Ga naar inhoud

zannata

Lid
  • Items

    91
  • Registratiedatum

  • Laatst bezocht

Berichten die geplaatst zijn door zannata

  1. Logfile of random's system information tool 1.10 (written by random/random)

    Run by David at 2015-06-13 13:59:15

    Microsoft Windows 7 Home Premium  Service Pack 1

    System drive C: has 369 GB (81%) free of 457 GB

    Total RAM: 4044 MB (40% free)

     

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 13:59:20, on 13/06/2015

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v11.0 (11.00.9600.17840)

    Boot mode: Normal

     

    Running processes:

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

    C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe

    C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe

    C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin

    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files\trend micro\David.exe

     

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll

    O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

    O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

    O4 - HKCU\..\Run: [Facebook Update] "C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

    O4 - HKCU\..\Run: [Polar FlowSync] C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    O4 - HKCU\..\Run: [Mio Share] C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio\Mio Share.appref-ms

    O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

    O4 - HKCU\..\Run: [CycloAgent] "C:\Program Files (x86)\CycloAgent\CycloAgent.exe"

    O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

    O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

    O4 - Global Startup: Snapfish PictureMover.lnk = C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

    O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

    O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe

    O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe

    O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe

    O23 - Service: NI LXI Discovery Service (niLXIDiscovery) - National Instruments Corporation - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe

    O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe

    O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

     

    --

    End of file - 13570 bytes

     

    ======Listing Processes======

     

     

     

    \SystemRoot\System32\smss.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    wininit.exe

    winlogon.exe

    C:\Windows\system32\services.exe

    C:\Windows\system32\lsass.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\system32\atiesrxx.exe

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    "C:\Program Files\IDT\WDM\STacSV64.exe"

     

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\Hpservice.exe

    atieclxx

    "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b7d31818-f4d8-46e7-a182-1ebd10447548 -SystemEventPortName:HostProcess-593d0070-652b-4f92-a3ef-75607ae8e3c6 -IoCancelEventPortName:HostProcess-ddf2bff1-0cef-4cea-a2fe-6962d73c4912 -NonStateChangingEventPortName:HostProcess-e5d13e9b-64d1-425d-9a1e-64cf82d8c997 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e46ca5b7-cce1-4dee-9651-494a7e5b34b9 -DeviceGroupId:

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\WLANExt.exe 21379280

    \??\C:\Windows\system32\conhost.exe "-878726354-8759349821794385738593408915-679222591123399377316601267911606622954

    taskeng.exe {1FAE1DD3-7CF5-4D9A-99B9-D560E70F6089}

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k WbioSvcGroup

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    "C:\Program Files\IDT\WDM\AESTSr64.exe"

    C:\Windows\System32\svchost.exe -k utcsvc

    C:\Windows\SysWOW64\ezSharedSvcHost.exe

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    "C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe"

    "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"

    "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"

    "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"

    "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

    C:\Windows\SysWOW64\lkcitdl.exe

    C:\Windows\SysWOW64\lkads.exe

    C:\Windows\SysWOW64\lktsrv.exe

    "C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"

    "C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s

    "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"

    "C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"

    "C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe"

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\servicing\TrustedInstaller.exe

    "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

    "C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe"

    "C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe"

    "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"

    "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\sppsvc.exe

    "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\system32\wbem\wmiprvse.exe

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

    C:\Windows\system32\rundll32.exe appraiser.dll,DoScheduledTelemetryRun

    C:\Windows\system32\SearchIndexer.exe /Embedding

    "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 

    "taskhost.exe"

    taskeng.exe {07AC1BFF-CF0A-4F45-A2FE-55AFE9AD0F33}

    "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2912

    "C:\Windows\system32\Dwm.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe" /Task

    C:\Windows\Explorer.EXE

    "C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding

    C:\Windows\system32\wbem\unsecapp.exe -Embedding

    "C:\Windows\System32\igfxtray.exe" 

    "C:\Windows\System32\hkcmd.exe" 

    "C:\Windows\System32\igfxpers.exe" 

    "C:\Program Files\IDT\WDM\sttray64.exe" 

    "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" 

    "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden

    "C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe" 

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

    "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe"

    "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" 

    "C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe" -det

    "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" 

    "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart

    "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"

    "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 

    "C:\Windows\system32\GWX\GWX.exe" 

    "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" 

    "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" 

    "C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" 

    taskeng.exe {348A558D-2C53-4371-B136-4FD00520C8CB}

    "C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe" 

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --profile-directory="Profile 1"

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5624.0.1429911666\1873509819" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,43 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x6760 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.810.4.1000 --ignored=" --type=renderer " /prefetch:822062411

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StableBookmarksIndexURLsControl/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_40/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5624 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5624.2.1187893029\1080886859" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StableBookmarksIndexURLsControl/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_40/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5624 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5624.6.1308885637\1365781777" /prefetch:673131151

    C:\Windows\system32\svchost.exe -k imgsvc

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

    C:\Windows\TEMP\917154AB-C0F5-4300-A197-37449E5CC52E\dismhost.exe {E5F96218-F674-46AC-BC69-8505482518AE}

    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

    "C:\Windows\system32\SearchFilterHost.exe" 0 552 556 564 65536 560 

    "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden

    "C:\Users\David\Downloads\RSITx64.exe" 

     

    ======Scheduled tasks folder======

     

    C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-244821173-3068459867-560851451-1000Core.job - C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe  /c /nocrashserver 

    C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-244821173-3068459867-560851451-1000UA.job - C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe  /ua /installsource scheduler 

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

    C:\Windows\tasks\HPCeeScheduleForDavid.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe  HPCeeScheduleForDavid (null) 

     

    ======Registry dump======

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

    TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2010-12-07 346952]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

    Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13 460712]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]

    Advanced SystemCare Surfing Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2015-04-01 672032]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13 172968]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

    "IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-12-17 167960]

    "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-12-17 391704]

    "Persistence"=C:\Windows\system32\igfxpers.exe [2010-12-17 418328]

    "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-12-02 524800]

    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-19 2799912]

    "HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-09-26 21720]

     

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-11-22 2736128]

    "Facebook Update"=C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-03 138096]

    "Polar FlowSync"=C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe [2014-11-11 1125376]

    "Mio Share"=C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio\Mio Share.appref-ms [2014-11-24 342]

    "Advanced SystemCare 8"=C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2015-04-08 2429728]

    "CycloAgent"=C:\Program Files (x86)\CycloAgent\CycloAgent.exe [2014-11-19 1752064]

    "GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2015-05-21 1403224]

     

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]

    "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-12-30 336384]

    "NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2013-10-19 113288]

    "HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]

    "HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2010-12-13 318520]

     

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

    Snapfish PictureMover.lnk - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

     

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

    OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

    C:\Windows\system32\igfxdev.dll [2010-12-17 384000]

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

    "SecurityProviders"=credssp.dll

     

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

     

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "DisableLockWorkstation"=0

    "DisableTaskMgr"=0

    "DisableChangePassword"=0

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "ConsentPromptBehaviorAdmin"=5

    "ConsentPromptBehaviorUser"=3

    "EnableUIADesktopToggle"=0

    "dontdisplaylastusername"=0

    "legalnoticecaption"=

    "legalnoticetext"=

    "shutdownwithoutlogon"=1

    "undockwithoutlogon"=1

    "HideFastUserSwitching"=0

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoActiveDesktop"=1

    "NoActiveDesktopChanges"=1

    "ForceActiveDesktopOn"=0

    "EnableShellExecuteHooks"=1

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    "vidc.mrle"=msrle32.dll

    "vidc.msvc"=msvidc32.dll

    "msacm.imaadpcm"=imaadp32.acm

    "msacm.msg711"=msg711.acm

    "msacm.msgsm610"=msgsm32.acm

    "msacm.msadpcm"=msadp32.acm

    "midimapper"=midimap.dll

    "wavemapper"=msacm32.drv

    "VIDC.UYVY"=msyuv.dll

    "VIDC.YUY2"=msyuv.dll

    "VIDC.YVYU"=msyuv.dll

    "VIDC.IYUV"=iyuv_32.dll

    "vidc.i420"=iyuv_32.dll

    "VIDC.YVU9"=tsbyuv.dll

    "msacm.l3acm"=C:\Windows\System32\l3codeca.acm

    "MSVideo8"=VfWWDM32.dll

    "wave"=wdmaud.drv

    "midi"=wdmaud.drv

    "mixer"=wdmaud.drv

    "aux"=wdmaud.drv

    "wave1"=wdmaud.drv

    "midi1"=wdmaud.drv

    "mixer1"=wdmaud.drv

     

    ======File associations======

     

    .js - edit - C:\Windows\System32\Notepad.exe %1

    .js - open - C:\Windows\System32\WScript.exe "%1" %*

     

    ======List of files/folders created in the last 1 month======

     

    2015-06-12 19:11:21 ----A---- C:\Windows\system32\diagtrack.dll

    2015-06-12 19:11:20 ----A---- C:\Windows\system32\kerberos.dll

    2015-06-12 19:11:19 ----A---- C:\Windows\system32\KernelBase.dll

    2015-06-12 19:11:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll

    2015-06-12 19:11:16 ----A---- C:\Windows\system32\lsasrv.dll

    2015-06-12 19:11:16 ----A---- C:\Windows\system32\kernel32.dll

    2015-06-12 19:11:15 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

    2015-06-12 19:11:15 ----A---- C:\Windows\SYSWOW64\advapi32.dll

    2015-06-12 19:11:15 ----A---- C:\Windows\system32\ntoskrnl.exe

    2015-06-12 19:11:15 ----A---- C:\Windows\system32\advapi32.dll

    2015-06-12 19:11:11 ----A---- C:\Windows\system32\ntdll.dll

    2015-06-12 19:11:10 ----A---- C:\Windows\SYSWOW64\tracerpt.exe

    2015-06-12 19:11:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\wow64.dll

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\winsrv.dll

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\tracerpt.exe

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\srcore.dll

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\rstrui.exe

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

    2015-06-12 19:11:10 ----A---- C:\Windows\system32\conhost.exe

    2015-06-12 19:11:09 ----A---- C:\Windows\SYSWOW64\schannel.dll

    2015-06-12 19:11:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll

    2015-06-12 19:11:09 ----A---- C:\Windows\SYSWOW64\msv1_0.dll

    2015-06-12 19:11:09 ----A---- C:\Windows\system32\schannel.dll

    2015-06-12 19:11:09 ----A---- C:\Windows\system32\msv1_0.dll

    2015-06-12 19:11:09 ----A---- C:\Windows\system32\drivers\ksecdd.sys

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\wdigest.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\TSpkg.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\tdh.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\setup16.exe

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\sechost.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\SYSWOW64\logman.exe

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\wdigest.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\TSpkg.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\tdh.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\sspicli.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\smss.exe

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\sechost.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\ncrypt.dll

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\lsass.exe

    2015-06-12 19:11:08 ----A---- C:\Windows\system32\logman.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\typeperf.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\srclient.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\secur32.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\relog.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\diskperf.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\credssp.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\SYSWOW64\auditpol.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\wow64win.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\wow64cpu.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\typeperf.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\sspisrv.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\srclient.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\secur32.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\relog.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\ntvdm64.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\diskperf.exe

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\csrsrv.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\credssp.dll

    2015-06-12 19:11:07 ----A---- C:\Windows\system32\auditpol.exe

    2015-06-12 19:11:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

    2015-06-12 19:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

    2015-06-12 19:11:05 ----A---- C:\Windows\SYSWOW64\wow32.dll

    2015-06-12 19:11:05 ----A---- C:\Windows\SYSWOW64\kernel32.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

    2015-06-12 19:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

    2015-06-12 19:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

    2015-06-12 19:11:03 ----A---- C:\Windows\SYSWOW64\user.exe

    2015-06-12 19:11:03 ----A---- C:\Windows\SYSWOW64\instnm.exe

    2015-06-12 19:11:03 ----A---- C:\Windows\SYSWOW64\apisetschema.dll

    2015-06-12 19:11:03 ----A---- C:\Windows\system32\apisetschema.dll

    2015-06-12 19:11:02 ----A---- C:\Windows\SYSWOW64\adtschema.dll

    2015-06-12 19:11:02 ----A---- C:\Windows\system32\adtschema.dll

    2015-06-12 19:11:01 ----A---- C:\Windows\SYSWOW64\msobjs.dll

    2015-06-12 19:11:01 ----A---- C:\Windows\SYSWOW64\msaudite.dll

    2015-06-12 19:11:01 ----A---- C:\Windows\system32\UtcResources.dll

    2015-06-12 19:11:01 ----A---- C:\Windows\system32\msobjs.dll

    2015-06-12 19:11:01 ----A---- C:\Windows\system32\msaudite.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\wininet.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\vbscript.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\msrating.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\jscript.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\ieui.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\iertutil.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\ieframe.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\wininet.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\vbscript.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\urlmon.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\msrating.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\mshtmlmedia.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\mshtmled.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\MshtmlDac.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\mshtml.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\msfeeds.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\jsproxy.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\jscript9diag.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\jscript9.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\jscript.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieUnatt.exe

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieui.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\iesetup.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\iertutil.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\iernonce.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieframe.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieetwproxystub.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieetwcollectorres.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieetwcollector.exe

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\iedkcs32.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ieapfltr.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\ie4uinit.exe

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\dxtrans.dll

    2015-06-12 18:44:29 ----A---- C:\Windows\system32\dxtmsft.dll

    2015-06-12 18:42:44 ----A---- C:\Windows\SYSWOW64\comctl32.dll

    2015-06-12 18:42:44 ----A---- C:\Windows\system32\comctl32.dll

    2015-06-12 18:41:59 ----A---- C:\Windows\system32\win32k.sys

    2015-06-12 18:41:37 ----A---- C:\Windows\SYSWOW64\wmploc.DLL

    2015-06-12 18:41:37 ----A---- C:\Windows\SYSWOW64\wmp.dll

    2015-06-12 18:41:37 ----A---- C:\Windows\SYSWOW64\spwmp.dll

    2015-06-12 18:41:37 ----A---- C:\Windows\SYSWOW64\dxmasf.dll

    2015-06-12 18:41:37 ----A---- C:\Windows\system32\wmploc.DLL

    2015-06-12 18:41:37 ----A---- C:\Windows\system32\wmp.dll

    2015-06-12 18:41:37 ----A---- C:\Windows\system32\spwmp.dll

    2015-06-12 18:41:37 ----A---- C:\Windows\system32\dxmasf.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\SYSWOW64\wuwebv.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\SYSWOW64\wups.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\SYSWOW64\wudriver.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\SYSWOW64\wuapp.exe

    2015-06-12 18:39:01 ----A---- C:\Windows\SYSWOW64\wuapi.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wuwebv.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wups2.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wups.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wudriver.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wucltux.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wuaueng.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wuauclt.exe

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wuapp.exe

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wuapi.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll

    2015-06-12 18:39:01 ----A---- C:\Windows\system32\WinSetupUI.dll

    2015-06-12 18:37:25 ----A---- C:\Windows\system32\drivers\stream.sys

    2015-06-10 16:57:48 ----D---- C:\Program Files (x86)\GameforgeLive

    2015-06-05 19:19:52 ----A---- C:\Windows\system32\RtNicProp64.dll

    2015-06-05 19:19:52 ----A---- C:\Windows\system32\drivers\Rt64win7.sys

    2015-06-05 19:16:45 ----A---- C:\Windows\SYSWOW64\RtsPStorIcon.dll

    2015-06-05 19:16:45 ----A---- C:\Windows\system32\drivers\RtsPStor.sys

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\invagent.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\generaltel.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\devinv.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\appraiser.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\aepic.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\aepdu.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\aeinv.dll

    2015-06-05 13:54:52 ----A---- C:\Windows\system32\acmigration.dll

    2015-06-01 19:23:53 ----D---- C:\Users\David\AppData\Roaming\Garmin

    2015-06-01 19:22:58 ----D---- C:\ProgramData\Garmin

    2015-06-01 19:22:35 ----D---- C:\Program Files (x86)\Garmin

    2015-05-22 20:11:30 ----A---- C:\Windows\SYSWOW64\certcli.dll

    2015-05-22 20:11:30 ----A---- C:\Windows\system32\certcli.dll

    2015-05-21 21:50:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll

    2015-05-21 21:50:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

    2015-05-21 21:47:51 ----A---- C:\Windows\system32\services.exe

    2015-05-21 21:47:50 ----A---- C:\Windows\SYSWOW64\DWrite.dll

    2015-05-21 21:47:50 ----A---- C:\Windows\system32\FntCache.dll

    2015-05-21 21:47:50 ----A---- C:\Windows\system32\DWrite.dll

    2015-05-21 21:47:37 ----A---- C:\Windows\SYSWOW64\InkEd.dll

    2015-05-21 21:47:37 ----A---- C:\Windows\system32\InkEd.dll

    2015-05-19 14:38:11 ----D---- C:\Program Files (x86)\Zwift

    2015-05-15 14:23:48 ----A---- C:\Windows\SYSWOW64\poqexec.exe

    2015-05-15 14:23:48 ----A---- C:\Windows\system32\poqexec.exe

    2015-05-15 14:23:14 ----A---- C:\Windows\SYSWOW64\shimeng.dll

    2015-05-15 14:23:14 ----A---- C:\Windows\SYSWOW64\sdbinst.exe

    2015-05-15 14:23:14 ----A---- C:\Windows\SYSWOW64\apphelp.dll

    2015-05-15 14:23:14 ----A---- C:\Windows\system32\shimeng.dll

    2015-05-15 14:23:14 ----A---- C:\Windows\system32\sdbinst.exe

    2015-05-15 14:23:14 ----A---- C:\Windows\system32\apphelp.dll

    2015-05-15 14:23:14 ----A---- C:\Windows\system32\aelupsvc.dll

    2015-05-15 14:23:03 ----A---- C:\Windows\SYSWOW64\dwmcore.dll

    2015-05-15 14:23:03 ----A---- C:\Windows\SYSWOW64\dwmapi.dll

    2015-05-15 14:23:03 ----A---- C:\Windows\system32\dwmcore.dll

    2015-05-15 14:23:03 ----A---- C:\Windows\system32\dwmapi.dll

    2015-05-15 14:22:38 ----A---- C:\Windows\SYSWOW64\wpdshext.dll

    2015-05-15 14:22:38 ----A---- C:\Windows\system32\wpdshext.dll

     

    ======List of files/folders modified in the last 1 month======

     

    2015-06-13 13:59:20 ----D---- C:\Windows\Temp

    2015-06-13 13:59:17 ----D---- C:\Program Files\trend micro

    2015-06-13 13:55:57 ----A---- C:\Windows\SYSWOW64\log.txt

    2015-06-13 13:53:54 ----D---- C:\Windows\system32\config

    2015-06-13 13:53:11 ----D---- C:\Windows

    2015-06-12 20:45:06 ----D---- C:\Windows\System32

    2015-06-12 20:45:06 ----A---- C:\Windows\system32\PerfStringBackup.INI

    2015-06-12 20:45:05 ----D---- C:\Windows\inf

    2015-06-12 20:44:41 ----D---- C:\Windows\Tasks

    2015-06-12 20:44:41 ----D---- C:\Windows\system32\Tasks

    2015-06-12 20:43:18 ----D---- C:\Windows\debug

    2015-06-12 20:39:42 ----D---- C:\Windows\winsxs

    2015-06-12 20:35:44 ----D---- C:\Windows\SYSWOW64\nl-NL

    2015-06-12 20:35:44 ----D---- C:\Windows\SysWOW64

    2015-06-12 20:35:44 ----D---- C:\Windows\system32\nl-NL

    2015-06-12 20:35:43 ----D---- C:\Windows\SYSWOW64\en-US

    2015-06-12 20:35:43 ----D---- C:\Windows\system32\en-US

    2015-06-12 20:35:43 ----D---- C:\Windows\system32\drivers

    2015-06-12 20:35:43 ----D---- C:\Windows\PolicyDefinitions

    2015-06-12 20:35:43 ----D---- C:\Windows\AppPatch

    2015-06-12 20:35:43 ----D---- C:\Program Files\Internet Explorer

    2015-06-12 20:35:43 ----D---- C:\Program Files (x86)\Internet Explorer

    2015-06-12 20:19:04 ----D---- C:\Windows\system32\MRT

    2015-06-12 20:19:00 ----SHD---- C:\System Volume Information

    2015-06-12 20:18:54 ----A---- C:\Windows\system32\MRT.exe

    2015-06-12 19:38:46 ----D---- C:\Windows\system32\catroot

    2015-06-12 19:38:40 ----SHD---- C:\Windows\Installer

    2015-06-12 19:38:37 ----RD---- C:\Program Files

    2015-06-12 19:38:34 ----D---- C:\Program Files (x86)

    2015-06-12 19:37:16 ----RD---- C:\Program Files (x86)\Skype

    2015-06-12 19:28:11 ----SHD---- C:\boot

    2015-06-12 19:25:59 ----D---- C:\Program Files\Windows Media Player

    2015-06-12 19:25:59 ----D---- C:\Program Files (x86)\Windows Media Player

    2015-06-12 18:44:25 ----D---- C:\Windows\system32\catroot2

    2015-06-12 16:11:50 ----D---- C:\Windows\system32\wfp

    2015-06-12 16:11:42 ----D---- C:\Windows\system32\wbem

    2015-06-12 16:09:01 ----D---- C:\Windows\system32\CodeIntegrity

    2015-06-12 16:08:54 ----SD---- C:\Windows\system32\GWX

    2015-06-12 16:08:54 ----D---- C:\Windows\system32\DriverStore

    2015-06-12 16:08:53 ----D---- C:\Users\David\AppData\Roaming\ProductData

    2015-06-12 16:08:53 ----D---- C:\Users\David\AppData\Roaming\IObit

    2015-06-12 16:08:52 ----D---- C:\ProgramData\ProductData

    2015-06-12 16:08:52 ----D---- C:\ProgramData\National Instruments

    2015-06-12 16:08:52 ----D---- C:\Program Files\Common Files\Microsoft Shared

    2015-06-12 16:08:51 ----D---- C:\Program Files (x86)\CycloAgent

    2015-06-12 16:07:55 ----D---- C:\Windows\registration

    2015-06-12 16:02:33 ----D---- C:\Windows\SoftwareDistribution

    2015-06-10 11:51:57 ----D---- C:\Windows\Prefetch

    2015-06-07 09:52:05 ----D---- C:\Windows\rescache

    2015-06-05 19:19:45 ----D---- C:\Program Files (x86)\Realtek

    2015-06-05 19:19:16 ----D---- C:\SwSetup

    2015-06-05 19:19:16 ----A---- C:\Windows\system32\RTNUninst64.dll

    2015-06-05 19:17:09 ----D---- C:\Windows\SYSWOW64\sda

    2015-06-05 19:10:16 ----HD---- C:\ProgramData

    2015-06-05 19:10:06 ----RSD---- C:\Windows\assembly

    2015-06-05 19:10:06 ----D---- C:\Windows\Microsoft.NET

    2015-06-05 19:09:27 ----D---- C:\Program Files (x86)\Intel

    2015-06-05 18:35:30 ----SD---- C:\Windows\system32\CompatTel

    2015-06-05 18:35:30 ----D---- C:\Windows\system32\appraiser

    2015-06-01 19:24:02 ----D---- C:\Program Files\DIFX

    2015-06-01 19:22:18 ----D---- C:\ProgramData\Package Cache

    2015-05-26 16:06:37 ----D---- C:\ProgramData\boost_interprocess

    2015-05-25 19:45:49 ----D---- C:\Windows\Logs

    2015-05-22 13:47:04 ----SD---- C:\Windows\SYSWOW64\GWX

    2015-05-17 19:28:15 ----D---- C:\Windows\system32\AdvancedInstallers

    2015-05-17 19:28:14 ----D---- C:\Windows\system32\drivers\UMDF

    2015-05-15 14:12:34 ----D---- C:\ProgramData\IObit

    2015-05-15 13:59:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

    2015-05-15 13:59:34 ----D---- C:\Program Files (x86)\Tacx

     

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

     

    R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2010-08-12 30008]

    R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]

    R0 NIPALK;NIPALK; C:\Windows\System32\drivers\nipalk.sys [2012-12-19 926992]

    R0 nipbcfk;National Instruments Class Upper Filter Driver; C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984]

    R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

    R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-10-08 46368]

    R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

    R2 NiViPxiK;NI-VISA PXI Driver; C:\Windows\System32\drivers\NiViPxiKl.sys [2013-06-19 15200]

    R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2010-08-12 43320]

    R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-12-31 8281600]

    R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-12-31 292864]

    R3 BCM43XX;Stuurprogramma voor de Broadcom 802.11-netwerkadapter; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-05-18 3065408]

    R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2010-12-10 31088]

    R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]

    R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-12-17 12256512]

    R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]

    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2013-10-19 91648]

    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2013-10-19 208896]

    R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2015-06-05 338536]

    R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-06-05 428136]

    R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-12-02 520192]

    R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-19 1451056]

    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2013-09-18 14112]

    R3 WinDriver6;WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [2014-01-26 268800]

    R3 WinUsb;WinUSB Driver; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

    S3 ggflt;SOMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-09-26 16088]

    S3 ggsomc;SOMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsomc.sys [2014-09-26 30424]

    S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-12-17 12256512]

    S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

    S3 nidimk;nidimk; \??\C:\Windows\system32\drivers\nidimkl.sys [2012-01-27 12968]

    S3 niorbk;niorbk; \??\C:\Windows\system32\drivers\niorbkl.sys [2011-07-01 12952]

    S3 nipalfwedl;nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-20 13624]

    S3 nipalusbedl;nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-20 13624]

    S3 NiViPciK;NI-VISA PCI Driver; C:\Windows\System32\drivers\NiViPciKl.sys [2013-06-19 15200]

    S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-08-01 19456]

    S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]

    S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2013-03-06 27336]

    S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\DRIVERS\silabser.sys [2013-03-06 73216]

    S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

    S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

    S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

    S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-08-01 57856]

    S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

     

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

     

    R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2015-04-03 814880]

    R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]

    R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-12-31 203776]

    R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]

    R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]

    R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2010-12-07 249672]

    R2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2015-05-21 717768]

    R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]

    R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

    R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-05 291896]

    R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2010-08-12 30520]

    R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]

    R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]

    R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2015-06-05 2413056]

    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-11-22 73728]

    R2 LkCitadelServer;Lookout Citadel Server; C:\Windows\SysWOW64\lkcitdl.exe [2010-03-05 695136]

    R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\SysWOW64\lkads.exe [2010-06-16 45168]

    R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\SysWOW64\lktsrv.exe [2010-06-16 55416]

    R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-11-23 325656]

    R2 NIDomainService;National Instruments Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2010-06-16 360568]

    R2 niLXIDiscovery;NI LXI Discovery Service; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [2012-11-07 236768]

    R2 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2013-05-11 260976]

    R2 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2013-06-07 90440]

    R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2010-12-02 275968]

    R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-07-14 2253112]

    R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-11-23 2656280]

    R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]

    R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

    S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-03-26 2585376]

    S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]

    S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-12 114688]

    S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-07-20 1255736]

    S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

    S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

    S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

     

    -----------------EOF-----------------
  2. Logfile of random's system information tool 1.10 (written by random/random)

    Run by David at 2015-01-17 07:50:03

    Microsoft Windows 7 Home Premium  Service Pack 1

    System drive C: has 400 GB (88%) free of 457 GB

    Total RAM: 4044 MB (53% free)

     

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 7:50:04, on 17/01/2015

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v11.0 (11.00.9600.17496)

    Boot mode: Normal

     

    Running processes:

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

    C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe

    C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin

    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files\trend micro\David.exe

     

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

    O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

    O4 - HKCU\..\Run: [Facebook Update] "C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

    O4 - HKCU\..\Run: [Polar FlowSync] C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    O4 - HKCU\..\Run: [Mio Share] C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio\Mio Share.appref-ms

    O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

    O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

    O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

    O4 - Global Startup: Snapfish PictureMover.lnk = C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

    O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

    O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe

    O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe

    O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe

    O23 - Service: NI LXI Discovery Service (niLXIDiscovery) - National Instruments Corporation - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe

    O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe

    O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

     

    --

    End of file - 12902 bytes

     

    ======Listing Processes======

     

     

     

    \SystemRoot\System32\smss.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    wininit.exe

    winlogon.exe

    C:\Windows\system32\services.exe

    C:\Windows\system32\lsass.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\system32\atiesrxx.exe

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    "C:\Program Files\IDT\WDM\STacSV64.exe"

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    atieclxx

    C:\Windows\system32\Hpservice.exe

    "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-aacb35a6-a787-433e-b6fe-198eab6b65e0 -SystemEventPortName:HostProcess-4cbe8fcd-8c41-4c6b-a153-5876cc56e4a2 -IoCancelEventPortName:HostProcess-d7c6758c-868a-43a6-9a5e-3621ed1bea2a -NonStateChangingEventPortName:HostProcess-21259d5d-dd52-4779-8be5-e7202728ca2c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a7156873-bfdb-45ac-94e5-f56e5b0ddade -DeviceGroupId:

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\WLANExt.exe 26368960

    \??\C:\Windows\system32\conhost.exe "-823279372-1946508461-1873965059-1690424541871819381-15949642062043756067-114678851

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k WbioSvcGroup

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    "C:\Program Files\IDT\WDM\AESTSr64.exe"

    "C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service

    "C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service

    C:\Windows\SysWOW64\ezSharedSvcHost.exe

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"

    "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"

    "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"

    "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

    C:\Windows\SysWOW64\lkcitdl.exe

    C:\Windows\SysWOW64\lkads.exe

    C:\Windows\SysWOW64\lktsrv.exe

    "C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"

    "C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s

    C:\Windows\system32\svchost.exe -k imgsvc

    "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"

    "C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"

    "C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe"

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    "taskhost.exe"

    "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2784

    taskeng.exe {966C8F40-AD8F-4003-981B-9A2985893077}

    "C:\Windows\system32\Dwm.exe"

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe" /Task

    C:\Windows\Explorer.EXE

    "C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\wbem\unsecapp.exe -Embedding

    "C:\Windows\System32\igfxtray.exe" 

    "C:\Windows\System32\hkcmd.exe" 

    "C:\Windows\System32\igfxpers.exe" 

    "C:\Program Files\IDT\WDM\sttray64.exe" 

    "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" 

    "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden

    "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" 

    "C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe" 

    "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

    "C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe" -det

    "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart

    "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"

    "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 

    "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" 

    "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" 

    "C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" 

    C:\Windows\system32\SearchIndexer.exe /Embedding

    "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"

    taskeng.exe {F0D794B2-3542-43DC-8957-29A680BE5230}

    "C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe" 

    "C:\Program Files\Windows Media Player\wmpnetwk.exe"

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window --flag-switches-begin --flag-switches-end

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4952.0.1422465017\1666017203" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.810.4.1000 --ignored=" --type=renderer " /prefetch:822062411

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLsControl/PasswordGeneration/Disabled/QUIC/EnabledWithPacing/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4952.3.1711640591\932090821" /prefetch:673131151

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

    C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

    "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"

    "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

    C:\Windows\System32\svchost.exe -k secsvcs

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

    "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden

    C:\Windows\splwow64.exe 8192

     

    taskeng.exe {8F926B46-171F-42E4-BA3E-89BD5EF2BBF5}

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLsControl/PasswordGeneration/Disabled/QUIC/EnabledWithPacing/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4952.34.582382507\282136371" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLsControl/PasswordGeneration/Disabled/QUIC/EnabledWithPacing/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4952.35.803822208\1342026206" /prefetch:673131151

    "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 

    "C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540 

    C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

    C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

    "C:\Users\David\Downloads\RSITx64 (1).exe" 

     

    ======Scheduled tasks folder======

     

    C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-244821173-3068459867-560851451-1000Core.job - C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe  /c /nocrashserver 

    C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-244821173-3068459867-560851451-1000UA.job - C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe  /ua /installsource scheduler 

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

    C:\Windows\tasks\HPCeeScheduleForDavid.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe  HPCeeScheduleForDavid (null) 

     

    ======Registry dump======

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

    TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2010-12-07 346952]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

    Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-30 49440]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

    Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

    Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]

    Advanced SystemCare Surfing Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-10-17 669984]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

    "IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-12-17 167960]

    "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-12-17 391704]

    "Persistence"=C:\Windows\system32\igfxpers.exe [2010-12-17 418328]

    "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-12-02 524800]

    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-19 2799912]

    "HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-09-26 21720]

     

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-11-22 2736128]

    "Facebook Update"=C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-03 138096]

    "Polar FlowSync"=C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe [2014-11-11 1125376]

    "Mio Share"=C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio\Mio Share.appref-ms [2014-11-24 342]

    "Advanced SystemCare 8"=C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2014-11-25 2426144]

    "GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-01-09 856904]

     

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]

    "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-12-30 336384]

    "NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2013-10-19 113288]

    "HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]

    "HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2010-12-13 318520]

     

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

    Snapfish PictureMover.lnk - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

     

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

    OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

    C:\Windows\system32\igfxdev.dll [2010-12-17 384000]

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

    "SecurityProviders"=credssp.dll

     

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

     

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "DisableLockWorkstation"=0

    "DisableTaskMgr"=0

    "DisableChangePassword"=0

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "ConsentPromptBehaviorAdmin"=5

    "ConsentPromptBehaviorUser"=3

    "EnableUIADesktopToggle"=0

    "dontdisplaylastusername"=0

    "legalnoticecaption"=

    "legalnoticetext"=

    "shutdownwithoutlogon"=1

    "undockwithoutlogon"=1

    "HideFastUserSwitching"=0

     

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoActiveDesktop"=1

    "NoActiveDesktopChanges"=1

    "ForceActiveDesktopOn"=0

    "EnableShellExecuteHooks"=1

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

     

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

     

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    "vidc.mrle"=msrle32.dll

    "vidc.msvc"=msvidc32.dll

    "msacm.imaadpcm"=imaadp32.acm

    "msacm.msg711"=msg711.acm

    "msacm.msgsm610"=msgsm32.acm

    "msacm.msadpcm"=msadp32.acm

    "midimapper"=midimap.dll

    "wavemapper"=msacm32.drv

    "VIDC.UYVY"=msyuv.dll

    "VIDC.YUY2"=msyuv.dll

    "VIDC.YVYU"=msyuv.dll

    "VIDC.IYUV"=iyuv_32.dll

    "vidc.i420"=iyuv_32.dll

    "VIDC.YVU9"=tsbyuv.dll

    "msacm.l3acm"=C:\Windows\System32\l3codeca.acm

    "MSVideo8"=VfWWDM32.dll

    "wave"=wdmaud.drv

    "midi"=wdmaud.drv

    "mixer"=wdmaud.drv

    "aux"=wdmaud.drv

    "wave1"=wdmaud.drv

    "midi1"=wdmaud.drv

    "mixer1"=wdmaud.drv

     

    ======File associations======

     

    .js - edit - C:\Windows\System32\Notepad.exe %1

    .js - open - C:\Windows\System32\WScript.exe "%1" %*

     

    ======List of files/folders created in the last 1 month======

     

    2015-01-16 19:39:59 ----D---- C:\rsit

    2015-01-15 21:35:54 ----SHD---- C:\Config.Msi

    2015-01-15 21:34:50 ----D---- C:\4e5f20223506b26ac2c84a27259231

    2015-01-14 19:56:59 ----RD---- C:\Program Files (x86)\Skype

    2015-01-14 13:41:05 ----A---- C:\Windows\SYSWOW64\nlaapi.dll

    2015-01-14 13:41:05 ----A---- C:\Windows\SYSWOW64\ncsi.dll

    2015-01-14 13:41:05 ----A---- C:\Windows\system32\nlasvc.dll

    2015-01-14 13:41:04 ----A---- C:\Windows\system32\TSWbPrxy.exe

    2015-01-14 13:41:04 ----A---- C:\Windows\system32\profsvc.dll

    2015-01-14 13:41:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys

    2015-01-14 13:41:03 ----A---- C:\Windows\system32\ntoskrnl.exe

    2015-01-14 13:41:02 ----A---- C:\Windows\SYSWOW64\srclient.dll

    2015-01-14 13:41:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

    2015-01-14 13:41:02 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

    2015-01-14 13:41:02 ----A---- C:\Windows\system32\srcore.dll

    2015-01-14 13:41:02 ----A---- C:\Windows\system32\srclient.dll

    2015-01-14 13:41:02 ----A---- C:\Windows\system32\rstrui.exe

    2015-01-10 10:07:51 ----D---- C:\ProgramData\Intel

    2015-01-09 12:30:06 ----A---- C:\Windows\SYSWOW64\RtsPStorIcon.dll

    2015-01-09 11:00:20 ----A---- C:\Windows\system32\drivers\iaStor.sys

    2015-01-09 11:00:18 ----D---- C:\Users\David\AppData\Roaming\InstallShield

    2015-01-08 19:13:40 ----D---- C:\Program Files\Speccy

    2014-12-20 12:58:12 ----D---- C:\Program Files (x86)\TrainingPeaks

    2014-12-19 14:28:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

    2014-12-19 14:28:51 ----A---- C:\Windows\system32\ieUnatt.exe

    2014-12-18 17:33:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

    2014-12-18 17:33:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll

    2014-12-18 17:33:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

    2014-12-18 17:33:21 ----A---- C:\Windows\system32\ieetwproxystub.dll

    2014-12-18 17:33:21 ----A---- C:\Windows\system32\ieetwcollector.exe

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\system32\iernonce.dll

    2014-12-18 17:33:20 ----A---- C:\Windows\system32\ie4uinit.exe

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\system32\urlmon.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

    2014-12-18 17:33:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll

    2014-12-18 17:33:19 ----A---- C:\Windows\system32\iedkcs32.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\SYSWOW64\ieui.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\system32\msfeeds.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\system32\iesetup.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\system32\ieapfltr.dll

    2014-12-18 17:33:18 ----A---- C:\Windows\system32\dxtrans.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\SYSWOW64\wininet.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\SYSWOW64\jscript9.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\system32\jsproxy.dll

    2014-12-18 17:33:17 ----A---- C:\Windows\system32\iertutil.dll

    2014-12-18 17:33:16 ----A---- C:\Windows\SYSWOW64\msrating.dll

    2014-12-18 17:33:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

    2014-12-18 17:33:16 ----A---- C:\Windows\system32\ieui.dll

    2014-12-18 17:33:16 ----A---- C:\Windows\system32\ieframe.dll

    2014-12-18 17:33:16 ----A---- C:\Windows\system32\dxtmsft.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\wininet.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\vbscript.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\mshtmlmedia.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\mshtmled.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\jscript9diag.dll

    2014-12-18 17:33:14 ----A---- C:\Windows\system32\jscript9.dll

    2014-12-18 17:33:13 ----A---- C:\Windows\system32\msrating.dll

    2014-12-18 17:33:13 ----A---- C:\Windows\system32\MshtmlDac.dll

    2014-12-18 17:33:13 ----A---- C:\Windows\system32\mshtml.dll

    2014-12-18 17:27:02 ----D---- C:\Windows\system32\appraiser

     

    ======List of files/folders modified in the last 1 month======

     

    2015-01-17 07:50:03 ----D---- C:\Windows\Temp

    2015-01-17 07:50:03 ----D---- C:\Program Files\trend micro

    2015-01-17 07:27:42 ----D---- C:\Windows\system32\config

    2015-01-17 07:20:11 ----A---- C:\Windows\SYSWOW64\log.txt

    2015-01-17 07:17:15 ----D---- C:\Windows

    2015-01-16 19:47:16 ----D---- C:\Windows\Prefetch

    2015-01-16 19:25:37 ----D---- C:\Windows\SoftwareDistribution

    2015-01-16 19:24:21 ----D---- C:\Windows\inf

    2015-01-16 19:23:41 ----D---- C:\ProgramData\ProductData

    2015-01-16 19:06:18 ----D---- C:\Windows\system32\catroot2

    2015-01-16 18:59:29 ----D---- C:\Windows\Microsoft.NET

    2015-01-16 18:54:41 ----D---- C:\Windows\debug

    2015-01-15 21:38:44 ----SHD---- C:\Windows\Installer

    2015-01-15 21:37:40 ----D---- C:\Windows\SysWOW64

    2015-01-15 21:37:40 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

    2015-01-15 21:37:34 ----D---- C:\Windows\System32

    2015-01-15 21:37:34 ----A---- C:\Windows\system32\PerfStringBackup.INI

    2015-01-15 21:34:50 ----SHD---- C:\System Volume Information

    2015-01-15 20:35:45 ----D---- C:\Windows\system32\catroot

    2015-01-15 20:35:43 ----D---- C:\Windows\winsxs

    2015-01-15 20:01:25 ----SHD---- C:\boot

    2015-01-15 18:11:16 ----D---- C:\ProgramData\boost_interprocess

    2015-01-14 20:57:05 ----D---- C:\Users\David\AppData\Roaming\Skype

    2015-01-14 19:57:02 ----D---- C:\ProgramData\Skype

    2015-01-14 19:56:59 ----D---- C:\Program Files (x86)\Common Files

    2015-01-14 19:56:59 ----D---- C:\Program Files (x86)

    2015-01-14 19:15:17 ----D---- C:\Windows\Tasks

    2015-01-14 19:15:17 ----D---- C:\Windows\system32\Tasks

    2015-01-14 19:08:13 ----D---- C:\Windows\system32\drivers

    2015-01-14 13:49:47 ----D---- C:\Windows\system32\MRT

    2015-01-14 13:46:43 ----A---- C:\Windows\system32\MRT.exe

    2015-01-10 10:07:51 ----HD---- C:\ProgramData

    2015-01-09 12:30:11 ----D---- C:\Windows\SYSWOW64\sda

    2015-01-09 12:30:07 ----D---- C:\Windows\system32\DriverStore

    2015-01-09 12:30:04 ----D---- C:\Program Files (x86)\Realtek

    2015-01-09 12:29:48 ----D---- C:\SwSetup

    2015-01-09 11:00:50 ----D---- C:\Program Files (x86)\Intel

    2015-01-09 11:00:49 ----RSD---- C:\Windows\assembly

    2015-01-08 20:00:20 ----D---- C:\Program Files (x86)\CyberLink

    2015-01-08 20:00:19 ----D---- C:\ProgramData\CyberLink

    2015-01-08 19:13:40 ----RD---- C:\Program Files

    2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe

    2014-12-22 17:54:07 ----D---- C:\Windows\rescache

    2014-12-19 13:40:04 ----D---- C:\Program Files\Internet Explorer

    2014-12-19 13:40:02 ----D---- C:\Windows\SYSWOW64\nl-NL

    2014-12-19 13:40:02 ----D---- C:\Windows\SYSWOW64\en-US

    2014-12-19 13:40:01 ----D---- C:\Windows\system32\nl-NL

    2014-12-19 13:40:01 ----D---- C:\Windows\system32\en-US

    2014-12-19 13:40:01 ----D---- C:\Windows\PolicyDefinitions

    2014-12-19 13:40:00 ----D---- C:\Program Files (x86)\Internet Explorer

    2014-12-18 17:27:02 ----SD---- C:\Windows\system32\CompatTel

    2014-12-18 06:10:51 ----D---- C:\Windows\system32\wfp

    2014-12-18 06:10:50 ----D---- C:\Windows\system32\CodeIntegrity

    2014-12-18 06:10:50 ----D---- C:\Windows\servicing

    2014-12-18 06:10:50 ----D---- C:\Users\David\AppData\Roaming\ProductData

    2014-12-18 06:10:50 ----D---- C:\ProgramData\National Instruments

    2014-12-18 06:10:50 ----D---- C:\Program Files\Common Files\Microsoft Shared

    2014-12-18 06:10:43 ----D---- C:\Windows\system32\wbem

    2014-12-18 06:10:43 ----D---- C:\Windows\registration

    2014-12-18 06:10:28 ----D---- C:\Windows\AppCompat

    2014-12-18 06:10:27 ----SD---- C:\ProgramData\Microsoft

     

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

     

    R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2010-08-12 30008]

    R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]

    R0 NIPALK;NIPALK; C:\Windows\System32\drivers\nipalk.sys [2012-12-19 926992]

    R0 nipbcfk;National Instruments Class Upper Filter Driver; C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984]

    R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

    R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-10-08 46368]

    R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

    R2 NiViPxiK;NI-VISA PXI Driver; C:\Windows\System32\drivers\NiViPxiKl.sys [2013-06-19 15200]

    R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2010-08-12 43320]

    R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-12-31 8281600]

    R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-12-31 292864]

    R3 BCM43XX;Stuurprogramma voor de Broadcom 802.11-netwerkadapter; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-05-18 3065408]

    R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2010-12-10 31088]

    R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]

    R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-12-17 12256512]

    R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]

    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2013-10-19 91648]

    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2013-10-19 208896]

    R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2015-01-09 338536]

    R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-10-19 406632]

    R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-12-02 520192]

    R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-19 1451056]

    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2013-09-18 14112]

    R3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]

    S3 ggflt;SOMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-09-26 16088]

    S3 ggsomc;SOMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsomc.sys [2014-09-26 30424]

    S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-12-17 12256512]

    S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

    S3 nidimk;nidimk; \??\C:\Windows\system32\drivers\nidimkl.sys [2012-01-27 12968]

    S3 niorbk;niorbk; \??\C:\Windows\system32\drivers\niorbkl.sys [2011-07-01 12952]

    S3 nipalfwedl;nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-19 13624]

    S3 nipalusbedl;nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-19 13624]

    S3 NiViPciK;NI-VISA PCI Driver; C:\Windows\System32\drivers\NiViPciKl.sys [2013-06-19 15200]

    S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-08-01 19456]

    S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]

    S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2013-03-06 27336]

    S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\DRIVERS\silabser.sys [2013-03-06 73216]

    S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

    S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

    S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

    S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-08-01 57856]

    S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

     

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

     

    R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-04 815392]

    R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]

    R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-12-31 203776]

    R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]

    R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]

    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]

    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]

    R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]

    R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2010-12-07 249672]

    R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]

    R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

    R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-05 291896]

    R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2010-08-12 30520]

    R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]

    R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]

    R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2015-01-09 2413056]

    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-11-22 73728]

    R2 LkCitadelServer;Lookout Citadel Server; C:\Windows\SysWOW64\lkcitdl.exe [2010-03-05 695136]

    R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\SysWOW64\lkads.exe [2010-06-16 45168]

    R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\SysWOW64\lktsrv.exe [2010-06-16 55416]

    R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-11-23 325656]

    R2 NIDomainService;National Instruments Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2010-06-16 360568]

    R2 niLXIDiscovery;NI LXI Discovery Service; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [2012-11-07 236768]

    R2 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2013-05-11 260976]

    R2 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2013-06-07 90440]

    R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2010-12-02 275968]

    R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-07-14 2253112]

    R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-11-23 2656280]

    R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]

    R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760]

    S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-11-26 2631456]

    S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]

    S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]

    S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-07-20 1255736]

    S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]

    S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

    S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

    S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

     

    -----------------EOF-----------------
  3. Logfile of random's system information tool 1.10 (written by random/random)

    Run by David at 2015-01-16 19:39:59

    Microsoft Windows 7 Home Premium  Service Pack 1

    System drive C: has 401 GB (88%) free of 457 GB

    Total RAM: 4044 MB (53% free)

     

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 19:40:04, on 16/01/2015

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v11.0 (11.00.9600.17496)

    Boot mode: Normal

     

    Running processes:

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

    C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe

    C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin

    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files\trend micro\David.exe

     

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

    O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

    O4 - HKCU\..\Run: [Facebook Update] "C:\Users\David\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

    O4 - HKCU\..\Run: [Polar FlowSync] C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe

    O4 - HKCU\..\Run: [Mio Share] C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio\Mio Share.appref-ms

    O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

    O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

    O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

    O4 - Global Startup: Snapfish PictureMover.lnk = C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

    O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

    O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe

    O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe

    O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe

    O23 - Service: NI LXI Discovery Service (niLXIDiscovery) - National Instruments Corporation - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe

    O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe

    O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

     

    --

    End of file - 12903 bytes
  4. # AdwCleaner v4.102 - Rapport aangemaakt 24/11/2014 op 19:01:52

    # Laatste Update 23/11/2014 door Xplode

    # Database : 2014-11-24.1 [Live]

    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)

    # Gebruikersnaam : David - DAVID-HP

    # Gestart vanuit : C:\Users\David\Downloads\adwcleaner_4.102.exe

    # Optie : Verwijderen

    ***** [ Services ] *****

    [#] Service Verwijderd : globalUpdate

    [#] Service Verwijderd : globalUpdatem

    Service Verwijderd : IePluginServices

    Service Verwijderd : rcores

    ***** [ Bestanden / Mappen ] *****

    Map Verwijderd : C:\ProgramData\374311380

    Map Verwijderd : C:\ProgramData\IePluginServices

    Map Verwijderd : C:\ProgramData\WindowsMangerProtect

    Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip

    [!] Map Verwijderd : C:\Program Files (x86)\globalUpdate

    Map Verwijderd : C:\Program Files (x86)\SupTab

    Map Verwijderd : C:\Users\David\AppData\Local\globalUpdate

    Map Verwijderd : C:\Users\David\AppData\Local\CrashRpt

    Map Verwijderd : C:\Users\David\AppData\Roaming\omiga-plus

    Map Verwijderd : C:\Users\David\AppData\Roaming\Systweak

    Map Verwijderd : C:\Users\David\AppData\Roaming\zulagames

    Map Verwijderd : C:\Users\David\AppData\Roaming\RHEng

    Map Verwijderd : C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

    Bestand Verwijderd : C:\Windows\rcore.exe

    Bestand Verwijderd : C:\Windows\System32\roboot64.exe

    Bestand Verwijderd : C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage

    Bestand Verwijderd : C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage-journal

    ***** [ Taken ] *****

    Taak Verwijderd : DSite

    Taak Verwijderd : globalUpdateUpdateTaskMachineCore

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-1

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-11

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-2

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-3

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-4

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-6

    Taak Verwijderd : eb2b31c4-2364-4540-9c3f-034372932245-7

    ***** [ Snelkoppelingen ] *****

    Snelkoppeling Gedesinfecteerd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk

    ***** [ Register ] *****

    Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn

    Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

    Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin

    Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10

    Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4

    Waarde Verwijderd : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]

    Waarde Verwijderd : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]

    Waarde Verwijderd : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]

    Waarde Verwijderd : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]

    Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices

    Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect

    Sleutel Verwijderd : HKCU\Software\582d98ce069be47

    Sleutel Verwijderd : HKLM\SOFTWARE\582d98ce069be47

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455415568}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466416668}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}

    Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A836234-186C-41A0-9863-40BECDEDED9F}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}

    Waarde Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3444C3C5-6C56-4A16-A453-832B05BF6EA4}]

    Waarde Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

    Waarde Verwijderd : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455415568}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466416668}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

    Waarde Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

    Sleutel Verwijderd : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EC29EDF6-AD3C-4E1C-A087-D6CB81400C43}

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}

    Gegevens Hersteld : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command

    Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}

    Sleutel Verwijderd : HKCU\Software\1ClickDownload

    Sleutel Verwijderd : HKCU\Software\APN DTX

    Sleutel Verwijderd : HKCU\Software\AVG SafeGuard toolbar

    Sleutel Verwijderd : HKCU\Software\BI

    Sleutel Verwijderd : HKCU\Software\DataMngr

    Sleutel Verwijderd : HKCU\Software\dsiteproducts

    Sleutel Verwijderd : HKCU\Software\GlobalUpdate

    Sleutel Verwijderd : HKCU\Software\InstallCore

    Sleutel Verwijderd : HKCU\Software\InstalledBrowserExtensions

    Sleutel Verwijderd : HKCU\Software\InstalledThirdPartyPrograms

    Sleutel Verwijderd : HKCU\Software\Optimizer Pro

    Sleutel Verwijderd : HKCU\Software\PerformerSoft

    Sleutel Verwijderd : HKCU\Software\qtrax

    Sleutel Verwijderd : HKCU\Software\SafetyNut

    Sleutel Verwijderd : HKCU\Software\SmartBar

    Sleutel Verwijderd : HKCU\Software\Softonic

    Sleutel Verwijderd : HKCU\Software\Somoto

    Sleutel Verwijderd : HKCU\Software\SupHpUISoft

    Sleutel Verwijderd : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

    Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\Crossrider

    Sleutel Verwijderd : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

    Sleutel Verwijderd : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}

    Sleutel Verwijderd : HKLM\SOFTWARE\AVG SafeGuard toolbar

    Sleutel Verwijderd : HKLM\SOFTWARE\AVG Security Toolbar

    Sleutel Verwijderd : HKLM\SOFTWARE\DataMngr

    Sleutel Verwijderd : HKLM\SOFTWARE\GlobalUpdate

    Sleutel Verwijderd : HKLM\SOFTWARE\omiga-plusSoftware

    Sleutel Verwijderd : HKLM\SOFTWARE\PerformerSoft

    Sleutel Verwijderd : HKLM\SOFTWARE\SafetyNut

    Sleutel Verwijderd : HKLM\SOFTWARE\SupDp

    Sleutel Verwijderd : HKLM\SOFTWARE\SupTab

    Sleutel Verwijderd : HKLM\SOFTWARE\supWindowsMangerProtect

    Sleutel Verwijderd : HKLM\SOFTWARE\supWPM

    Sleutel Verwijderd : HKLM\SOFTWARE\systweak

    Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic for Windows

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Tarma Installer

    Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467

    ***** [ Browsers ] *****

    -\\ Internet Explorer v11.0.9600.17420

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [start Page]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [search Page]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [search Bar]

    Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]

    Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

    Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]

    Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Search [searchAssistant]

    Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]

    Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]

    Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]

    Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

    Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]

    Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page]

    -\\ Google Chrome v38.0.2125.111

    *************************

    AdwCleaner[R0].txt - [23138 octets] - [24/11/2014 19:00:12]

    AdwCleaner[s0].txt - [18703 octets] - [24/11/2014 19:01:52]

    ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [18764 octets] ##########

  5. Zoek.exe Version 4.0.0.5 Updated 17-October-2013

    Tool run by David on ma 21/10/2013 at 20:30:27,42.

    Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

    Running in: Normal Mode Internet Access Detected

    Launched: C:\Users\David\Downloads\zoek (1)\zoek.scr [Checkboxes used]

    ==== Older Logs ======================

    C:\zoek-results2013-10-21-181947.log 64498 bytes

    C:\zoek-results2013-10-21-182217.log 4279 bytes

    ==== Deleting CLSID Registry Keys ======================

    ==== Deleting CLSID Registry Values ======================

    ==== Deleting Services ======================

    ==== Chrome Look ======================

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

    gflandjopdloblmlcoiidmncpinmmacn - C:\Users\David\AppData\Roaming\zulagames\zulagames.crx[03/10/2013 19:33]

    nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx[22/04/2013 19:01]

    nhfpefkeidlhbjljfdojcnngjbddgein - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx[17/11/2010 07:36]

    Google Docs - David - Default\Extensions\aohghmighlieiainnegkcijnfilokake

    Google Drive - David - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

    Embed WMPlayer inline - David - Default\Extensions\bamkbfdmckphehgiafpenehgebjgdlli

    YouTube - David - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

    Google Search - David - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

    Zula Games - David - Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn

    Advanced SystemCare Surfing Protection - David - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

    Website Logon - David - Default\Extensions\nhfpefkeidlhbjljfdojcnngjbddgein

    Facebook Notifications - David - Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo

    Chrome In-App Payments service - David - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

    Gmail - David - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

    ==== Set IE to Default ======================

    Old Values:

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

    "Start Page"="http://www.google.com"

    New Values:

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

    "Start Page"="http://www.google.com"

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

    "DefaultScope"="{ec29edf6-ad3c-4e1c-a087-d6cb81400c43}"

    {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

    {d43b3890-80c7-4010-a95d-1e77b5924dc3} Wikipedia Url="http://nl.wikipedia.org/wiki/Special:Search?search={searchTerms}"

    {D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/1553-111073-34115-5/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}"

    {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"

    ==== Reset Google Chrome ======================

    C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

    C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

    ==== shortcuts on Users Desktops ======================

    C:\Users\David\Desktop\App-opstartprogramma van Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --show-app-list

    C:\Users\David\Desktop\ZulaGames.lnk -

    ==== shortcuts on All Users Desktop ======================

    C:\Users\Public\Desktop\Advanced SystemCare 6.lnk - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASC.exe

    C:\Users\Public\Desktop\AVG 1-klik Onderhoud.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe

    C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe

    C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

    C:\Users\Public\Desktop\Device Agent.lnk - C:\Program Files (x86)\TrainingPeaks\Device Agent\TPDeviceAgent.exe

    C:\Users\Public\Desktop\IQO2.lnk - C:\IQO2\Bin\iqo2.exe

    C:\Users\Public\Desktop\MP3jam.lnk - C:\MP3jam\MP3jam.exe

    C:\Users\Public\Desktop\Polar WebSync.lnk - C:\Program Files (x86)\Polar\WebSync\WebSync.exe -normal

    C:\Users\Public\Desktop\TEASI tool.lnk - C:\Program Files (x86)\TEASI tool\TEASItool.exe

    C:\Users\Public\Desktop\Uninstaller.lnk - C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

    ==== shortcuts in Users Start Menu ======================

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\MP3jam.lnk - C:\MP3jam\MP3jam.exe

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk - C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --show-app-list

    ==== shortcuts in All Users Start Menu ======================

    C:\ProgramData\Microsoft\Windows\Start Menu\Device Agent.lnk - C:\Program Files (x86)\TrainingPeaks\Device Agent\TPDeviceAgent.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Help AVG PC TuneUp.lnk - C:\ProgramData\AVG\AWL2014\nl-NL\main_vista_7.chm

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG 1-klik Onderhoud.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Browser Cleaner.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\BrowserCleaner.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Disk Cleaner.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\DiskCleaner.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Disk Doctor.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\DiskDoctor.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Disk Space Explorer.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\DiskExplorer.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Drive Defrag.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\DriveDefrag.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Duplicate Finder.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\DuplicateFinder.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Economy-modus.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\EnergyOptimizer.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Live-optimalisatie.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\SettingCenter.exe /live

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Process Manager.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\ProcessManager.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Program Deactivator.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\ProgramDeactivator.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Registry Cleaner.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\RegistryCleaner.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Registry Defrag.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\RegistryDefrag.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Registry Editor.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\RegistryEditor.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Repair Wizard.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\RepairWizard.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Rescue Center.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\RescueCenter.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Setting Center.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\SettingCenter.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Shortcut Cleaner.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\ShortcutCleaner.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Shredder.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Shredder.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG StartUp Manager.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\StartUpManager.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG StartUp Optimizer.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\StartupOptimizer.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Styler.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Styler.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG System Control.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\SystemControl.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG System Information.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\SystemInformation.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Undelete.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Undelete.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Uninstall Manager.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\UninstallManager.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG Update Wizard.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\UpdateWizard.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014\Alle functies\AVG-optimalisatierapport.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Report.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Device Agent\Device Agent.lnk - C:\Program Files (x86)\TrainingPeaks\Device Agent\TPDeviceAgent.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow\Audio decoder configuration.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\ffdshow\ffdshow.ax",configureAudio

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow\Uninstall ffdshow.lnk - C:\Program Files (x86)\ffdshow\unins000.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow\VFW configuration.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Windows\SysWOW64\ff_vfw.dll",configureVFW

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow\Video decoder configuration.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\ffdshow\ffdshow.ax",configure

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polar\Polar WebSync\Polar WebSync.lnk - C:\Program Files (x86)\Polar\WebSync\WebSync.exe -normal

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Polar WebSync.lnk - C:\Program Files (x86)\Polar\WebSync\WebSync.exe -normal

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TEASI tool\TEASI tool.lnk - C:\Program Files (x86)\TEASI tool\TEASItool.exe

    ==== shortcuts in Quick Launch ======================

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9d91276b0be3e46b\pinned.lnk -

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Uninstall Programs.lnk - C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\App-opstartprogramma van Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --show-app-list

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AVG PC TuneUp - Start Center.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\hpDST.lnk - C:\Program Files (x86)\Hewlett-Packard\Setup Manager\hpDST.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\IQO2.lnk - C:\IQO2\Bin\iqo2.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Skype.lnk - C:\Program Files (x86)\Online Services\Skype\SkypeSetup.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Softonic.lnk - C:\Users\David\AppData\Local\Softonic\Softonic.exe

    C:\Users\David\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

    C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

    C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

    ==== Empty IE Cache ======================

    C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\David\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\David\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

    C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    ==== Empty FireFox Cache ======================

    No FireFox Profiles found

    ==== Empty Chrome Cache ======================

    C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\Windows\Temp successfully emptied

    C:\Users\David\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== EOF on ma 21/10/2013 at 20:41:40,11 ======================

  6. Logfile of random's system information tool 1.09 (written by random/random)

    Run by David at 2013-10-20 16:49:53

    Microsoft Windows 7 Home Premium Service Pack 1

    System drive C: has 407 GB (89%) free of 457 GB

    Total RAM: 4044 MB (53% free)

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 16:49:59, on 20/10/2013

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v10.0 (10.00.9200.16720)

    Boot mode: Normal

    Running processes:

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files\trend micro\David.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Triple Search

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

    F2 - REG:system.ini: UserInit=userinit.exe

    O2 - BHO: CrossriderApp0044168 - {11111111-1111-1111-1111-110411411168} - C:\Program Files (x86)\a2zLyrics-16\a2zLyrics-16-bho.dll

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Zula Games - {2A836234-186C-41A0-9863-40BECDEDED9F} - C:\Program Files (x86)\Zula Games\ScriptHost.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll

    O2 - BHO: Speed Analysis 3 - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll

    O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~2\BROWER~1\ASCPLU~1.DLL

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll

    O3 - Toolbar: (no name) - {3444c3c5-6c56-4a16-a453-832b05bf6ea4} - (no file)

    O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

    O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

    O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"

    O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY

    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

    O4 - HKCU\..\Run: [softonic for Windows] "C:\Users\David\AppData\Local\Softonic\Softonic.exe" -minimize

    O4 - HKCU\..\Run: [sDP] C:\Users\David\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

    O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

    O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

    O4 - Global Startup: Polar WebSync.lnk = C:\Program Files (x86)\Polar\WebSync\WebSync.exe

    O4 - Global Startup: Snapfish PictureMover.lnk = C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll

    O20 - AppInit_DLLs: C:\PROGRA~3\Wincert\WIN32C~1.DLL c:\progra~2\movies~1\safety~1\safety~2.dll

    O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

    O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

    O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

    O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: Polar Daemon - Unknown owner - C:\Program Files (x86)\Polar\Daemon\polard.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: SafetyNut Manager (SafetyNutManager) - SafetyNut Inc. - C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: vToolbarUpdater17.0.12 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --

    End of file - 13118 bytes

    ======Listing Processes======

    \SystemRoot\System32\smss.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    wininit.exe

    winlogon.exe

    C:\Windows\system32\services.exe

    C:\Windows\system32\lsass.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\system32\atiesrxx.exe

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    "C:\Program Files\IDT\WDM\STacSV64.exe"

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\Hpservice.exe

    atieclxx

    "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9eda74c1-a540-4ce5-9227-20217e5a41da -SystemEventPortName:HostProcess-322f9ef3-b0b8-4d02-9ace-9eb64d1a7823 -IoCancelEventPortName:HostProcess-5cacbba9-c4b2-4fb1-b45d-387d49b75e1e -NonStateChangingEventPortName:HostProcess-6549f764-a5a6-42a3-b90a-e7b1d3aa4062 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:345b507f-2119-4a61-b1c0-d548f52e4e9c -DeviceGroupId:

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\WLANExt.exe 19631824

    \??\C:\Windows\system32\conhost.exe "20315036701983571753-1035877316-1884811910-815762397-7591679894967231311178425475

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k WbioSvcGroup

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    "C:\Program Files\IDT\WDM\AESTSr64.exe"

    "C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe"

    "C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe"

    "taskhost.exe"

    taskeng.exe {43BB35AC-BC91-4DF6-8505-24E3DBE6EF91}

    "C:\Windows\system32\Dwm.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"

    "C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe"

    C:\Windows\Explorer.EXE

    "C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding

    "C:\Windows\System32\igfxtray.exe"

    "C:\Windows\System32\hkcmd.exe"

    "C:\Windows\System32\igfxpers.exe"

    "C:\Program Files\IDT\WDM\sttray64.exe"

    "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

    "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden

    "C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe"

    C:\Windows\SysWOW64\ezSharedSvcHost.exe

    "C:\Program Files (x86)\AVG\AVG2014\avgemca.exe"

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"

    "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"

    "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

    "C:\Program Files (x86)\Polar\Daemon\polard.exe"

    "C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe"

    C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=8f989e59-c13d-4330-bfbd-6009cc519b10 /coreSdkOptions=4108 /logConfFile="C:\Windows\TEMP\bcd2633c-fd88-4d15-9157-307c4dd4083a-e98-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\"

    C:\Windows\system32\svchost.exe -k imgsvc

    "C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe" -monitor 500

    "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"

    C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=08ff5c76-a083-4967-a374-c56bd16fe421 /coreSdkOptions=4096 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\4e90255c-afc4-4617-89a1-ee053b243937-cfc-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\"

    "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe"

    "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\loggingserver.exe" 72648 "C:\ProgramData\AVG SafeGuard toolbar\Logger\logger.properties"

    \??\C:\Windows\system32\conhost.exe "-1636354110-1898486531-200029911-214149508110516088431606674951-287598761-1214116730

    C:\Windows\system32\SearchIndexer.exe /Embedding

    C:\Windows\system32\wbem\wmiprvse.exe

    "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"

    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

    "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"

    "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

    "C:\Program Files\Windows Media Player\wmpnetwk.exe"

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

    "LogonUI.exe" /flags:0x0

    "C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.exe"

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5656.0.1227580162\895991098" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.810.4.1000 --ignored=" --type=renderer " /prefetch:822062411

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="5656.1.1090504074\387873449" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.2.1152245408\1441907354" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.3.1048210710\286159059" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.4.1981903221\1783525885" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.5.1221404684\1210567726" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin/ASCPlugin_Protect.dll" --lang=nl --channel="5656.7.151739104\553609480" /prefetch:-390060480

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.18.1191954008\663940164" /prefetch:673131151

    "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

    "C:\Windows\system32\SearchFilterHost.exe" 0 540 544 552 65536 548

    C:\Windows\system32\sppsvc.exe

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group3 pct:10b stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_84/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5656.19.1378831409\1046982436" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5656.20.1569382089\778216562" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

    "C:\Users\David\Downloads\RSITx64.exe"

    C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

    ======Scheduled tasks folder======

    C:\Windows\tasks\a2zLyrics-16-chromeinstaller.job

    C:\Windows\tasks\a2zLyrics-16-codedownloader.job

    C:\Windows\tasks\a2zLyrics-16-enabler.job

    C:\Windows\tasks\a2zLyrics-16-updater.job

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

    C:\Windows\tasks\HPCeeScheduleForDavid.job

    C:\Windows\tasks\PC Performer_DEFAULT.job

    C:\Windows\tasks\PC Performer_UPDATES.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411411168}]

    a2zLyrics-16 - C:\Program Files (x86)\a2zLyrics-16\a2zLyrics-16-bho64.dll [2013-10-17 954368]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}]

    Zula Games - C:\Program Files (x86)\Zula Games\ScriptHost64.dll [2013-10-03 381760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

    TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2010-12-07 346952]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]

    Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll [2013-10-03 381760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-30 49440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411411168}]

    a2zLyrics-16 - C:\Program Files (x86)\a2zLyrics-16\a2zLyrics-16-bho.dll [2013-10-17 589824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

    Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}]

    Zula Games - C:\Program Files (x86)\Zula Games\ScriptHost.dll [2013-10-03 400704]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-18 463272]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

    AVG SafeGuard toolbar - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll [2013-10-08 3353624]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]

    Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll [2013-10-03 400704]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]

    Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\ADVANC~2\BROWER~1\ASCPLU~1.DLL [2013-04-24 659264]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-18 171944]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

    {95B7759C-8C7F-4BF1-B163-73684A933233} - AVG SafeGuard toolbar - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll [2013-10-08 3353624]

    {3444c3c5-6c56-4a16-a453-832b05bf6ea4}

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

    "IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-12-17 167960]

    "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-12-17 391704]

    "Persistence"=C:\Windows\system32\igfxpers.exe [2010-12-17 418328]

    "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-12-02 524800]

    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-19 2799912]

    "HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-11-22 2736128]

    "Softonic for Windows"=C:\Users\David\AppData\Local\Softonic\Softonic.exe [2013-07-01 3961328]

    "SDP"=C:\Users\David\AppData\Local\FilesFrog Update Checker\update_checker.exe [2013-01-31 201808]

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-09-13 283160]

    "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-12-30 336384]

    "NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2013-10-19 113288]

    "HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]

    "Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-12-13 61112]

    "HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2010-12-13 318520]

    "vProt"=C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2013-10-08 2404376]

    "AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-10-07 4908592]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

    Polar WebSync.lnk - C:\Program Files (x86)\Polar\WebSync\WebSync.exe

    Snapfish PictureMover.lnk - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

    MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

    OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

    "AppInit_DLLs"="C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\MOVIES~1\SAFETY~1\x64\SAFETY~2.DLL "

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

    C:\Windows\system32\igfxdev.dll [2010-12-17 384000]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

    WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

    "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2011-01-30 52920]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

    "SecurityProviders"=credssp.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "DisableLockWorkstation"=0

    "DisableTaskMgr"=0

    "DisableChangePassword"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "ConsentPromptBehaviorAdmin"=5

    "ConsentPromptBehaviorUser"=3

    "EnableUIADesktopToggle"=0

    "dontdisplaylastusername"=0

    "legalnoticecaption"=

    "legalnoticetext"=

    "shutdownwithoutlogon"=1

    "undockwithoutlogon"=1

    "HideFastUserSwitching"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoActiveDesktop"=1

    "NoActiveDesktopChanges"=1

    "ForceActiveDesktopOn"=0

    "EnableShellExecuteHooks"=1

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]

    "Debugger="tasklist.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]

    "Debugger="tasklist.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]

    "Debugger="tasklist.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]

    "Debugger="tasklist.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    "vidc.mrle"=msrle32.dll

    "vidc.msvc"=msvidc32.dll

    "msacm.imaadpcm"=imaadp32.acm

    "msacm.msg711"=msg711.acm

    "msacm.msgsm610"=msgsm32.acm

    "msacm.msadpcm"=msadp32.acm

    "midimapper"=midimap.dll

    "wavemapper"=msacm32.drv

    "VIDC.UYVY"=msyuv.dll

    "VIDC.YUY2"=msyuv.dll

    "VIDC.YVYU"=msyuv.dll

    "VIDC.IYUV"=iyuv_32.dll

    "vidc.i420"=iyuv_32.dll

    "VIDC.YVU9"=tsbyuv.dll

    "msacm.l3acm"=C:\Windows\System32\l3codeca.acm

    "MSVideo8"=VfWWDM32.dll

    "wave"=wdmaud.drv

    "midi"=wdmaud.drv

    "mixer"=wdmaud.drv

    "aux"=wdmaud.drv

    "wave1"=wdmaud.drv

    "midi1"=wdmaud.drv

    "mixer1"=wdmaud.drv

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1

    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 month======

    2013-10-20 16:49:53 ----D---- C:\rsit

    2013-10-20 16:49:53 ----D---- C:\Program Files\trend micro

    2013-10-19 15:46:47 ----D---- C:\Program Files (x86)\Speed Analysis 3

    2013-10-19 15:46:47 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll

    2013-10-19 15:46:46 ----D---- C:\Program Files (x86)\Zula Games

    2013-10-19 15:46:46 ----D---- C:\Program Files (x86)\PC Performer

    2013-10-19 15:46:46 ----D---- C:\Program Files (x86)\ffdshow

    2013-10-19 15:46:45 ----D---- C:\Program Files (x86)\Haali

    2013-10-19 14:24:15 ----D---- C:\Program Files (x86)\TrainingPeaks

    2013-10-19 13:56:44 ----D---- C:\ProgramData\Synaptics

    2013-10-19 10:14:44 ----A---- C:\Windows\system32\nusb3co2.dll

    2013-10-19 10:14:44 ----A---- C:\Windows\system32\drivers\nusb3xhc.sys

    2013-10-19 10:14:44 ----A---- C:\Windows\system32\drivers\nusb3hub.sys

    2013-10-19 10:12:13 ----A---- C:\Windows\SYSWOW64\SynTPEnhPS.dll

    2013-10-19 10:12:12 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll

    2013-10-19 10:12:12 ----A---- C:\Windows\system32\SynTPCo9.dll

    2013-10-19 10:12:12 ----A---- C:\Windows\system32\SynTPAPI.dll

    2013-10-19 10:12:12 ----A---- C:\Windows\system32\drivers\SynTP.sys

    2013-10-19 10:12:09 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll

    2013-10-19 10:12:09 ----A---- C:\Windows\SYSWOW64\SynCOM.dll

    2013-10-19 10:12:09 ----A---- C:\Windows\system32\SynCtrl.dll

    2013-10-19 08:54:58 ----A---- C:\Windows\system32\TURegOpt.exe

    2013-10-19 08:54:57 ----A---- C:\Windows\system32\authuitu.dll

    2013-10-19 08:54:56 ----A---- C:\Windows\SYSWOW64\authuitu.dll

    2013-10-19 08:54:35 ----D---- C:\Users\David\AppData\Roaming\AVG

    2013-10-19 08:54:05 ----D---- C:\ProgramData\AVG

    2013-10-19 08:53:51 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

    2013-10-19 08:46:06 ----D---- C:\Users\David\AppData\Roaming\AVG2014

    2013-10-19 08:45:30 ----D---- C:\Users\David\AppData\Roaming\TuneUp Software

    2013-10-19 08:45:07 ----HD---- C:\$AVG

    2013-10-19 08:45:07 ----D---- C:\ProgramData\AVG2014

    2013-10-19 08:44:42 ----D---- C:\Program Files (x86)\AVG

    2013-10-19 08:41:24 ----D---- C:\ProgramData\MFAData

    2013-10-18 15:29:08 ----D---- C:\Program Files (x86)\MyPC Backup

    2013-10-18 15:28:41 ----D---- C:\Users\David\AppData\Roaming\SpeedAnalysis3

    2013-10-18 15:28:41 ----D---- C:\Users\David\AppData\Roaming\PerformerSoft

    2013-10-18 15:28:41 ----D---- C:\Users\David\AppData\Roaming\Mozilla

    2013-10-18 15:28:39 ----D---- C:\ProgramData\IBUpdaterService

    2013-10-18 15:28:38 ----D---- C:\Users\David\AppData\Roaming\zulagames

    2013-10-18 15:28:38 ----D---- C:\Users\David\AppData\Roaming\File Scout

    2013-10-17 18:46:54 ----D---- C:\Program Files (x86)\a2zLyrics-16

    2013-10-17 18:46:36 ----D---- C:\Users\David\AppData\Roaming\Mp3jam

    2013-10-17 18:46:14 ----D---- C:\MP3jam

    2013-10-16 21:19:06 ----A---- C:\Windows\SYSWOW64\ieui.dll

    2013-10-16 21:19:06 ----A---- C:\Windows\system32\ieui.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

    2013-10-16 21:19:05 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\SYSWOW64\iesetup.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\SYSWOW64\iernonce.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

    2013-10-16 21:19:05 ----A---- C:\Windows\system32\iesysprep.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\system32\iesetup.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\system32\iernonce.dll

    2013-10-16 21:19:05 ----A---- C:\Windows\system32\ie4uinit.exe

    2013-10-16 21:19:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

    2013-10-16 21:19:04 ----A---- C:\Windows\SYSWOW64\jscript.dll

    2013-10-16 21:19:04 ----A---- C:\Windows\system32\msfeeds.dll

    2013-10-16 21:19:04 ----A---- C:\Windows\system32\jscript.dll

    2013-10-16 21:19:04 ----A---- C:\Windows\system32\iertutil.dll

    2013-10-16 21:19:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll

    2013-10-16 21:19:02 ----A---- C:\Windows\SYSWOW64\jscript9.dll

    2013-10-16 21:19:02 ----A---- C:\Windows\system32\urlmon.dll

    2013-10-16 21:19:02 ----A---- C:\Windows\system32\jscript9.dll

    2013-10-16 21:19:01 ----A---- C:\Windows\SYSWOW64\wininet.dll

    2013-10-16 21:19:01 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

    2013-10-16 21:19:01 ----A---- C:\Windows\system32\jsproxy.dll

    2013-10-16 21:19:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll

    2013-10-16 21:19:00 ----A---- C:\Windows\system32\wininet.dll

    2013-10-16 21:18:59 ----A---- C:\Windows\system32\ieframe.dll

    2013-10-16 21:18:58 ----A---- C:\Windows\system32\mshtml.dll

    2013-10-16 21:18:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll

    2013-10-16 19:12:16 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll

    2013-10-16 19:12:16 ----A---- C:\Windows\system32\WindowsCodecs.dll

    2013-10-16 17:11:17 ----D---- C:\Users\David\AppData\Roaming\Polar WebSync

    2013-10-16 17:10:44 ----D---- C:\Program Files (x86)\Polar

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\wextract.exe

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\webcheck.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\msrating.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\msls31.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\inseng.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\iexpress.exe

    2013-10-15 11:36:28 ----A---- C:\Windows\SYSWOW64\elshyph.dll

    2013-10-15 11:36:28 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

    2013-10-15 11:36:28 ----A---- C:\Windows\system32\elshyph.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\url.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\occache.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\mshta.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\imgutil.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\iepeers.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\icardie.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\wextract.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\webcheck.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\vbscript.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\url.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\pngfilt.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\occache.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\msrating.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\msls31.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\mshtmlmedia.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\mshtmler.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\mshtmled.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\mshta.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\msfeedssync.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\msfeedsbs.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\licmgr10.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\inseng.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\imgutil.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\iexpress.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\ieUnatt.exe

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\iepeers.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\iedkcs32.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\ieapfltr.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\ieapfltr.dat

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\IEAdvpack.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\icardie.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\dxtrans.dll

    2013-10-15 11:36:27 ----A---- C:\Windows\system32\dxtmsft.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

    2013-10-15 11:35:40 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\dxgi.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\DWrite.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10core.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d3d10.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\SYSWOW64\d2d1.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\XpsPrint.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\XpsGdiConverter.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\WMPhoto.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\UIAnimation.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\msmpeg2vdec.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\FntCache.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\dxgi.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\DWrite.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10warp.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10level9.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10core.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10_1core.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10_1.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d3d10.dll

    2013-10-15 11:35:40 ----A---- C:\Windows\system32\d2d1.dll

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbuhci.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbport.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbohci.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbhub.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbehci.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbd.sys

    2013-10-11 16:26:16 ----A---- C:\Windows\system32\drivers\usbccgp.sys

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\lpk.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\fontsub.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\dciman32.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\comctl32.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\atmlib.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\SYSWOW64\atmfd.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\lpk.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\fontsub.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\dciman32.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\comctl32.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\atmlib.dll

    2013-10-10 16:27:39 ----A---- C:\Windows\system32\atmfd.dll

    2013-10-10 16:27:38 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

    2013-10-10 16:27:30 ----A---- C:\Windows\system32\drivers\usbvideo.sys

    2013-10-10 16:27:30 ----A---- C:\Windows\system32\drivers\usbcir.sys

    2013-10-10 16:27:29 ----A---- C:\Windows\system32\drivers\usbscan.sys

    2013-10-10 16:27:29 ----A---- C:\Windows\system32\drivers\hidparse.sys

    2013-10-10 16:27:29 ----A---- C:\Windows\system32\drivers\hidclass.sys

    2013-10-10 16:27:21 ----A---- C:\Windows\SYSWOW64\WebClnt.dll

    2013-10-10 16:27:21 ----A---- C:\Windows\SYSWOW64\davclnt.dll

    2013-10-10 16:27:21 ----A---- C:\Windows\system32\WebClnt.dll

    2013-10-10 16:27:21 ----A---- C:\Windows\system32\drivers\mrxdav.sys

    2013-10-10 16:27:21 ----A---- C:\Windows\system32\davclnt.dll

    2013-10-10 16:26:54 ----A---- C:\Windows\SYSWOW64\mswsock.dll

    2013-10-10 16:26:54 ----A---- C:\Windows\system32\mswsock.dll

    2013-10-10 16:26:54 ----A---- C:\Windows\system32\drivers\tcpip.sys

    2013-10-10 16:26:54 ----A---- C:\Windows\system32\drivers\afd.sys

    2013-10-10 16:26:28 ----A---- C:\Windows\system32\win32k.sys

    2013-10-10 16:26:24 ----A---- C:\Windows\system32\ntoskrnl.exe

    2013-10-10 16:26:24 ----A---- C:\Windows\system32\advapi32.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\wow32.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\user.exe

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\tdh.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\setup16.exe

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\instnm.exe

    2013-10-10 16:26:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\system32\wow64.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\system32\tdh.dll

    2013-10-10 16:26:23 ----A---- C:\Windows\system32\ntdll.dll

    2013-10-10 16:25:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll

    2013-10-10 16:25:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

    2013-10-10 16:25:37 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

    2013-10-10 16:25:36 ----A---- C:\Windows\system32\scavengeui.dll

    2013-10-07 20:43:16 ----D---- C:\ProgramData\Wincert

    2013-10-07 20:42:09 ----D---- C:\Program Files (x86)\Movies Toolbar

    2013-10-07 20:42:08 ----D---- C:\ProgramData\SafetyNut

    2013-10-04 20:22:36 ----D---- C:\Program Files (x86)\TEASI tool

    2013-09-25 21:07:30 ----A---- C:\Windows\system32\drivers\avgdiska.sys

    2013-09-24 16:29:23 ----N---- C:\Windows\system32\MpSigStub.exe

    ======List of files/folders modified in the last 1 month======

    2013-10-20 16:49:59 ----D---- C:\Windows\Temp

    2013-10-20 16:49:53 ----RD---- C:\Program Files

    2013-10-20 16:40:49 ----D---- C:\Windows\system32\Tasks

    2013-10-20 11:27:53 ----D---- C:\Windows\inf

    2013-10-20 11:27:53 ----D---- C:\Windows

    2013-10-20 11:13:41 ----D---- C:\Windows\system32\config

    2013-10-20 11:01:48 ----A---- C:\Windows\SYSWOW64\log.txt

    2013-10-19 15:46:57 ----D---- C:\Windows\Tasks

    2013-10-19 15:46:47 ----RD---- C:\Program Files (x86)

    2013-10-19 15:46:47 ----D---- C:\Windows\SysWOW64

    2013-10-19 15:35:21 ----SHD---- C:\Windows\Installer

    2013-10-19 14:24:21 ----D---- C:\Windows\system32\DriverStore

    2013-10-19 14:24:04 ----SHD---- C:\System Volume Information

    2013-10-19 13:56:44 ----HD---- C:\ProgramData

    2013-10-19 13:56:02 ----D---- C:\Windows\System32

    2013-10-19 10:16:17 ----D---- C:\Windows\system32\drivers

    2013-10-19 10:15:26 ----D---- C:\Windows\system32\catroot

    2013-10-19 10:14:44 ----D---- C:\SwSetup

    2013-10-19 10:13:11 ----D---- C:\Windows\system32\catroot2

    2013-10-19 10:11:34 ----A---- C:\Windows\system32\SynCOM.dll

    2013-10-19 09:50:14 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt

    2013-10-19 09:28:25 ----D---- C:\Windows\SoftwareDistribution

    2013-10-19 09:24:55 ----D---- C:\Windows\debug

    2013-10-19 08:58:23 ----HDC---- C:\ProgramData\{B142387D-D2E3-4647-B654-366ECDD5923E}

    2013-10-19 08:58:23 ----D---- C:\Users\David\AppData\Roaming\hpqLog

    2013-10-19 08:58:22 ----D---- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}

    2013-10-19 08:32:02 ----SHD---- C:\boot

    2013-10-19 08:22:48 ----A---- C:\Windows\system32\PerfStringBackup.INI

    2013-10-17 20:11:03 ----D---- C:\Windows\Panther

    2013-10-17 19:59:02 ----D---- C:\Windows\Prefetch

    2013-10-17 15:56:44 ----SD---- C:\ProgramData\Microsoft

    2013-10-17 15:50:17 ----D---- C:\Windows\winsxs

    2013-10-17 15:49:22 ----D---- C:\Program Files\Internet Explorer

    2013-10-17 15:49:22 ----D---- C:\Program Files (x86)\Internet Explorer

    2013-10-16 07:58:53 ----D---- C:\Windows\Microsoft.NET

    2013-10-16 07:58:52 ----RSD---- C:\Windows\assembly

    2013-10-15 12:02:32 ----D---- C:\Windows\Logs

    2013-10-15 11:42:55 ----D---- C:\Windows\SYSWOW64\nl-NL

    2013-10-15 11:42:55 ----D---- C:\Windows\system32\nl-NL

    2013-10-15 11:42:54 ----D---- C:\Windows\SYSWOW64\wbem

    2013-10-15 11:42:54 ----D---- C:\Windows\SYSWOW64\migration

    2013-10-15 11:42:54 ----D---- C:\Windows\SYSWOW64\en-US

    2013-10-15 11:42:53 ----D---- C:\Windows\system32\wbem

    2013-10-15 11:42:53 ----D---- C:\Windows\system32\migration

    2013-10-15 11:42:53 ----D---- C:\Windows\system32\en-US

    2013-10-15 11:42:53 ----D---- C:\Windows\PolicyDefinitions

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\zh-TW

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\zh-HK

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\zh-CN

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\tr-TR

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\sv-SE

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\ru-RU

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\pt-PT

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\pt-BR

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\pl-PL

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\nb-NO

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\ko-KR

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\ja-JP

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\it-IT

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\hu-HU

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\fr-FR

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\fi-FI

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\es-ES

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\el-GR

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\de-DE

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\da-DK

    2013-10-15 11:42:52 ----D---- C:\Windows\SYSWOW64\cs-CZ

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\zh-TW

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\zh-HK

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\zh-CN

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\tr-TR

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\sv-SE

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\ru-RU

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\pt-PT

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\pt-BR

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\pl-PL

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\nb-NO

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\ko-KR

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\ja-JP

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\it-IT

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\hu-HU

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\fr-FR

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\fi-FI

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\es-ES

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\el-GR

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\de-DE

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\da-DK

    2013-10-15 11:42:51 ----D---- C:\Windows\system32\cs-CZ

    2013-10-11 17:10:55 ----D---- C:\Windows\AppPatch

    2013-10-11 14:59:37 ----D---- C:\Windows\system32\MRT

    2013-10-11 14:58:25 ----A---- C:\Windows\system32\MRT.exe

    2013-10-08 20:21:53 ----D---- C:\Program Files (x86)\AVG SafeGuard toolbar

    2013-10-03 16:47:30 ----D---- C:\Windows\system32\NDF

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-09-02 192824]

    R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-09-02 294712]

    R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-08-20 123704]

    R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-08 31544]

    R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2010-08-12 30008]

    R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-13 437272]

    R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

    R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-09-25 148792]

    R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-09-02 241464]

    R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-09-02 212280]

    R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192]

    R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-10-08 46368]

    R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

    R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2010-08-12 43320]

    R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-12-31 8281600]

    R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-12-31 292864]

    R3 BCM43XX;Stuurprogramma voor de Broadcom 802.11-netwerkadapter; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-05-18 3065408]

    R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2010-12-10 31088]

    R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]

    R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-12-17 12256512]

    R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]

    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2013-10-19 91648]

    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2013-10-19 208896]

    R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2010-12-08 329832]

    R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-10-19 406632]

    R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-12-02 520192]

    R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-19 1451056]

    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2013-09-18 14112]

    R3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]

    S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-12-17 12256512]

    S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

    S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-08-01 19456]

    S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]

    S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

    S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

    S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

    S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-08-01 57856]

    S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]

    R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]

    R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-12-31 203776]

    R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480]

    R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152]

    R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]

    R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2010-12-07 249672]

    R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]

    R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

    R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-05 291896]

    R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2010-08-12 30520]

    R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]

    R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-13 13336]

    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-11-22 73728]

    R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-11-23 325656]

    R2 Polar Daemon;Polar Daemon; C:\Program Files (x86)\Polar\Daemon\polard.exe [2012-12-12 419536]

    R2 SafetyNutManager;SafetyNut Manager; C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe [2013-09-25 3419144]

    R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2010-12-02 275968]

    R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2013-10-08 2099000]

    R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-11-23 2656280]

    R2 vToolbarUpdater17.0.12;vToolbarUpdater17.0.12; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [2013-10-08 1734680]

    R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2012-08-10 1001376]

    S2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-09-20 38440]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

    S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-06-19 246520]

    S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]

    S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-07-20 1255736]

    -----------------EOF-----------------

  7. Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 8:13:32, on 7/04/2013

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v8.00 (8.00.7601.17514)

    Boot mode: Normal

    Running processes:

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

    C:\Program Files (x86)\Google\Drive\googledrivesync.exe

    C:\Program Files (x86)\Polar\WebSync\WebSync.exe

    C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE

    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    C:\Program Files (x86)\AVG\AVG2012\avgtray.exe

    C:\Program Files (x86)\AVG Secure Search\vprot.exe

    C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    C:\Program Files (x86)\Google\Drive\googledrivesync.exe

    Q:\140062.nld\Office14\ONENOTEM.EXE

    C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe

    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\DAVID\Downloads\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

    O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll

    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O3 - Toolbar: (no name) - {bff6b2ca-366c-4a90-b685-d87776deb0d2} - (no file)

    O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

    O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

    O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

    O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

    O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"

    O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

    O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

    O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

    O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE

    O4 - Global Startup: Polar WebSync.lnk = C:\Program Files (x86)\Polar\WebSync\WebSync.exe

    O4 - Global Startup: Snapfish PictureMover.lnk = C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

    O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

    O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll

    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe

    O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

    O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

    O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

    O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Polar Daemon - Unknown owner - C:\Program Files (x86)\Polar\Daemon\polard.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: vToolbarUpdater14.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --

    End of file - 12975 bytes

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.