02:32:26 ----D---- C:\Program Files\Internet Explorer 2015-10-15 02:32:25 ----D---- C:\Windows\system32\en-US 2015-10-15 02:32:25 ----D---- C:\Program Files (x86)\Internet Explorer 2015-10-15 02:32:22 ----D---- C:\Windows\system32\CodeIntegrity 2015-10-15 02:32:22 ----D---- C:\Windows\system32\Boot 2015-10-15 02:16:22 ----D---- C:\Windows\system32\MRT 2015-10-15 02:09:54 ----A---- C:\Windows\system32\MRT.exe 2015-10-15 02:09:44 ----D---- C:\ProgramData\Microsoft Help 2015-10-14 08:24:05 ----D---- C:\Users\Ann\AppData\Roaming\OwnRooms 2015-10-09 02:27:20 ----SD---- C:\Windows\system32\GWX 2015-10-09 02:17:07 ----SD---- C:\Windows\SYSWOW64\GWX 2015-10-01 23:56:01 ----D---- C:\Windows\system32\LogFiles 2015-10-01 20:59:12 ----D---- C:\Windows\Tasks 2015-10-01 20:59:12 ----D---- C:\Windows\system32\Tasks 2015-09-29 18:27:37 ----D---- C:\ProgramData\Oracle 2015-09-29 18:21:14 ----D---- C:\Program Files (x86)\Java 2015-09-29 18:20:22 ----D---- C:\Program Files (x86)\Common Files 2015-09-29 18:19:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2015-09-20 02:02:28 ----SD---- C:\ProgramData\Microsoft 2015-09-20 02:01:49 ----D---- C:\Program Files (x86)\Microsoft 2015-09-19 08:52:36 ----D---- C:\Program Files (x86) 2015-09-18 20:16:59 ----D---- C:\Program Files (x86)\HP Games 2015-09-18 20:16:53 ----D---- C:\ProgramData\WildTangent 2015-09-18 20:14:08 ----D---- C:\ProgramData\Skype 2015-09-17 19:07:41 ----D---- C:\Windows\system32\catroot 2015-09-15 18:30:37 ----D---- C:\ProgramData\AVG Security Toolbar 2015-09-15 14:46:14 ----D---- C:\Windows\system32\DriverStore 2015-09-15 14:46:08 ----D---- C:\Program Files\Common Files 2015-09-15 14:45:04 ----HD---- C:\ProgramData 2015-09-14 20:01:22 ----D---- C:\Windows\SYSWOW64\RTCOM 2015-09-14 02:48:26 ----D---- C:\Windows\Microsoft.NET 2015-09-14 02:48:06 ----RSD---- C:\Windows\assembly 2015-09-14 02:38:19 ----D---- C:\Program Files\Windows Journal 2015-09-14 02:38:18 ----D---- C:\Windows\ehome 2015-09-14 02:38:17 ----D---- C:\Windows\PolicyDefinitions 2015-09-13 09:05:35 ----D---- C:\Windows\system32\wfp 2015-09-13 09:05:28 ----D---- C:\Windows\system32\wbem 2015-09-13 09:02:55 ----D---- C:\Windows\servicing 2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\ProductData 2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\IObit 2015-09-13 09:02:05 ----D---- C:\Program Files\Common Files\Microsoft Shared 2015-09-13 09:01:19 ----D---- C:\Windows\registration 2015-09-06 07:55:58 ----A---- C:\Windows\SYSWOW64\bash.exe.stackdump 2015-08-20 08:00:20 ----D---- C:\Windows\Logs 2015-08-20 07:25:13 ----SD---- C:\Users\Ann\AppData\Roaming\Microsoft 2015-08-15 02:39:54 ----D---- C:\Windows\system32\drivers\en-US 2015-08-15 02:19:13 ----D---- C:\Program Files\Microsoft Silverlight 2015-08-15 02:19:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2015-07-31 20:16:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2015-07-31 07:49:00 ----D---- C:\Windows\SYSWOW64\drivers 2015-07-31 07:48:59 ----D---- C:\Windows\system32\drivers\AVG 2015-07-31 06:43:42 ----D---- C:\ProgramData\IObit 2015-07-30 13:25:02 ----D---- C:\Windows\SoftwareDistribution 2015-07-29 14:47:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2015-07-29 13:06:51 ----A---- C:\Windows\system32\RTNUninst64.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928] R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-10-02 537112] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 21184] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-10-19 315312] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464] R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2014-12-25 26528] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-26 339456] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-09-14 96256] R3 AVER_H193;AVerMedia H193 Video Capture; C:\Windows\system32\drivers\AVer888RC_64.sys [2009-11-13 543616] R3 CXCIR;AVerMedia Consumer Infrared Receiver; C:\Windows\system32\DRIVERS\AVer888RCIR_64.sys [2009-11-13 39936] R3 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048] R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-09-14 4514008] R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2014-12-25 2472136] R3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-07-29 986368] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-29 33448] R3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016] S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-11-19 123408] S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-01-30 103448] S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920] S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080] S3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2010-04-19 50688] S3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 VMUVC;Vimicro Camera Service VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [2010-04-29 202112] S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\Windows\system32\drivers\vvftUVC.sys [2008-07-01 303616] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2015-04-03 814880] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-26 237056] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656] R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648] R2 Bonjour Service;Bonjour-service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-07-27 345376] R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2010-09-29 18432] R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128] R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336] R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-08-20 73728] R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-07-29 294616] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136] S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-30 2909472] S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16 269000] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032] S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 114688] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-07 148136] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-01 1255736] S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF-----------------
  24. zottemus
    hallo, mijn pc is sinds lange tijd heel traag en ik moet hem dikwijls terug opstarten omdat hij dikwijls blijft hangen tijdens het surfen, precies of hij kan het zo allemaal niet meer aan. Ik heb het vermoeden dat hij dingen op de achtergrond doet die helemaal niet nodig zijn. Ook krijg ik dikwijls melding dat mijn HP2 (E) schijf vol is,dit gebeurt elke week en ik doe dan format om ze terug leeg te maken. Ook is er iets dat mijn computer op windows 10 wil zetten dat dikwijls begint te lopen en dat schakel ik dan terug uit. Is er iemand die me aan de hand van enkele programma's kan helpen om de boel eens te analyseren en op te schonen? Ik gebruik crapcleaner en advanced system care elke week dan loopt het "iets" sneller voor een dag of 2 maar dat is geen oplossing. Bedankt alvast!
  25. zottemus
    Helaas niet Clarkie, ik kan wel in mijn hotmail gaan en zie daar wel de oudere mails maar ze laden niet in de incredimail. Alles wat nieuw is van mails komt wel netjes binnen in incredimail. Heb het programma verwijderd en enkele keren terug geinstalleerd, ook de oudere versie 2.0 ervan maar blijft hetzelfde. De mappen met alle onderverdelingen van mijn klanten ben ik kwijt. Ik kan wel advanced system care verwijderen van pc als u dat aanraadt ( mijn vriend had dit op mijn pc gezet) maar gaat dit iets veranderen denk je?
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.