kan iemand me helpen?

zottemus · 27 oktober 2015

hallo,

mijn pc is sinds lange tijd heel traag en ik moet hem dikwijls terug opstarten omdat hij dikwijls blijft hangen tijdens het surfen, precies of hij kan het zo allemaal niet meer aan.

Ik heb het vermoeden dat hij dingen op de achtergrond doet die helemaal niet nodig zijn. Ook krijg ik dikwijls melding dat mijn HP2 (E) schijf vol is,dit gebeurt elke week en ik doe dan format om ze terug leeg te maken. Ook is er iets dat mijn computer op windows 10 wil zetten dat dikwijls begint te lopen en dat schakel ik dan terug uit.

Is er iemand die me aan de hand van enkele programma's kan helpen om de boel eens te analyseren en op te schonen? Ik gebruik crapcleaner en advanced system care elke week dan loopt het "iets" sneller voor een dag of 2 maar dat is geen oplossing.

Bedankt alvast!

falstring · 27 oktober 2015

crapcleaner schijnt een vroege versie van ccleaner te zijn, ken ik niet maar maker piriform is te vertrouwen.

dat geldt niet voor de maker van advanced system care.......

waar je naar zoekt is een grondige inspectie van je pc door de experts hier.

dat zet je zo in gang: http://www.pc-helpforum.be/topic/49019-hoe-maak-je-een-logje-met-rsit-met-video/

zottemus · 28 oktober 2015

Het logje is gelukt, moet ik het op een ander forum plaatsten ook?

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ann at 2015-10-28 12:16:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 376 GB (54%) free of 702 GB
Total RAM: 6071 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:16:20, on 28/10/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18057)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe
C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Sweex\UWD\VMonitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\trend micro\Ann.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ig
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [iObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Google Photos Backup] "C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Sweex snapshot button monitor.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 13202 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Prey\platform\windows\cronsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k netsvcs
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
WLIDSvcM.exe 3288
"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=DOCKVIEW
"C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2bb3c8d3-95db-4986-a84c-523ffd0b4f9e -SystemEventPortName:HostProcess-6abc2953-efb3-4995-a797-ae0b13f3d9f5 -IoCancelEventPortName:HostProcess-4851f51e-a3a8-4071-af3d-cc1dd9669efc -NonStateChangingEventPortName:HostProcess-b3537b14-48fc-492e-964e-c8c9c3a92a5e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:399f8d90-0e3a-4a36-b1db-1403327330fd -DeviceGroupId:WpdFsGroup
"C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
"C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Sweex\UWD\VMonitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe"
"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart Wireless B109n-z#1419499147" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
ctfmon.exe
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /systemstart /autostart
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\servicing\TrustedInstaller.exe
"LogonUI.exe" /flags:0x0
"C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe"
"C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding
"C:\Program Files\Internet Explorer\iexplore.exe" -newtab
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-042d-fc53ee6c3b13 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" -noframemerging http://toolbar.google.com/command?navigate=122D88BE-1DF2-4059-BD6B-289E8FC2DBE3
C:\Windows\system32\Macromed\Flash\FlashUtil64_19_0_0_226_ActiveX.exe -Embedding
"C:\Program Files\Internet Explorer\iexplore.exe" http://track.pc-helpforum.be/track/click/30483147/www.pc-helpforum.be?p=eyJzIjoiUU83MTFGVlZacWhHUnBDTy1nTWZRX2RuOEdjIiwidiI6MSwicCI6IntcInVcIjozMDQ4MzE0NyxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3LnBjLWhlbHBmb3J1bS5iZVxcXC90b3BpY1xcXC80OTAxOS1ob2UtbWFhay1qZS1lZW4tbG9namUtbWV0LXJzaXQtbWV0LXZpZGVvXFxcL1wiLFwiaWRcIjpcImY5NjU1Yzc3NjBiYjRmN2U4OGJlOTExZjdmMDQ2MDhlXCIsXCJ1cmxfaWRzXCI6W1wiNzQ2MjNjOTUyNTEyOTczYzlkMjg0MzRhNDFlYjM5Y2IyYmEzNDY4OFwiXX0ifQ
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:127468 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe"
C:\Windows\system32\svchost.exe -k defragsvc

"C:\Users\Ann\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000Core.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2372668859-1852268327-715560521-1000UA.job - C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleForAnn.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForAnn (null)
C:\Windows\tasks\PCDRScheduledMaintenance.job - C:\Program Files\PC-Doctor for Windows\pcdrcui.exe -fh scripts\monthly.xml -st PCDRScheduledMaintenance

=========Mozilla firefox=========

ProfilePath - C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default

prefs.js - "browser.startup.homepage" - "https://mysearch.avg.com/?cid={718E0CD9-E261-4160-9090-91A48AE0F06B}&mid=2a3c849d707547d6a3ff9128c09ffef1-e27165e4895c30416ef4d5795164f98330028cc5〈=nl&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-24 09:02:38&v=4.1.5.143&pid=wtu&sg=&sap=hp"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5]
"Description"=Office Live Update v1.5
"Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

C:\Users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\knndb4cl.default\extensions\
iobitascsurfingprotection@iobit.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-07-30 2471744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-29 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Surfing Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2015-04-01 672032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-29 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-09-14 610360]
"PC-Doctor for Windows localizer"=C:\Program Files\PC-Doctor for Windows\localizer.exe [2009-09-17 95728]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29 14021336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-29 1685048]
"Advanced SystemCare 8"=C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2015-04-08 2429728]
"CCleaner Monitoring"=C:\Program Files (x86)\CCleaner\CCleaner64.exe [2015-01-20 7404312]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-10-29 39408]
"Google Update"=C:\Users\Ann\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-24 144200]
"Google Photos Backup"=C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [2015-10-13 3787080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google+ Auto Backup]
C:\Users\Ann\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup]
C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2009-10-02 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-01 98304]
"HP Software Update"=c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2009-09-02 60464]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-10-19 3779496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
Sweex snapshot button monitor.lnk - C:\Program Files (x86)\Sweex\UWD\VMonitor.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-01-14 52272]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableTaskMgr"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2015-10-28 12:16:11 ----D---- C:\rsit
2015-10-28 12:16:11 ----D---- C:\Program Files\trend micro
2015-10-23 18:31:21 ----A---- C:\Windows\system32\win32k.sys
2015-10-21 15:48:50 ----SHD---- C:\found.000
2015-10-19 12:32:18 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys
2015-10-15 09:09:58 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 09:09:58 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 09:09:58 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 09:09:58 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 09:09:58 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 09:09:58 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 09:09:58 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 08:29:34 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 08:29:34 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-10-14 08:29:32 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-10-14 08:29:31 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-10-14 08:29:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-10-14 08:29:21 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-10-14 08:29:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-10-14 08:29:20 ----A---- C:\Windows\system32\iernonce.dll
2015-10-14 08:29:20 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-10-14 08:29:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-10-14 08:29:19 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-10-14 08:29:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-10-14 08:29:18 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 08:29:18 ----A---- C:\Windows\system32\occache.dll
2015-10-14 08:29:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 08:29:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 08:29:18 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-10-14 08:29:17 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-10-14 08:29:17 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 08:29:17 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 08:29:16 ----A---- C:\Windows\system32\iesetup.dll
2015-10-14 08:29:16 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-10-14 08:29:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-10-14 08:29:15 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 08:29:15 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-10-14 08:29:14 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-10-14 08:29:14 ----A---- C:\Windows\system32\jsproxy.dll
2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 08:29:14 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 08:29:14 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-14 08:29:13 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-10-14 08:29:13 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 08:29:13 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 08:29:13 ----A---- C:\Windows\system32\ieUnatt.exe
2015-10-14 08:29:12 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9diag.dll
2015-10-14 08:29:12 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 08:29:11 ----A---- C:\Windows\system32\msrating.dll
2015-10-14 08:29:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 08:29:11 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 08:28:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-10-14 08:28:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-10-14 08:28:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-10-14 08:28:40 ----A---- C:\Windows\system32\kernel32.dll
2015-10-14 08:28:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-10-14 08:28:39 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 08:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-10-14 08:28:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\wow64.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\winsrv.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\srcore.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\rstrui.exe
2015-10-14 08:28:38 ----A---- C:\Windows\system32\rpcrt4.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\KernelBase.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\kerberos.dll
2015-10-14 08:28:38 ----A---- C:\Windows\system32\conhost.exe
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 08:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-10-14 08:28:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64win.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\wow64cpu.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\wdigest.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\TSpkg.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspisrv.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\sspicli.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\srclient.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\smss.exe
2015-10-14 08:28:37 ----A---- C:\Windows\system32\secur32.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\schannel.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\ntvdm64.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\ncrypt.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\msv1_0.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\lsass.exe
2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-10-14 08:28:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-10-14 08:28:37 ----A---- C:\Windows\system32\csrsrv.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\cryptbase.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\credssp.dll
2015-10-14 08:28:37 ----A---- C:\Windows\system32\auditpol.exe
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 08:28:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 08:28:35 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 08:28:35 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 08:28:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 08:28:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\user.exe
2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-10-14 08:28:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-10-14 08:28:34 ----A---- C:\Windows\system32\msaudite.dll
2015-10-14 08:28:34 ----A---- C:\Windows\system32\apisetschema.dll
2015-10-14 08:28:34 ----A---- C:\Windows\system32\adtschema.dll
2015-10-14 08:28:33 ----A---- C:\Windows\system32\msobjs.dll
2015-10-14 08:28:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-10-14 08:28:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidsvc.dll
2015-10-14 08:28:02 ----A---- C:\Windows\system32\appidapi.dll
2015-10-14 08:28:01 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-10-14 08:28:01 ----A---- C:\Windows\system32\drivers\appid.sys
2015-10-14 08:28:01 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-10-13 11:24:00 ----A---- C:\Windows\SYSWOW64\GPhotos.scr
2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-10-07 19:57:07 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups2.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wups.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wudriver.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wucltux.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapp.exe
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wuapi.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-10-07 19:57:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-10-07 19:55:34 ----A---- C:\Windows\system32\icaapi.dll
2015-10-07 19:55:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-07 19:53:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-09-29 18:19:55 ----D---- C:\Users\Ann\AppData\Roaming\Sun
2015-09-19 08:52:36 ----D---- C:\Program Files (x86)\IncrediMail
2015-09-18 20:48:27 ----D---- C:\Program Files (x86)\Photo Notifier and Animation Creator
2015-09-14 20:02:16 ----A---- C:\Windows\system32\drivers\AtihdW76.sys
2015-09-14 20:02:16 ----A---- C:\Windows\system32\DelayAPO.dll
2015-09-14 19:59:21 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-09-14 19:59:18 ----A---- C:\Windows\system32\SETF07B.tmp
2015-09-14 19:59:17 ----A---- C:\Windows\system32\RTCOM64.dll
2015-09-14 19:58:58 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2015-09-14 19:58:57 ----A---- C:\Windows\system32\SETEE67.tmp
2015-09-14 19:58:54 ----A---- C:\Windows\system32\RCoInstII64.dll
2015-09-13 10:03:01 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-09-13 10:03:01 ----A---- C:\Windows\system32\jnwmon.dll
2015-09-13 10:03:01 ----A---- C:\Windows\system32\InkEd.dll
2015-09-13 10:02:51 ----A---- C:\Windows\system32\schedsvc.dll
2015-09-13 10:02:41 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-13 10:02:41 ----A---- C:\Windows\system32\tzres.dll
2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-13 10:02:33 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-13 10:02:33 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-13 10:01:30 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-13 10:01:30 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-13 10:01:27 ----A---- C:\Windows\system32\tdh.dll
2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-13 10:01:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-13 10:01:25 ----A---- C:\Windows\system32\advapi32.dll
2015-09-13 10:00:40 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-13 10:00:40 ----A---- C:\Windows\system32\consent.exe
2015-09-13 10:00:40 ----A---- C:\Windows\system32\authui.dll
2015-09-13 10:00:39 ----A---- C:\Windows\system32\appinfo.dll
2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-13 10:00:34 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml6.dll
2015-09-13 10:00:34 ----A---- C:\Windows\system32\msxml3.dll
2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-13 10:00:33 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-13 10:00:33 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-13 09:56:32 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-13 09:56:32 ----A---- C:\Windows\system32\lpk.dll
2015-09-13 09:56:32 ----A---- C:\Windows\system32\fontsub.dll
2015-09-13 09:56:32 ----A---- C:\Windows\system32\dciman32.dll
2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmlib.dll
2015-09-13 09:56:32 ----A---- C:\Windows\system32\atmfd.dll
2015-09-10 07:58:25 ----HD---- C:\$Windows.~BT
2015-08-19 10:53:56 ----A---- C:\Windows\system32\drivers\avgidsha.sys
2015-08-15 02:20:49 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-15 02:20:49 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-14 17:20:03 ----A---- C:\Windows\system32\sysmain.dll
2015-08-14 17:20:00 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-14 17:19:58 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-14 17:19:12 ----A---- C:\Windows\system32\basesrv.dll
2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-14 17:18:10 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-14 17:18:10 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-14 17:18:10 ----A---- C:\Windows\system32\davclnt.dll
2015-08-14 17:18:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-14 17:18:07 ----A---- C:\Windows\system32\FntCache.dll
2015-08-14 17:18:07 ----A---- C:\Windows\system32\DWrite.dll
2015-08-14 17:18:05 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-14 17:18:05 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-14 17:18:03 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-14 17:18:03 ----A---- C:\Windows\system32\notepad.exe
2015-08-14 17:18:03 ----A---- C:\Windows\notepad.exe
2015-08-14 17:18:01 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-14 17:18:01 ----A---- C:\Windows\system32\mstscax.dll
2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-14 17:18:00 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-14 17:18:00 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-14 17:18:00 ----A---- C:\Windows\system32\aaclient.dll
2015-08-04 10:32:36 ----A---- C:\Windows\system32\drivers\avgtdia.sys
2015-08-04 10:32:32 ----A---- C:\Windows\system32\drivers\avgmfx64.sys
2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRRPTR64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRCOM.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\SRAPO64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\sltech64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\slprp64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\slcnt64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\sl3apo64.dll
2015-07-29 13:08:48 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtkApi64.dll
2015-07-29 13:08:47 ----A---- C:\Windows\system32\RtDataProc64.dll
2015-07-29 13:08:47 ----A---- C:\Windows\system32\RltkAPO64.dll
2015-07-29 13:08:47 ----A---- C:\Windows\system32\RCoRes64.dat
2015-07-29 13:08:44 ----A---- C:\Windows\system32\FMAPO64.dll
2015-07-29 13:08:43 ----A---- C:\Windows\system32\CX64APO.dll
2015-07-29 13:07:38 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2015-07-29 13:06:51 ----A---- C:\Windows\system32\RtNicProp64.dll
2015-07-29 13:06:51 ----A---- C:\Windows\system32\drivers\Rt64win7.sys

======List of files/folders modified in the last 3 months======

2015-10-28 12:16:20 ----D---- C:\Windows\Prefetch
2015-10-28 12:16:11 ----RD---- C:\Program Files
2015-10-28 12:15:57 ----D---- C:\Windows\Temp
2015-10-28 11:59:32 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat
2015-10-28 09:30:25 ----D---- C:\ProgramData\MFAData
2015-10-27 09:43:20 ----D---- C:\Windows
2015-10-26 20:19:09 ----SHD---- C:\Windows\Installer
2015-10-26 20:19:09 ----SHD---- C:\Config.Msi
2015-10-26 13:37:54 ----D---- C:\Windows\System32
2015-10-26 13:37:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-10-26 13:37:53 ----D---- C:\Windows\inf
2015-10-25 22:42:46 ----D---- C:\Windows\system32\config
2015-10-25 19:00:54 ----SHD---- C:\System Volume Information
2015-10-24 09:28:38 ----D---- C:\ProgramData\ProductData
2015-10-24 09:27:11 ----D---- C:\Windows\winsxs
2015-10-23 18:31:19 ----D---- C:\Windows\system32\catroot2
2015-10-23 08:35:01 ----D---- C:\Windows\system32\drivers
2015-10-22 12:59:15 ----D---- C:\Windows\Panther
2015-10-16 20:33:08 ----D---- C:\Windows\SysWOW64
2015-10-16 20:33:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-10-16 17:07:06 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-10-16 02:16:46 ----SD---- C:\Windows\system32\CompatTel
2015-10-16 02:16:45 ----D---- C:\Windows\system32\appraiser
2015-10-16 02:16:45 ----D---- C:\Windows\AppPatch
2015-10-15 20:19:22 ----D---- C:\Windows\rescache
2015-10-15 16:38:50 ----D---- C:\Windows\debug
2015-10-15 02:32:26 ----D---- C:\Windows\SYSWOW64\en-US
2015-10-15 02:32:26 ----D---- C:\Program Files\Internet Explorer
2015-10-15 02:32:25 ----D---- C:\Windows\system32\en-US
2015-10-15 02:32:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-10-15 02:32:22 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-15 02:32:22 ----D---- C:\Windows\system32\Boot
2015-10-15 02:16:22 ----D---- C:\Windows\system32\MRT
2015-10-15 02:09:54 ----A---- C:\Windows\system32\MRT.exe
2015-10-15 02:09:44 ----D---- C:\ProgramData\Microsoft Help
2015-10-14 08:24:05 ----D---- C:\Users\Ann\AppData\Roaming\OwnRooms
2015-10-09 02:27:20 ----SD---- C:\Windows\system32\GWX
2015-10-09 02:17:07 ----SD---- C:\Windows\SYSWOW64\GWX
2015-10-01 23:56:01 ----D---- C:\Windows\system32\LogFiles
2015-10-01 20:59:12 ----D---- C:\Windows\Tasks
2015-10-01 20:59:12 ----D---- C:\Windows\system32\Tasks
2015-09-29 18:27:37 ----D---- C:\ProgramData\Oracle
2015-09-29 18:21:14 ----D---- C:\Program Files (x86)\Java
2015-09-29 18:20:22 ----D---- C:\Program Files (x86)\Common Files
2015-09-29 18:19:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-09-20 02:02:28 ----SD---- C:\ProgramData\Microsoft
2015-09-20 02:01:49 ----D---- C:\Program Files (x86)\Microsoft
2015-09-19 08:52:36 ----D---- C:\Program Files (x86)
2015-09-18 20:16:59 ----D---- C:\Program Files (x86)\HP Games
2015-09-18 20:16:53 ----D---- C:\ProgramData\WildTangent
2015-09-18 20:14:08 ----D---- C:\ProgramData\Skype
2015-09-17 19:07:41 ----D---- C:\Windows\system32\catroot
2015-09-15 18:30:37 ----D---- C:\ProgramData\AVG Security Toolbar
2015-09-15 14:46:14 ----D---- C:\Windows\system32\DriverStore
2015-09-15 14:46:08 ----D---- C:\Program Files\Common Files
2015-09-15 14:45:04 ----HD---- C:\ProgramData
2015-09-14 20:01:22 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-09-14 02:48:26 ----D---- C:\Windows\Microsoft.NET
2015-09-14 02:48:06 ----RSD---- C:\Windows\assembly
2015-09-14 02:38:19 ----D---- C:\Program Files\Windows Journal
2015-09-14 02:38:18 ----D---- C:\Windows\ehome
2015-09-14 02:38:17 ----D---- C:\Windows\PolicyDefinitions
2015-09-13 09:05:35 ----D---- C:\Windows\system32\wfp
2015-09-13 09:05:28 ----D---- C:\Windows\system32\wbem
2015-09-13 09:02:55 ----D---- C:\Windows\servicing
2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\ProductData
2015-09-13 09:02:43 ----D---- C:\Users\Ann\AppData\Roaming\IObit
2015-09-13 09:02:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-09-13 09:01:19 ----D---- C:\Windows\registration
2015-09-06 07:55:58 ----A---- C:\Windows\SYSWOW64\bash.exe.stackdump
2015-08-20 08:00:20 ----D---- C:\Windows\Logs
2015-08-20 07:25:13 ----SD---- C:\Users\Ann\AppData\Roaming\Microsoft
2015-08-15 02:39:54 ----D---- C:\Windows\system32\drivers\en-US
2015-08-15 02:19:13 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-15 02:19:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-07-31 20:16:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-31 07:49:00 ----D---- C:\Windows\SYSWOW64\drivers
2015-07-31 07:48:59 ----D---- C:\Windows\system32\drivers\AVG
2015-07-31 06:43:42 ----D---- C:\ProgramData\IObit
2015-07-30 13:25:02 ----D---- C:\Windows\SoftwareDistribution
2015-07-29 14:47:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-07-29 13:06:51 ----A---- C:\Windows\system32\RTNUninst64.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928]
R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-10-02 537112]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 21184]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-10-19 315312]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2014-12-25 26528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-26 339456]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-09-14 96256]
R3 AVER_H193;AVerMedia H193 Video Capture; C:\Windows\system32\drivers\AVer888RC_64.sys [2009-11-13 543616]
R3 CXCIR;AVerMedia Consumer Infrared Receiver; C:\Windows\system32\DRIVERS\AVer888RCIR_64.sys [2009-11-13 39936]
R3 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]
R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-09-14 4514008]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2014-12-25 2472136]
R3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-07-29 986368]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-29 33448]
R3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-11-19 123408]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-26 11172864]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-01-30 103448]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2010-04-19 50688]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 VMUVC;Vimicro Camera Service VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [2010-04-29 202112]
S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\Windows\system32\drivers\vvftUVC.sys [2008-07-01 303616]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2015-04-03 814880]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-26 237056]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 Bonjour Service;Bonjour-service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-07-27 345376]
R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2010-09-29 18432]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-08-20 73728]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-07-29 294616]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-30 2909472]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16 269000]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-07 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

zottemus · 28 oktober 2015

ik heb zonet mijn logje ook in malware en visrussen geplaatst.

Asus · 28 oktober 2015

Na de analyse van je logje door een malware-expert krijg je persoonlijke begeleiding en nieuwe instructies.

kape · 29 oktober 2015

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Dubbelklik op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 {d2ce3e00-f94a-4740-988e-03dc2f38c34f};c
C:\Program Files (x86)\Microsoft\BingBar;fs
{8dcb7100-df86-4384-8842-8fa844297b3f};c
IMFservice;s
C:\Program Files (x86)\IObit\IObit Malware Fighter;fs
LiveUpdateSvc;s
C:\Program Files (x86)\IObit\LiveUpdate;fs
C:\Windows\tasks\PCDRScheduledMaintenance.job;f
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}],r64
C:\found.000;fs
C:\Windows\system32\SETF07B.tmp;f
C:\Windows\system32\SETEE67.tmp;f
C:\ProgramData\AVG Security Toolbar;fs
C:\Users\Ann\AppData\Roaming\IObit;fs
C:\ProgramData\IObit;fs
emptyfolderscheck;delete
startupall;
filesrcm;

Klik op de knop "More options" en vink nu de onderstaande opties aan.
Do a Quick Scan
Auto Clean
De optie "Scan All Users" staat standaard aangevinkt.
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

zottemus · 29 oktober 2015

Hoop dat het bestand erbij is. Als jullie vinden dat er rommelprogramma's opstaan mogen jullie die ook al verwijderen hoor ( advanced system care)

Ook is er steeds iets van google back up foto's,is dat nodig?

zoek-results.txt

29 oktober 2015 aangepast door zottemus

kape · 29 oktober 2015

Dubbelklik op Zoek.exe om de tool te starten.

Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 C:\asc_rdflag;fs

[HKEY_USERS\S-1-5-21-2372668859-1852268327-715560521-1000\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Advanced SystemCare 8"=-;r64

C:\Program Files (x86)\IObit\Advanced SystemCare 8;fs

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run];r64

"IObit Malware Fighter"=-;r64

C:\Program Files (x86)\IObit\IObit Malware Fighter;fs

C:\Program Files (x86)\IObit;fs

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Advanced SystemCare 8"=-;r64

"Google Photos Backup"=-;r64

C:\Users\Ann\AppData\Local\Programs\Google\Google Photos Backup;fs

C:\Windows\SysNative\tasks\ASC8_PerformanceMonitor;fs

C:\Windows\SysNative\tasks\ASC8_SkipUac_Ann;fs

C:\Windows\SysNative\tasks\Driver Booster Scan;fs

C:\Program Files (x86)\IObit\Driver Booster;fs

C:\Windows\SysNative\tasks\Driver Booster SkipUAC (Ann);fs

C:\Windows\SysNative\tasks\Driver Booster Update;fs

C:\Windows\SysNative\tasks\SmartDefrag3_Startup;fs

C:\Windows\SysNative\tasks\SmartDefrag3_Update;fs

C:\Windows\SysNative\tasks\SmartDefrag_Startup;fs

C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Ann;fs

C:\Program Files (x86)\IObit\Smart Defrag 2;fs

C:\Program Files (x86)\IObit\Smart Defrag 3;fs

C:\Program Files (x86)\IObit\IObit Uninstaller;fs

C:\Program Files (x86)\IObit Apps Toolbar\FF;fs

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iolo Startup];r64

De optie "Scan All Users" staat standaard aangevinkt.
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

zottemus · 29 oktober 2015

deze ging sneller! in bijlage logje

zoek-results.txt

kape · 29 oktober 2015

Download AdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

Als de link naar AdwCleaner niet werkt, probeer dan deze link.

De download start automatisch na enkele seconden.

Sluit alle openstaande vensters.
Dubbelklik op AdwCleaner om hem te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Klik op Scan (Engelse versie) of Scannen (Nederlandstalige versie)
Mocht u gevonden items willen behouden, verwijder deze dan nu uit het lijstje.
Klik vervolgens op Clean (Engelse versie) of Verwijderen (Nederlandstalige versie)
Klik bij popup-scherm "AdwCleaner Herstart" op OK

Nadat de PC opnieuw is opgestart, opent meestal onmiddellijk een logfile van AdwCleaner.
Anders is het logfile hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Meer informatie vind je in de handleiding.

Inloggen

kan iemand me helpen?

Aanbevolen berichten

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Welkom op PC Helpforum

Leden statistieken

OVER ONS

SITEMAP

Belangrijke informatie